{"report_id":"2aff11b1-9033-47ba-b1ea-1b870291db09","version":6,"status":"done","tags":[],"date":"2026-03-28T02:52:16Z","url":{"schema":"http","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":0,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"title":"DKB Banking","dom":{"size":4396,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"486babdf0348ff922c2aff29ecb74a90","sha1":"13b8ecd598aba5f3b15fd428ad903bd41f0e0613","sha256":"21d87914a10d615e3b7c0e5fa930337c876084717a63e32d5b7101d9bffa7914","sha512":"32d9960c20e601e83b0074d8430179d95659f50402cfd6b1acd53788e98568afcab353a544529ef27f0f25a3e7901508cc63093bef4119a8bf42659fa0b015a7","ssdeep":"96:dZcGe9oNJPIf6bj318GmFVs9O6Ej6oZjhhtz0fw:dyGe9oNJwExmFO9yj6oZjhhtz0fw","tlshash":"1d916220a4f4183b118360a97ea61a0ebe96d50bc80d490135fc1edc1fc7e97cdb365e","dom_hash":"domhash3c5d65fe1e5ace222525cb6ef3e4e9fb","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":0,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T02:52:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-03-22T22:34:23.857339Z","alert_count":0,"request_count":3,"received_data":439247,"sent_data":1442,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-22T22:31:48.48691Z","alert_count":0,"request_count":1,"received_data":103028,"sent_data":488,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-03-22T23:03:50.420873Z","alert_count":0,"request_count":1,"received_data":285905,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"wordpress-209642-0.cloudclusters.net","ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"domain_registered":"2018-11-30","domain_rank":0,"first_seen":"2026-03-28T00:43:16.595811Z","last_seen":"2026-03-28T00:43:16.595811Z","alert_count":14,"request_count":7,"received_data":352509,"sent_data":3666,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap:5.3.1","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-22T22:16:16.728956Z","alert_count":0,"request_count":1,"received_data":38589,"sent_data":571,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-22T22:20:05.651051Z","alert_count":0,"request_count":2,"received_data":72456,"sent_data":1068,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"72bba258af4a2c5e832e790acbd63522","sha1":"e5b620eac08a303744a1eff6902baf46b3864cd7","sha256":"92e04f2ed356f874cd89ae9f220b7768054417a76c57b8201a2e8052fb0de530","sha512":"0531cf21280584e8a947f6103f9e68acdd502dc62727e13e27b0650b2768cfd42b8a3248603edf9d951f6072679024ef4bded110cf84ca9da464f0bcf0efe3e2","ssdeep":"","tlshash":"0c215528f0b6525121fb30f22edf064a3865a51fc0588c017e6c6de82f99b78c1b2b0b","size":1144,"data":"","first_seen":"2025-03-02T14:13:48.350695Z","last_seen":"2026-05-13T10:00:26.395098Z","times_seen":234,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"12e87d2f3a4c8b347ab13a0764d420a3","sha1":"4be715e11048c057fdf2ee0fbbfad4dbf3504c55","sha256":"78a85aca2f0b110c29e0d2b137e09f0a1fb7a8e554b499f740d6744dc8962cfe","sha512":"fa4d699e582de05d47f0beeddf3f79a37fca3bea3bf083447174db9e8250fc5d95a835615a86a256697f3841eff47b1583151a556f886e264f50941f17f63167","ssdeep":"6144:gwsmYhct1SS+TC1lmhTzeKRYcYmD2zK8USJsdZQ/coLGVFyy/RgL/uiOgeNTIPfz:FuYcYmD4/cZQ/coLGVFyCJTiPf7AqqAV","tlshash":"e954a3d8f78d112e423231aaad2e12cdbb7dd171561454aefd4d497c24a083c83baf7a","size":285314,"data":"","first_seen":"2023-09-15T16:51:13Z","last_seen":"2026-05-14T23:05:09.881573Z","times_seen":16950,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6baf57f25796c332144ed58a2a0cd9ee","sha1":"f7fd0f3dc84b2cf93bf81e832505a673f354e0a3","sha256":"82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd","sha512":"5ff6240d9ca34dfe30c9cd95cb5e981823c7c0063cad9258f8f3a0a24663401da684844524272410673a6325fd78db0f7e7d0fcd3844b8db3eb9aa2613908ee8","ssdeep":"1536:Qmw0iELO+TBR2t472RirWyKsVfK5GEfy3YJtCRv/45wZbqbXZTbYWU178:VwXza3YCl45wZODZTbYR8","tlshash":"cc73c5593244b4730ade85b68037430bf2265998b24b812cb57cadde2a7dcc67277f78","size":80663,"data":"","first_seen":"2023-09-18T01:21:14Z","last_seen":"2026-05-14T21:55:03.027057Z","times_seen":18153,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@5.3.1/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap@5.3.1/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 5.3.1\r\nx-jsd-version-type: version\r\netag: W/\"38d97-sT73BUPXDB7H/dVqXrydfWQCOFE\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\nage: 1373322\r\nx-served-by: cache-fra-etou8220158-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 33026\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":232855,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65342)","md5":"896192cc65e20f1fcc6d792b5b9a4626","sha1":"b13ef70543d70c1ec7fdd56a5ebc9d7d64023851","sha256":"d939d21f27010c09b6c2966681d8b4cfcd64ca418f240922518f967fded16ef6","sha512":"67f75e7f9cf9bb6691f3d3aecd873198327406777957570aa8111bbcb3a250d59d83d3d079756f5cb23dd1213840e1c695f2ea5270cd540632662f14c144e659","ssdeep":"1536:EZCtjXbn98fOdRfvO5wlP7Qy9A37zV98IsY/ElV6V6pz600I41r:/tjT98fNV98mI6V6pz600I41r","tlshash":"d53481d6f590317d9ca7c1499681fefd896fa985cb1209aaf003776807cabd30962dcc","first_seen":"2023-08-02T23:07:40Z","last_seen":"2026-05-14T22:45:51.128919Z","times_seen":6085,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":46,"dns":1,"connect":27,"send":0,"wait":15,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18752\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"6421d693-4940\"\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 239181\r\nexpires: Thu, 18 Mar 2027 02:51:56 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=shdO95NgVD92AsDBv9h82sB7tuUoKYDZAilGj%2B%2FlbMvEg4oBIkSlO5G02%2F65GNhdHu49qRyO%2FJu4yYgfpl3nZrsbTPv4qqnRh2FQc0pcVV4lA80dpBhkd4fUkxaPZQfsGKwVsur%2F\"}]}\r\ncf-ray: 9e3355fc7ac932fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102025,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"ded1c367363e8b20bdc6a19b8350a737","sha1":"8c06d82739d14b094ff6d9036021a252bd1d985d","sha256":"1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf","sha512":"89e71d2e66ac925ec2564aa45cd43f647fd72e5bd664e2728fb632eed71e9e6a43d72a404a8ce9993fc4d223ed985201e3a66676d01cf5e341bc7d07fd9a6207","ssdeep":"1536:OwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuZprfZCl:S709gMGFiyPGuZpfZCl","tlshash":"2ea3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-06T15:05:25Z","last_seen":"2026-05-14T23:08:00.646237Z","times_seen":48287,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":5,"receive":1,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.7.1.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-45a82\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\nage: 1598585\r\nx-served-by: cache-lga21929-LGA, cache-hel1410032-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 14, 23821\r\nx-timer: S1774666316.328293,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 83619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":285314,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"12e87d2f3a4c8b347ab13a0764d420a3","sha1":"4be715e11048c057fdf2ee0fbbfad4dbf3504c55","sha256":"78a85aca2f0b110c29e0d2b137e09f0a1fb7a8e554b499f740d6744dc8962cfe","sha512":"fa4d699e582de05d47f0beeddf3f79a37fca3bea3bf083447174db9e8250fc5d95a835615a86a256697f3841eff47b1583151a556f886e264f50941f17f63167","ssdeep":"6144:gwsmYhct1SS+TC1lmhTzeKRYcYmD2zK8USJsdZQ/coLGVFyy/RgL/uiOgeNTIPfz:FuYcYmD4/cZQ/coLGVFyCJTiPf7AqqAV","tlshash":"e954a3d8f78d112e423231aaad2e12cdbb7dd171561454aefd4d497c24a083c83baf7a","first_seen":"2023-09-15T16:51:13Z","last_seen":"2026-05-14T23:05:09.881573Z","times_seen":16950,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":57,"dns":0,"connect":26,"send":0,"wait":26,"receive":36,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/Fonts/Font.woff2","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/Fonts/Font.woff2 HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 40084\r\nlast-modified: Thu, 29 Aug 2024 11:04:40 GMT\r\netag: \"66d055c8-9c94\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40084,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 40084, version 1.0","md5":"8b9f90a4d1030e067f630b2b6c943a45","sha1":"dd3c7e42252796fe94b25b99fa5e10eeb9f4c4c9","sha256":"f9ce922524b19a5d5f9f154a71526807f23548ccb44c770066df9a963321e9af","sha512":"c965cf870082d2181c874d47b263126dc8c4d85c4f546a1a2ce3562a2d33574a9f829c40b6030e9224acaba30dbfa07f93dcfebe08658cec622084527c6d627b","ssdeep":"768:aNhtU4q9hHZBYWGAhDBuQwqJ7+Morjb4rqpt5lOACQd/Z5S2YUzEB7P:aA9tZBYih0QP7+vnFptvgG/ZCUzEB7P","tlshash":"4303f10d830bf2e0d1ad07377d987dc612203b15d66ac6d51dfa19fa22c2c2625d9af6","first_seen":"2024-09-06T01:53:45Z","last_seen":"2026-05-13T10:00:26.379206Z","times_seen":255,"resource_available":false,"data":null}},"time_used":641,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":385,"receive":256,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:39 GMT","end":"Mon, 01 Jun 2026 08:37:38 GMT"},"fingerprint":{"sha1":"31:A8:B5:C1:CD:F5:51:78:A9:8C:E3:B4:73:92:CF:C0:6D:69:48:19","sha256":"81:9A:84:FB:F5:4C:AB:82:DF:C1:27:CC:60:46:A6:23:A8:49:56:99:47:CF:C4:05:3F:0D:87:31:DD:2C:23:A2"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://wordpress-209642-0.cloudclusters.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 28 Mar 2026 02:00:45 GMT\r\nexpires: Sun, 28 Mar 2027 02:00:45 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nage: 3071\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-05-14T23:58:56.499478Z","times_seen":423826,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":93,"dns":1,"connect":21,"send":0,"wait":22,"receive":24,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T02:51:55.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/login.php HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap:5.3.1","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":4541,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"b1f20f11020ff84267bdc036e2c87d99","sha1":"fe77cb6c5fd00186c4689b70cc8ef32457e4d0be","sha256":"dd8518944f7e8db297294be4ad497cef41008c59a2bf72166c548badd0b52e6a","sha512":"47401c74efe170557e54c33a212f092e91ba13070d038c6530e54b65907b3ee5ab26ef46ddc03ccb6866c9f3288b9e5811942522a7306c2a4167fa1e6f5eeada","ssdeep":"96:NBbM91NJJzEf7vYW0qKqSHOX6c2CdBBaZ:NNM91NJacEKqSHOX2CdBBaZ","tlshash":"3291421464c0583a41b39164aeb12a8dfe96c10bd649494135fd3fdf1ff3e55cca3a4a","first_seen":"2024-09-06T01:53:44Z","last_seen":"2026-05-13T10:00:26.385703Z","times_seen":203,"resource_available":true,"data":null}},"time_used":1499,"timings":{"blocked":680,"dns":1,"connect":128,"send":0,"wait":139,"receive":0,"ssl":548},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.252Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 5.3.2\r\nx-jsd-version-type: version\r\netag: W/\"13b17-9/0PPchLLPk7+B6DJQWmc/NU4KM\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\nage: 2590885\r\nx-served-by: cache-fra-eddf8230118-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 24440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80663,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"6baf57f25796c332144ed58a2a0cd9ee","sha1":"f7fd0f3dc84b2cf93bf81e832505a673f354e0a3","sha256":"82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd","sha512":"5ff6240d9ca34dfe30c9cd95cb5e981823c7c0063cad9258f8f3a0a24663401da684844524272410673a6325fd78db0f7e7d0fcd3844b8db3eb9aa2613908ee8","ssdeep":"1536:Qmw0iELO+TBR2t472RirWyKsVfK5GEfy3YJtCRv/45wZbqbXZTbYWU178:VwXza3YCl45wZODZTbYR8","tlshash":"cc73c5593244b4730ade85b68037430bf2265998b24b812cb57cadde2a7dcc67277f78","first_seen":"2023-09-18T01:21:14Z","last_seen":"2026-05-14T21:55:03.027057Z","times_seen":18153,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":14,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:40 GMT","end":"Mon, 01 Jun 2026 08:37:39 GMT"},"fingerprint":{"sha1":"5F:99:6E:26:2A:3A:DA:FF:7F:0D:EE:C5:8B:2A:01:AE:28:26:AD:C4","sha256":"2B:88:E7:79:70:E5:E9:DE:0E:A9:0A:B8:F1:F5:C6:D6:10:77:F0:C9:0F:E6:2A:13:A3:D6:08:F9:89:A3:60:E8"}}},"request":{"raw":"GET /css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 28 Mar 2026 02:51:56 GMT\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3908,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"935871d1a732f1e46db8fac63abf0dcd","sha1":"1c67935ab647d6cb5bfa911856397443ab4a64ed","sha256":"b8eec3c6430ec7af2ae527219f944b1f3fde1695eb73efc2a56b3cabb23e2481","sha512":"2a9cb9036467308726cc6b979cab5e2c7159ec088436136f4aefc70cf43b6e90c7ebd277697beca525b052f2a8f8dc5909d9b9e5e4b09afc930e290a7195a571","ssdeep":"","tlshash":"2481c0910517a504da471cc523cf7e26de0e66767494d5797ffe2ca8bdeac220324b2c","first_seen":"2025-09-05T02:18:57.460387Z","last_seen":"2026-05-14T23:35:45.578547Z","times_seen":65102,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":180,"dns":1,"connect":20,"send":0,"wait":20,"receive":0,"ssl":158},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:40 GMT","end":"Mon, 01 Jun 2026 08:37:39 GMT"},"fingerprint":{"sha1":"5F:99:6E:26:2A:3A:DA:FF:7F:0D:EE:C5:8B:2A:01:AE:28:26:AD:C4","sha256":"2B:88:E7:79:70:E5:E9:DE:0E:A9:0A:B8:F1:F5:C6:D6:10:77:F0:C9:0F:E6:2A:13:A3:D6:08:F9:89:A3:60:E8"}}},"request":{"raw":"GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 28 Mar 2026 02:51:56 GMT\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":67176,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"ab850d710cb8d2c822eca52fcb39630d","sha1":"6b1016a61cb54834b42380de194088a39d0673b5","sha256":"acbf6e2b73bf91ea123df383211a180d57eb23c883a466afdec45a80fd03587d","sha512":"75908bb4facb97dbdbb3df2cdd51b28165d7d9c0dbd60997f507c7e79d44709c97566f25b5249bae201225d5fb83877c43734052ebfe858a19edfd9ba4ef471f","ssdeep":"768:yDdD9DADNDgBDUKD7DnDWHncXgLUahdPuOJ+gaULUIIV1ClghUULPy7bYLgXU+l5:GyDSegtxyllff","tlshash":"6b630e91041b5440ab834ce223cebf35fe1f92507151d0b9abfc9b6baddbca6526835c","first_seen":"2026-02-19T23:42:18.856088Z","last_seen":"2026-05-14T23:10:35.98576Z","times_seen":4882,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":127,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":118},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/imgs/Logo.svg","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/imgs/Logo.svg HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2741\r\nlast-modified: Thu, 29 Aug 2024 11:11:14 GMT\r\netag: \"66d05752-ab5\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2741,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ec318bff94a4fff8002c55ae3a73b3c1","sha1":"dafcf702b52ba4f491276b4dc8a317c2f47556e1","sha256":"673e00e58a74f3ad1b7aa1af56828247ea64584365abb6f83a8da9d7ac7d3558","sha512":"b59ffe83f394cfe0c1c8d3a01c0da1327e62b4b478e334097b5f9dff68f91548cea7c81de4c46ce02e6422095d326ca832608822240970270aafd55f92c85b28","ssdeep":"","tlshash":"5051e0a33745892c69afcc548e36e96ab52f79cab79953e00072da32d0c76c1de5c818","first_seen":"2024-09-06T01:53:44Z","last_seen":"2026-05-13T10:00:26.387463Z","times_seen":263,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/imgs/eye.svg","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/imgs/eye.svg HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2504\r\nlast-modified: Thu, 29 Aug 2024 11:23:16 GMT\r\netag: \"66d05a24-9c8\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2504,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d445080eb001c8ab3f88f2b0728a4678","sha1":"ee27f1960b38626d36627c3b016e7583e55b51e6","sha256":"17b6ec4545c5d351fb84e6abbade3422d3f1eaca9d34489d11aabc3a18c58eb6","sha512":"aef202899ccf923032d99c57d31f52bd14cbee820eb804fd7847f57ca50804049930a104494bcb575b9b034687a80e60a274adaf6ed5ce7aa0b551a0fef107ac","ssdeep":"","tlshash":"4451f2dfe780f390c543c3b09819b5b6667b64b93363a2e542b55ef8f624629c18dc80","first_seen":"2024-09-06T01:53:44Z","last_seen":"2026-05-13T10:00:26.394452Z","times_seen":264,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/Fonts/Font.woff2","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/Fonts/Font.woff2 HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 40084\r\nlast-modified: Thu, 29 Aug 2024 11:04:40 GMT\r\netag: \"66d055c8-9c94\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40084,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 40084, version 1.0","md5":"8b9f90a4d1030e067f630b2b6c943a45","sha1":"dd3c7e42252796fe94b25b99fa5e10eeb9f4c4c9","sha256":"f9ce922524b19a5d5f9f154a71526807f23548ccb44c770066df9a963321e9af","sha512":"c965cf870082d2181c874d47b263126dc8c4d85c4f546a1a2ce3562a2d33574a9f829c40b6030e9224acaba30dbfa07f93dcfebe08658cec622084527c6d627b","ssdeep":"768:aNhtU4q9hHZBYWGAhDBuQwqJ7+Morjb4rqpt5lOACQd/Z5S2YUzEB7P:aA9tZBYih0QP7+vnFptvgG/ZCUzEB7P","tlshash":"4303f10d830bf2e0d1ad07377d987dc612203b15d66ac6d51dfa19fa22c2c2625d9af6","first_seen":"2024-09-06T01:53:45Z","last_seen":"2026-05-13T10:00:26.379206Z","times_seen":255,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":129,"receive":258,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/remixicon@3.5.0/fonts/remixicon.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 3.5.0\r\nx-jsd-version-type: version\r\netag: W/\"1e1f5-48QJs2Ev7WXpvZWlpyTMbKw/aZY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 1548215\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\nx-served-by: cache-fra-eddf8230037-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 15663\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":123381,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a1502679c4edcf458b19dce1380a0f79","sha1":"e3c409b3612fed65e9bd95a5a724cc6cac3f6996","sha256":"3319df8b9c28451700b6dc398868f64e5554b3cb164d188bf6f0cac6b6e39793","sha512":"1d75d1d25db23301c3ac3cb125bacc0fd78bbcf7b7cf7a8bdcf3dea33353b221c9104371c7c0c7d82c66574e62c06d1dc28cf99f8810650c982d436dd567607e","ssdeep":"1536:Ykcvr8vn4cYzgKvP1IqRCwNd1l3JclUaqM2GSsRotP:Y58v4cYcKZ7clA","tlshash":"42c3c8beea4f45801702e8d66367278163b9b67dc9817c7ad413788df3c766883862dc","first_seen":"2023-09-03T13:15:01Z","last_seen":"2026-05-14T21:34:13.582226Z","times_seen":1650,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":21,"dns":1,"connect":13,"send":0,"wait":19,"receive":7,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/css/style.css","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:56.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/css/style.css HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:56 GMT\r\ncontent-type: text/css\r\ncontent-length: 18511\r\nlast-modified: Fri, 30 Aug 2024 02:14:34 GMT\r\netag: \"66d12b0a-484f\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18511,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a0a9c01485419b7364467082e309f527","sha1":"b52779a669269a7a341ff19671d225a9a40eac9e","sha256":"b9f2a47a282c6b3a98cdb39838d3f02cfadb62e9a3d04f5efb4eaea01f5af7dd","sha512":"4889bc6aa1810b6d119d94104f7eb553fa6c081b3dffe957c32289d56fbcae0e3d7c9fceba8f7a011af90f9157d4a5dc6f8efc1ed4df9574c332a13e93684425","ssdeep":"192:Rligli/x/XyJ8aTZMwhDK+S6K+nlDXyprWRd4K+GXypVXytBnpJ2qUk3UmiXZXyO:HM8WEbppJcD","tlshash":"22820e5b5aa0320539874a2c66d71ba5337ca433810edafe7dd9405ccfca29987f139d","first_seen":"2024-09-06T01:53:44Z","last_seen":"2026-05-13T10:00:26.383288Z","times_seen":186,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":129,"receive":128,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wordpress-209642-0.cloudclusters.net/aa/dkb/Asstes/imgs/favicon.ico","fqdn":"wordpress-209642-0.cloudclusters.net","domain":"cloudclusters.net","tld":"net"},"ip":{"addr":"108.181.157.242","port":443,"asn":40676,"as":"AS40676","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php","date":"2026-03-28T02:51:57.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudclusters.net","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DC:50:81:B7:BB:22:38:4F:4B:9B:ED:80:17:7B:0D:10:5D:12:14:E0","sha256":"39:2C:99:47:7A:17:2B:DC:AA:CF:16:E3:7F:72:85:54:36:11:31:A4:D1:72:5D:DF:C6:B9:F9:40:AC:84:B8:46"}}},"request":{"raw":"GET /aa/dkb/Asstes/imgs/favicon.ico HTTP/1.1\r\nHost: wordpress-209642-0.cloudclusters.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wordpress-209642-0.cloudclusters.net/aa/dkb/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:51:57 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 242142\r\nlast-modified: Fri, 30 Aug 2024 16:27:10 GMT\r\netag: \"66d1f2de-3b1de\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":242142,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 5 icons, -64x-64, 32 bits/pixel, -128x-128, 32 bits/pixel","md5":"b35d0dda49783541abcaab8f61083b76","sha1":"af5c9c13f5c9de59ecfd9ad98b6f680c2114b438","sha256":"b3e982ffba0784b0d1cc5541ce7f272b4a8a6540baab2a29880fb9295e6c741d","sha512":"e2b42e8fa3cd7c55e7889d8692aa8671949e1d01be54add02057ea1b2ad373016e25cab08d397ba4b1ffc1671a4753021bbff07bfa74e5eb7def4f9f359f6855","ssdeep":"384:mqn4+CCCCCCCCCCCCCCCCCCCOCCCCCCCCCCCCCBCCCCCCCCCCCCCCCaCCCCCCCCv:mq4RWGahrMF","tlshash":"da34ac0be0478e06cc5ac73d86e99b715d119c7956dd88f2259b369ba4bc17c203ecbc","first_seen":"2023-04-05T20:49:52Z","last_seen":"2026-05-13T10:00:26.3848Z","times_seen":366,"resource_available":false,"data":null}},"time_used":1616,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":416,"receive":1200,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"wordpress-209642-0.cloudclusters.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}