{"report_id":"2ce1e334-7e34-4f0d-be9b-f6c3c200ebcd","version":6,"status":"done","tags":[],"date":"2026-04-04T20:37:13Z","url":{"schema":"http","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"title":"x.com/EcchiWaffle/status/1952539064294576635","dom":{"size":245665,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (48948)","md5":"ce1820d971ad7264fa6bc5d3fffaa7ec","sha1":"0470ba3c23ef8f5a6c30e7716fc12eff91a1f436","sha256":"f4992aa83972b9b1210cf11de2cc6ef8d71937008fc9c0889ddee55d1762784e","sha512":"0e735c64de6218b1a7876d91e07c12a307e49b7541dfdb8d25c07b0a9c455110d1489ae9f3d01c6738253c9fb010b7f9d2d36087dd9cd02f6250cf87faf043ac","ssdeep":"1536:XZftksSYXM8d2z8t8rKfeV5ejlDj5pRLhdL6g5q6sAy3Wt8RKzeV5eolDG4YXAhE:XZfusVd2IB8TM0q4esvSnYSDF","tlshash":"66347502bd0464fb51d5e20abb657e573224ce7a35019ee366b4e6ec3c9deac1203dd2","dom_hash":"domhashf60f74857cf92e80cd7ab96210007f9b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-09T20:37:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"iplogger.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"iplogger.site","ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"domain_registered":"2023-08-11","domain_rank":0,"first_seen":"2025-11-05T01:12:30.83781Z","last_seen":"2026-03-31T09:23:07.927791Z","alert_count":4,"request_count":4,"received_data":37740,"sent_data":1775,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"data527.click","ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"domain_registered":"2025-07-14","domain_rank":0,"first_seen":"2025-09-22T17:33:46.606345Z","last_seen":"2026-04-01T07:30:32.771142Z","alert_count":0,"request_count":7,"received_data":101417,"sent_data":3578,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"x.com","ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"1993-04-02","domain_rank":84,"first_seen":"2012-08-16T16:51:36Z","last_seen":"2026-04-01T13:14:32.737558Z","alert_count":0,"request_count":1,"received_data":246319,"sent_data":547,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o-oo.ooo","ip":{"addr":"185.66.201.42","port":443,"asn":201702,"as":"skHosting.eu s.r.o.","country":"Slovakia","country_code":"SK"},"domain_registered":"2015-10-06","domain_rank":1629902,"first_seen":"2017-02-01T17:22:18Z","last_seen":"2026-03-29T13:47:26.368738Z","alert_count":0,"request_count":1,"received_data":106108,"sent_data":417,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"unpkg.com","ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-01-06","domain_rank":1093,"first_seen":"2016-01-07T23:26:01Z","last_seen":"2026-03-29T23:54:08.408227Z","alert_count":0,"request_count":2,"received_data":157903,"sent_data":869,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tinyurl.info.gf","ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-12T17:16:12.712375Z","last_seen":"2026-03-13T11:08:53.305087Z","alert_count":8,"request_count":2,"received_data":9667,"sent_data":1017,"comment":"","tags":null,"fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-29T22:32:58.732232Z","alert_count":0,"request_count":2,"received_data":847443,"sent_data":967,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-03-29T22:23:59.734728Z","alert_count":0,"request_count":1,"received_data":469070,"sent_data":436,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-03-29T23:04:54.250741Z","alert_count":0,"request_count":1,"received_data":95430,"sent_data":423,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"5420204a995b7395dd30e472790585bc","sha1":"9ae8028b7a00d65d1d09016ca95f7aab94c6cda6","sha256":"4d6cc884d0ec98ac5fcda85b035d7f448091adff33bb0fb4ddac9cbaeb1c4c57","sha512":"a247838d0dd86fdd48a9ba5c963205aea9bf2a0fc4b5ab5d4af3d658fcfae2c5b77b3cdb397f923c6cd3a6cdee5ac6e207393be0cb88870192c79a22eef7ceda","ssdeep":"","tlshash":"f2c02b8c310a0c7081f727008f7ff704b0033214a4e4a932489a23048d32f07e754810","size":153,"data":"","first_seen":"2025-11-05T01:12:37.894516Z","last_seen":"2026-04-04T20:37:18.542093Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/bd4900371ae0c2aa7f7e/d38e0a1dc7/?placementName=default","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"532841e8e756b9d527b1fea10f0c7b59","sha1":"76d5157f6b080c1de7437e402dfebe5f0432fefc","sha256":"388086c53d8a3116236607c06c3acc3b4f11c04576b78f421d58a38099a46c09","sha512":"85dd9fd9cc6002a727fc7bc5d59f23ced0d1eecb096bdf0c8631b5385c7cbf0fc512e76393429ec456e5d51b67abf8f2268c6057691aa737131c8e22c2f3a74f","ssdeep":"","tlshash":"eb8143f85fd2e139e5e732959c6ea11c3571c133368598097c0c85243f60a7789aef9e","size":4043,"data":"","first_seen":"2026-04-04T20:37:18.525921Z","last_seen":"2026-04-04T20:37:18.525921Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b7e603bf634fba58ae0fca4f00f4934b","sha1":"8a8e35f1f127f36b6f33e01c2bb3c58120bdcd75","sha256":"17da8d02de1f25069f0fa2e6828f363cddc5a9df721e9c22fae1dcc4c46fdd89","sha512":"ef4188b2d876eb2f1712871758f41dfb893d25c4df5a03767affa329d4de8359e72b1ef0abb1e56ec5ed70272f92f6fa9fb325a57a7749112c092c72fe292d9a","ssdeep":"","tlshash":"a431ed4668e240a91e1310b5466fa31e347da12f202dca667f1d93970f4cb3dc6af6ca","size":1740,"data":"","first_seen":"2026-04-04T20:37:18.544928Z","last_seen":"2026-04-04T20:37:18.544928Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"o-oo.ooo/js/AfPopV3.js?ver=26","fqdn":"o-oo.ooo","domain":"o-oo.ooo","tld":"ooo"},"ip":{"addr":"185.66.201.42","port":443,"asn":201702,"as":"skHosting.eu s.r.o.","country":"Slovakia","country_code":"SK"},"introduction_type":"scriptElement","is_inline":false,"md5":"73b0d4087611b356a0a14bc37543aa5e","sha1":"5e959a76299c94b9d6bbcea08a83068ea3378f09","sha256":"82ac7853c111dde43313fb661e8461ac68ca4f6d639b08ace5fb62ccaf3734a3","sha512":"5ccc1d028e0e401af2bd127676d2a82a1fc76f5c402d7ceba10dbd374604d1f2de55674e6e54dd0e2c9895a7b2e320a67c7cf489c7d54d20fecc3fc03827a5cd","ssdeep":"1536:1RY8OvlYcEKvheTo+JxL86OXyvHikoHpu1u+EZ7F50mn5pg4i86F8xnZUCioU6:g8Ovaclc1Hl8Z0mn5pg4oGRZXU6","tlshash":"cca35561710350d630e1d26e166ab3c12d795402f4298da6fc21fb9fcaaed93419faf3","size":105823,"data":"","first_seen":"2025-07-22T04:26:03.713313Z","last_seen":"2026-04-04T20:37:18.538668Z","times_seen":83,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.7.2.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","size":94840,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-05T08:17:11.860303Z","times_seen":19361,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9ae8288027c00d752101ecf514901943","sha1":"def09b1e2dbf2ec7d0e3d784d5fa954b1368e793","sha256":"2a413ba2bf38282ad8609cb86e4a2e7b798bccd7a46b9d3ba018db35350a7f74","sha512":"0c228310fdc28710197b2fc85224c47113f650f3bb0240079a393d6111402f3437e4f97360355f622cb2c47d4ff96c1e8a3c6e9e8d6ffec46886609725847922","ssdeep":"","tlshash":"dfa0128003184c340404022428f987f95570e48850e05446c20dab1200d04881024d1d","size":86,"data":"","first_seen":"2026-04-04T20:37:18.547221Z","last_seen":"2026-04-04T20:37:18.547221Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e0b6876e4c3a11a53d7940d96c6e98a7","sha1":"647216f4af95f1ed5e74e3581365f0b8d422e611","sha256":"2425050ecb2fe5ff83ef527992db51d71ba428a516247f44c7b332a5c9c0acfd","sha512":"c12be937a01c53d442188ca3e87af31b72e0eefba5b6adff51852d1c5391f8e7ecd9736f20de8101281d2866b96bbe773e10671bf581a762d8f041bc8a4b95e0","ssdeep":"1536:9t8rKfeV5ejlDj5pRLhdL6g5q6sAy3Wt8RKzeV5eolDG4YXAhfa6g5qzzAy3874L:lB8TM0q4L","tlshash":"b5f3fe12bd0468fb52c5e30af7617e533224cd7a25019ee3a674f5e97ca9e6c12039e3","size":160554,"data":"","first_seen":"2026-04-04T20:37:18.549436Z","last_seen":"2026-04-04T20:37:18.549436Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b13135e4a483d2909cfe996aa0b4a88","sha1":"f985c48cc274d6341b96e3fe8e97391866b501b4","sha256":"ff878c8a35b7eeded4db32807e697c9ba725c1d10d8edc3cbab40d41fba7d6c6","sha512":"8b845e1cc7f41dacc6d1a7d9a998e1ffd0a6934be8dc24e26a164f5be0b76c88f1c51813152920ae29393140d3a9ebd1e199a32d15b81f6b2894f4ccbd94b3ac","ssdeep":"768:tdxZIFDpCCcl+2CM2sOSnk/qi7B+oDFPihWjNp6VVu0ZDf:bTC+mM2dSnKqYfDZuwNp0Df","tlshash":"5b43a78b724d5096783084633c5abcd89f199bc73faa9fca138cc35c258a9c955fad90","size":60028,"data":"","first_seen":"2026-04-03T17:19:52.690386Z","last_seen":"2026-04-05T07:21:54.100959Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/leaflet@1.7.1/dist/leaflet.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4eaa81e6e27a89ed2410a7c39048a397","sha1":"88a91ff8e6ad782d5bc632d143db4cbb936dd3b4","sha256":"c837347a297c1a35852aa375392cc74950a2b868214e8b1909c4637b8b63ee24","sha512":"5d0a1832a3132bc2ef7715d81b79d9e38f213844228257ea909b3534e415e387169d4ac173c3e400e717cb6d30d2f95a5da55479aac83818625d9e55df29f1c0","ssdeep":"1536:vpjOihF8Zozly9q4WoKQRTc2J32OnDIb6Y6JegiXSDXILP7YV4ngL:RjOicd9r6t4eHxtgL","tlshash":"45d3a58ab391ba2643c35174403f210bf6326595a40a452cb83dd9efed6ca49713bf7e","size":141941,"data":"","first_seen":"2023-03-07T12:07:28Z","last_seen":"2026-04-05T00:55:27.398891Z","times_seen":2381,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c1fe61974dc82b61436bafe5ed7d61b1","sha1":"5ce84b36f46eff3ca361780780dc5a7c15858fa6","sha256":"e73db4ebb57e7606129898953f8a40579dc1fcb61d27b0564b5b296a91717e83","sha512":"c5b00b7591b991bd49bd1a70c2aaed748dbd1ffd50a4c10b6e2bd43f5487bc538b4cf4dfccf980405348f0409a58aaa559e98b7b3bcf23ad5e9cb6e59c9b1b63","ssdeep":"","tlshash":"63e01a2923aa09552e55a076b7e7670a682121072186fa5d3e8c45c80fdbe52c1e53e9","size":372,"data":"","first_seen":"2025-11-05T01:12:37.90429Z","last_seen":"2026-04-04T20:37:18.552454Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/js/responsive.js","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"5a5141403fa2cb9ce4b97dbddac9faf3","sha1":"8916e3f27ab576942252480c0b8894f623b409fd","sha256":"041844af03985a3d54b713ff8330682f1c90127f2a35944a77ee88ae05dba453","sha512":"4caab105f6f3faf38d21048b073428983a426999ea5597fdc37dff909c2faa7c7c3a8fa51dab58add01ad6e1f7341c058d9beecb304b09c27ce035cf3ad2b59d","ssdeep":"96:VM25nUz6yCe+JSkyM2WjzzTOjyb+pq+Ho8dNk3045D8DiGOElcNMqfM9Al6i49vH:Gin6Ce7bM9zzTOE5gk3L5MfPcqY/l6vR","tlshash":"53b173b9f78814b8b972726e9f99a14c36359177310088a47c0c4e407fa0ca796bdfed","size":5278,"data":"","first_seen":"2024-10-11T08:47:40.672876Z","last_seen":"2026-04-04T20:37:18.513397Z","times_seen":174,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9131aa2762759852e273e004ee87bc34","sha1":"c69d37bb0fb387d07bea8ab4d7e50e8b695bc1ed","sha256":"11228e42ecf5d4e964750b65bb7828a7809130a054a23d04a0c5766cb9ce7dd3","sha512":"012624b01617597cbf43e902ced1b43029f14ab55270f77c725e68d8befab15c8210518707f85435969bdd9a823220ad8741a227eae72cf01f78f9584487e1a8","ssdeep":"","tlshash":"cba00222cf2080773479435d2cddea137976431dd1306dabd57cf04264d719608e632d","size":77,"data":"","first_seen":"2023-03-08T08:36:14Z","last_seen":"2026-04-05T07:21:54.101515Z","times_seen":9598,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"15a3f40dde8f6c27c05cce205a4ea0b4","sha1":"2835605998abace30d742b3b054c88d446c3acc5","sha256":"a6c6c8c0218a3fc7f363f06d5e089bf5be86e1f604e54c61dff0b1e08b10b5a5","sha512":"de602e980b25c992d33187e6a61d801af51b5e6464a65889afc9f061b4fabf46394702909c99a1fd56902d2ef0d23f8acd20b25f3e6e8efa3994c6b5fede2ea2","ssdeep":"","tlshash":"4fb00209ce30c4b7e57111ba1c95d2527777136dc100d987e578e0c1b4d75c54cc5749","size":103,"data":"","first_seen":"2023-03-08T08:19:23Z","last_seen":"2026-04-05T07:21:54.102186Z","times_seen":9592,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/js/responsive.js","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"5a5141403fa2cb9ce4b97dbddac9faf3","sha1":"8916e3f27ab576942252480c0b8894f623b409fd","sha256":"041844af03985a3d54b713ff8330682f1c90127f2a35944a77ee88ae05dba453","sha512":"4caab105f6f3faf38d21048b073428983a426999ea5597fdc37dff909c2faa7c7c3a8fa51dab58add01ad6e1f7341c058d9beecb304b09c27ce035cf3ad2b59d","ssdeep":"96:VM25nUz6yCe+JSkyM2WjzzTOjyb+pq+Ho8dNk3045D8DiGOElcNMqfM9Al6i49vH:Gin6Ce7bM9zzTOE5gk3L5MfPcqY/l6vR","tlshash":"53b173b9f78814b8b972726e9f99a14c36359177310088a47c0c4e407fa0ca796bdfed","size":5278,"data":"","first_seen":"2024-10-11T08:47:40.672876Z","last_seen":"2026-04-04T20:37:18.513397Z","times_seen":174,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/leaflet-routing-machine/3.2.12/leaflet-routing-machine.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8eaf7959407672762bfe7c9af9aea3d5","sha1":"99647c592c2d64c073e479aa62b2758f518c9624","sha256":"5be82043430886d1b92da52b053b51a941474f49bd3274d526a7a3dcad8fcf60","sha512":"39c29bf5297d9b189c274a40453a2e87ab7115acf7746d43b4585ece44a6679083d0f7d0fbf5d10b0bd2930e3a6bb3922f94e05f7e621752ffcc55c60b6b5d05","ssdeep":"6144:5uaHfvnt4h+1c+13+1QXEibheZPhOZTZghUR9u157COz9QAO50B1/6K1kP9VSEIo:x+ibheZPhOZTZghURefO7","tlshash":"ea051559e6b40c63114762bbac351a437364441f6e683c187beca9ce1f6d81d82fa7bc","size":839252,"data":"","first_seen":"2023-03-12T21:20:17Z","last_seen":"2026-04-04T20:37:18.556434Z","times_seen":95,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-K3PHC8NMXH","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7561e2019e5d5a6f1a42bca2a743487e","sha1":"5b5acbb21e1e64e8f301cd58af6a300107740534","sha256":"746a4957d7759e4a25f7ee93c5228c3e4e8993c5e6423b6bbe88937dbb873839","sha512":"da9c6f9bfcb2393b2bf67494fb6c8b67c919501adf470ec36ff568798ddaa9d7840d477e821ef48b3e5dc9dccc8255e0391c42c054e85b5de3761adbd55a75ef","ssdeep":"6144:Lk3eqQGzLr8DP9aGb/F8x/OW+/5EiWz1SoRSLrgqz+:yzH8IGbt8vci","tlshash":"a9a4f9ceb3d674225396f478903f018ba57b29e2b448c8a5f189cce41e7469a4277f7c","size":468466,"data":"","first_seen":"2026-04-04T20:37:18.521548Z","last_seen":"2026-04-04T20:37:18.521548Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e1519af201f27f3a8a86c9b121d27802","sha1":"6ebe98bafb45d893d23495ac7d28beb028f1d5db","sha256":"ea6c23dc51e433e7188a1f63e54360e4f78b48e88f34391c1a4289feb7c23308","sha512":"9a74d6f54632b3176e2544cd887cccabf402d60cccdbe1b807a904f4cbc9c9e98e1b213819573eff39e4fdb10e853e75d4d108b67b34453a0c6b41dde65e4c72","ssdeep":"","tlshash":"88f0ec59fed3e56f3957916b037bc68e3e30600a8408d846751c59818f12cf2dc59dd4","size":452,"data":"","first_seen":"2023-03-09T11:57:16Z","last_seen":"2026-04-05T07:21:54.102757Z","times_seen":7686,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"unpkg.com/leaflet@1.7.1/dist/leaflet.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 08:16:48 GMT","end":"Tue, 19 May 2026 09:15:09 GMT"},"fingerprint":{"sha1":"F3:CF:0B:A3:28:07:E9:5A:D0:8B:F4:9E:A8:A1:9B:71:A6:59:38:23","sha256":"DD:EE:6D:62:AC:D0:59:11:F9:1C:53:44:27:F0:8B:A5:2C:A2:C6:C4:BF:B8:79:AF:A5:5F:B3:E1:29:E8:45:8E"}}},"request":{"raw":"GET /leaflet@1.7.1/dist/leaflet.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: 9e731b8c5e110b65-OSL\r\ncf-cache-status: HIT\r\nfly-request-id: 01KH9HC7DC4GRNXGTQSCGGF34V-fra\r\naccess-control-allow-origin: *\r\nage: 639368\r\ncache-control: public, max-age=31536000\r\nexpires: Sun, 04 Apr 2027 20:36:51 GMT\r\nlast-modified: Thu, 12 Feb 2026 18:21:24 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:yDc0eil8GjWFKqN1OSzHSVCiuGghTosZCcRje4tj7iQ=:\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":141941,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65384)","md5":"4eaa81e6e27a89ed2410a7c39048a397","sha1":"88a91ff8e6ad782d5bc632d143db4cbb936dd3b4","sha256":"c837347a297c1a35852aa375392cc74950a2b868214e8b1909c4637b8b63ee24","sha512":"5d0a1832a3132bc2ef7715d81b79d9e38f213844228257ea909b3534e415e387169d4ac173c3e400e717cb6d30d2f95a5da55479aac83818625d9e55df29f1c0","ssdeep":"1536:vpjOihF8Zozly9q4WoKQRTc2J32OnDIb6Y6JegiXSDXILP7YV4ngL:RjOicd9r6t4eHxtgL","tlshash":"45d3a58ab391ba2643c35174403f210bf6326595a40a452cb83dd9efed6ca49713bf7e","first_seen":"2023-03-07T12:07:28Z","last_seen":"2026-04-05T00:55:27.398891Z","times_seen":2381,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":31,"dns":0,"connect":4,"send":0,"wait":26,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iplogger.site/css/favicon.png","fqdn":"iplogger.site","domain":"iplogger.site","tld":"site"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iplogger.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:09:38 GMT","end":"Tue, 05 May 2026 06:09:37 GMT"},"fingerprint":{"sha1":"F5:05:C6:EB:91:A4:EF:47:D3:1D:D4:F6:D7:9E:FE:EE:80:C5:5B:11","sha256":"49:07:DB:11:65:D6:79:E6:CC:51:47:B9:82:F1:3D:6F:E6:3B:1F:B1:3E:BD:D2:92:FC:CD:42:20:A6:75:EE:48"}}},"request":{"raw":"GET /css/favicon.png HTTP/1.1\r\nHost: iplogger.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 31 Jan 2025 12:16:36 GMT\r\netag: \"184a-62cff83931100\"\r\naccept-ranges: bytes\r\ncontent-length: 6218\r\ncontent-type: image/png\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6218,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 65, 8-bit/color RGB, non-interlaced","md5":"5a030c32be051b9cff9fecfb39e10ece","sha1":"af676ee5ab21887c826130edc5b76fa3528f20e8","sha256":"685ce7f2fd63ae132a6c8891921ef6ae23717f0dac6e050ca3a52b6a58f8c18e","sha512":"820f027e0b8986c44151aa631fadf6b32b2914fb0ce39afd88447c1917cd2d430d79485efdc0e2a930fa92140a353b5b67eb517d8b62678992da0ff573682659","ssdeep":"96:4SMllcHitlIxv9vk7C1+I4wWHLihk/xOlKaY0WeL9v6aMFAYHV1L91na1lG8:4SHIIHUCD4wau5LDL97W/P/naTG8","tlshash":"73d18e4a65cb442d118d52b635db9f0a86379f0a112e5c086fe5834bdb62ce178f2ab3","first_seen":"2025-11-05T01:12:37.882479Z","last_seen":"2026-04-04T20:37:18.505695Z","times_seen":29,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":104,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"iplogger.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026log_shown=true","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:52.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026log_shown=true HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tinyurl.info.gf\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\nexpires: Sun, 01 Jan 2014 00:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"JSON text data","md5":"a456a2f35087bd2e9908b66f33a57a13","sha1":"218d7cd44a04133298526f7b43b7550e83dc5caa","sha256":"a0f8264885403e66816d6ecd2450fbc7f8678931eb9ef9dbdd90609500b20e10","sha512":"10bc66b61a5a02fa1ec02a66ed6889adc189e9a94b907e3cc8aaa53b9de34dbb8e9c60072f0b3c7e379138431ec019c5b7a56e192e0b0a336b93844d5192d63f","ssdeep":"","tlshash":"c540000c000c0000c000300c00000000000330c0000000000000000003300000000000","first_seen":"2023-04-07T23:14:09Z","last_seen":"2026-04-04T20:37:18.509339Z","times_seen":228,"resource_available":true,"data":null}},"time_used":83,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":83,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x.com/EcchiWaffle/status/1952539064294576635","fqdn":"x.com","domain":"x.com","tld":"com"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-04T20:37:02.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"x.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 05:27:11 GMT","end":"Sun, 28 Jun 2026 05:27:10 GMT"},"fingerprint":{"sha1":"F9:FC:3C:BF:BF:69:1B:B3:B5:11:34:12:A5:F3:79:69:A0:0F:E3:27","sha256":"0A:05:F2:E1:BE:C8:C4:74:AE:B4:FF:2B:34:CA:5D:51:14:4F:92:45:E9:71:29:01:EF:24:E7:79:7E:42:C3:27"}}},"request":{"raw":"GET /EcchiWaffle/status/1952539064294576635 HTTP/1.1\r\nHost: x.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":246319,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (48733)","md5":"5958e74881f9a536c5b1f28ebad1d8bb","sha1":"b284fc6288ca76e7e39d1cc18213078b6940b0f7","sha256":"9a1db6535b9025c74ee4702491dedf0dfa7d5d8e60652f429f74cf25cff014c2","sha512":"70f0306bc1803e5e0b210c50d4078f2d1c18d94721507f7435d34b2e60fd997a6e12ef5e61013ae9a4ea67712554ad6e9fbecf9a34c95744c97bec2fce998b6f","ssdeep":"1536:JD2vYlSYXM8d2zRt8rKfeV5ejlDj5pRLhdL6g5q6sAy3Wt8RKzeV5eolDG4YXAhD:JD2glVd2tB8TM0q4OsvSnYSD6","tlshash":"c4347502bd0464fb51d5e20abb657e573224ce7a35019ee366b4e6ec3c9deac1203dd2","first_seen":"2026-04-04T20:37:18.510729Z","last_seen":"2026-04-04T20:37:18.510729Z","times_seen":1,"resource_available":true,"data":null}},"time_used":182,"timings":{"blocked":15,"dns":0,"connect":1,"send":0,"wait":153,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/js/responsive.js","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /js/responsive.js HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 26 Sep 2024 17:52:13 GMT\r\netag: W/\"66f59f4d-149e\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nexpires: Sat, 04 Apr 2026 21:36:51 GMT\r\ncache-control: max-age=3600\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5278,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"5a5141403fa2cb9ce4b97dbddac9faf3","sha1":"8916e3f27ab576942252480c0b8894f623b409fd","sha256":"041844af03985a3d54b713ff8330682f1c90127f2a35944a77ee88ae05dba453","sha512":"4caab105f6f3faf38d21048b073428983a426999ea5597fdc37dff909c2faa7c7c3a8fa51dab58add01ad6e1f7341c058d9beecb304b09c27ce035cf3ad2b59d","ssdeep":"96:VM25nUz6yCe+JSkyM2WjzzTOjyb+pq+Ho8dNk3045D8DiGOElcNMqfM9Al6i49vH:Gin6Ce7bM9zzTOE5gk3L5MfPcqY/l6vR","tlshash":"53b173b9f78814b8b972726e9f99a14c36359177310088a47c0c4e407fa0ca796bdfed","first_seen":"2024-10-11T08:47:40.672876Z","last_seen":"2026-04-04T20:37:18.513397Z","times_seen":174,"resource_available":true,"data":null}},"time_used":458,"timings":{"blocked":187,"dns":88,"connect":33,"send":0,"wait":76,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026randomA=1_9754\u0026maxw=1280\u0026time=04%2F04%2F2026%2020%3A36%3A52","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:52.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026randomA=1_9754\u0026maxw=1280\u0026time=04%2F04%2F2026%2020%3A36%3A52 HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\nset-cookie: shown1=0; expires=Sun, 05 Apr 2026 20:36:52 GMT; Max-Age=86400; secure; SameSite=None\nused_ad2938201=1; expires=Sun, 05 Apr 2026 03:59:59 GMT; Max-Age=26587; path=/; secure; SameSite=None\ntotal_impressions=1; expires=Sun, 05 Apr 2026 03:59:59 GMT; Max-Age=26587; secure; SameSite=None\r\nexpires: Sun, 01 Jan 2014 00:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":564,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (481)","md5":"59f503fc37eead2472a1f3e243d5d91a","sha1":"da9222c65d8f0e7e19b71286fd47d4760d8035e5","sha256":"11178a2add79445cca24a37d80c8ea11637699495b65415bf018a772b700c460","sha512":"c99e580975a8b223df67d970fef317f5231204e79e4b233dcb2f951fa007ac437ab9e450945f5a89f489ac20a8710f6b0455b0bdc16f0b742f145648b5c8b1f3","ssdeep":"","tlshash":"69f026f470cb41006d02d5902513702c9e49674b465d9908bcef6bb41705dea6452788","first_seen":"2026-04-04T20:37:18.515109Z","last_seen":"2026-04-04T20:37:18.515109Z","times_seen":1,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tinyurl.info.gf/hltJiK34rH","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-04T20:36:50.367Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tinyurl.info.gf","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:10:47 GMT","end":"Tue, 05 May 2026 06:10:46 GMT"},"fingerprint":{"sha1":"0D:C9:9B:DB:DB:B8:93:8F:15:D2:BB:4E:37:C2:63:22:E9:32:36:7E","sha256":"5B:4C:EB:44:17:B0:02:D8:0E:47:96:36:21:E7:E7:D4:70:0B:5A:46:54:74:EE:4F:F9:83:B6:62:42:2B:99:D2"}}},"request":{"raw":"GET /hltJiK34rH HTTP/1.1\r\nHost: tinyurl.info.gf\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 3279\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sat, 04 Apr 2026 20:36:50 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9266,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1459)","md5":"ca93a81c988539b5db5266e991779753","sha1":"336e4d025e4bdcd2bee7530cf047a29b6a9ab50d","sha256":"a1dc3e5bed0bb6a4c868aa10f290bc42e2db3adbd0fda40c60ba50f4297c2cd7","sha512":"09c9a8b412b1f279f972c3d24cae9f33d69d8332066bc8e45084d2fcabfebc0697d761b8a9c0f4054c085e8a0d4c732ed9a8d9a4f1cbf079ba348eea5d6075b6","ssdeep":"192:NNQeA06JsOI69Kv13xV1cSHYu9ffS52EhGT5e29:NNQY63kv13T1FHpf5N","tlshash":"26129253bba36114750380716ba77b1c7128c01b961bcdb9be9c2269cfc96e995a33cc","first_seen":"2026-04-04T20:37:18.518023Z","last_seen":"2026-04-04T20:37:18.518023Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1189,"timings":{"blocked":529,"dns":314,"connect":103,"send":0,"wait":131,"receive":0,"ssl":110},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026is_first=true\u0026log_shown=true","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:52.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026is_first=true\u0026log_shown=true HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tinyurl.info.gf\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\nexpires: Sun, 01 Jan 2014 00:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"JSON text data","md5":"a456a2f35087bd2e9908b66f33a57a13","sha1":"218d7cd44a04133298526f7b43b7550e83dc5caa","sha256":"a0f8264885403e66816d6ecd2450fbc7f8678931eb9ef9dbdd90609500b20e10","sha512":"10bc66b61a5a02fa1ec02a66ed6889adc189e9a94b907e3cc8aaa53b9de34dbb8e9c60072f0b3c7e379138431ec019c5b7a56e192e0b0a336b93844d5192d63f","ssdeep":"","tlshash":"c540000c000c0000c000300c00000000000330c0000000000000000003300000000000","first_seen":"2023-04-07T23:14:09Z","last_seen":"2026-04-04T20:37:18.509339Z","times_seen":228,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/leaflet-routing-machine/3.2.12/leaflet-routing-machine.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/leaflet-routing-machine/3.2.12/leaflet-routing-machine.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 63767\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ed0-cce54\"\r\nlast-modified: Mon, 04 May 2020 16:12:00 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: MISS\r\nexpires: Thu, 25 Mar 2027 20:36:51 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AdSYcPY7RL9XH4PqupnjCRgdBMwRhLqPEHnucSn0iNv0G85qWhFZ6cDPgsnsteX6wa8%2FAGEdwX1uC3P5yYbjyLq9YOki8M9D%2BAluavDPMqhVFp2idUB3dgvZe1n05MFgLFUNLalI\"}]}\r\ncf-ray: 9e731b8c5eed0afa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":839252,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (1690)","md5":"a25c962521887dc9a1ac946b5843fede","sha1":"c5520b6e598777d705274d8c4f58140bb90ee101","sha256":"029c663305505def52bd326a92eea3d54571439b56f097642d6afc5d52874c71","sha512":"bfd0eb0873d6c4b4a829bcf50468066e46c359994fb0080cab718cdecc5115afebdafb713d772780137b2bcac8e64f69ee428f8eaf42108e4c7c26c85f90db4d","ssdeep":"6144:5uaHfvnt4q+1c+13+1QXoBJ1n/6ibECdvECdzdAE4ROu157COz9QAO50B1/6K1kV:xhBJ1n/6ibECdvECdzdAE4RhfO7","tlshash":"b7051448e2b40e63094762baac378a827b24841b5e5c3d187beca5dd1f6dc1d41f67bc","first_seen":"2025-11-05T01:12:37.88602Z","last_seen":"2026-04-04T20:37:18.520512Z","times_seen":25,"resource_available":false,"data":null}},"time_used":167,"timings":{"blocked":35,"dns":3,"connect":5,"send":0,"wait":88,"receive":3,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/js/responsive.js","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /js/responsive.js HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 26 Sep 2024 17:52:13 GMT\r\netag: W/\"66f59f4d-149e\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nexpires: Sat, 04 Apr 2026 21:36:51 GMT\r\ncache-control: max-age=3600\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5278,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"5a5141403fa2cb9ce4b97dbddac9faf3","sha1":"8916e3f27ab576942252480c0b8894f623b409fd","sha256":"041844af03985a3d54b713ff8330682f1c90127f2a35944a77ee88ae05dba453","sha512":"4caab105f6f3faf38d21048b073428983a426999ea5597fdc37dff909c2faa7c7c3a8fa51dab58add01ad6e1f7341c058d9beecb304b09c27ce035cf3ad2b59d","ssdeep":"96:VM25nUz6yCe+JSkyM2WjzzTOjyb+pq+Ho8dNk3045D8DiGOElcNMqfM9Al6i49vH:Gin6Ce7bM9zzTOE5gk3L5MfPcqY/l6vR","tlshash":"53b173b9f78814b8b972726e9f99a14c36359177310088a47c0c4e407fa0ca796bdfed","first_seen":"2024-10-11T08:47:40.672876Z","last_seen":"2026-04-04T20:37:18.513397Z","times_seen":174,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-K3PHC8NMXH","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.226Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:36:38 GMT","end":"Mon, 08 Jun 2026 08:36:37 GMT"},"fingerprint":{"sha1":"8B:73:AE:59:60:F4:D1:86:E6:25:8C:8F:1E:F7:92:DD:D3:8C:F0:DA","sha256":"F6:EA:BC:29:37:15:42:CF:41:13:28:BA:F3:C5:86:88:DD:C6:3F:81:75:10:45:14:D6:EC:E6:F0:E6:B6:B1:04"}}},"request":{"raw":"GET /gtag/js?id=G-K3PHC8NMXH HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\nexpires: Sat, 04 Apr 2026 20:36:51 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 155473\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":468466,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"7561e2019e5d5a6f1a42bca2a743487e","sha1":"5b5acbb21e1e64e8f301cd58af6a300107740534","sha256":"746a4957d7759e4a25f7ee93c5228c3e4e8993c5e6423b6bbe88937dbb873839","sha512":"da9c6f9bfcb2393b2bf67494fb6c8b67c919501adf470ec36ff568798ddaa9d7840d477e821ef48b3e5dc9dccc8255e0391c42c054e85b5de3761adbd55a75ef","ssdeep":"6144:Lk3eqQGzLr8DP9aGb/F8x/OW+/5EiWz1SoRSLrgqz+:yzH8IGbt8vci","tlshash":"a9a4f9ceb3d674225396f478903f018ba57b29e2b448c8a5f189cce41e7469a4277f7c","first_seen":"2026-04-04T20:37:18.521548Z","last_seen":"2026-04-04T20:37:18.521548Z","times_seen":1,"resource_available":true,"data":null}},"time_used":518,"timings":{"blocked":186,"dns":10,"connect":28,"send":0,"wait":56,"receive":82,"ssl":153},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.7.2.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-1.7.2.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-17278\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\nage: 2384918\r\nx-served-by: cache-lga21955-LGA, cache-hel1410033-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 37, 5258\r\nx-timer: S1775335012.088373,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 33626\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":94840,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)","md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-05T08:17:11.860303Z","times_seen":19361,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":75,"dns":1,"connect":26,"send":0,"wait":27,"receive":9,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/leaflet-routing-machine/3.2.12/leaflet-routing-machine.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.224Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/leaflet-routing-machine/3.2.12/leaflet-routing-machine.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1155\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ed0-182a\"\r\nlast-modified: Mon, 04 May 2020 16:12:00 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1260252\r\nexpires: Thu, 25 Mar 2027 20:36:51 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9oEwk%2BEfVwnZ%2B1T%2BiRVQzR0Aqd0PBE1wYPfcy054O1kiuhi9d4skDXsmhijQ6xnbHIIA3g2s0C841Ei%2Fn0pms%2F1OsYcGif9xRaF0zPBlX6qZyGHKdg%2F025acdN9b6zhsaucB6gs9\"}]}\r\ncf-ray: 9e731b8c5eee0afa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6186,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"1d139f2afa5af2e5e4bd460b7e99e036","sha1":"6380aaed38bc8e555f2bc47dd5014ecb73e49fc6","sha256":"72edc47b201b761ec5679f17e3ea10cf6837d13c3f53edd4b6a9abd444ce0ea4","sha512":"783dd247f47b6dc27d60979a51eeca5fcbbc9da00381a96963fa0d27a007be9d4e0c7177891f15f56e14814eb5d520ff8c8d06b056e28f20c103348e83e9fe89","ssdeep":"96:2F9rWgPzK/6HH9D9WH9+GNNndQtKFb5tNDv2wqNp7bnFlj:29agrK/6dwH9pnytKF/ND+1NZnF9","tlshash":"64d1a1436b733708f116507996f56a26bb2d4247900ecbf83fddb3db8f8519c9812a88","first_seen":"2023-04-16T18:27:51Z","last_seen":"2026-04-04T20:37:18.524961Z","times_seen":129,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":37,"dns":9,"connect":4,"send":0,"wait":12,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/bd4900371ae0c2aa7f7e/d38e0a1dc7/?placementName=default","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /bd4900371ae0c2aa7f7e/d38e0a1dc7/?placementName=default HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: application/javascript;charset=utf-8\r\nexpires: Sun, 01 Jan 2014 00:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4043,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"532841e8e756b9d527b1fea10f0c7b59","sha1":"76d5157f6b080c1de7437e402dfebe5f0432fefc","sha256":"388086c53d8a3116236607c06c3acc3b4f11c04576b78f421d58a38099a46c09","sha512":"85dd9fd9cc6002a727fc7bc5d59f23ced0d1eecb096bdf0c8631b5385c7cbf0fc512e76393429ec456e5d51b67abf8f2268c6057691aa737131c8e22c2f3a74f","ssdeep":"","tlshash":"eb8143f85fd2e139e5e732959c6ea11c3571c133368598097c0c85243f60a7789aef9e","first_seen":"2026-04-04T20:37:18.525921Z","last_seen":"2026-04-04T20:37:18.525921Z","times_seen":1,"resource_available":true,"data":null}},"time_used":475,"timings":{"blocked":193,"dns":87,"connect":37,"send":0,"wait":81,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iplogger.site/css/images/animated_loader.gif","fqdn":"iplogger.site","domain":"iplogger.site","tld":"site"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iplogger.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:09:38 GMT","end":"Tue, 05 May 2026 06:09:37 GMT"},"fingerprint":{"sha1":"F5:05:C6:EB:91:A4:EF:47:D3:1D:D4:F6:D7:9E:FE:EE:80:C5:5B:11","sha256":"49:07:DB:11:65:D6:79:E6:CC:51:47:B9:82:F1:3D:6F:E6:3B:1F:B1:3E:BD:D2:92:FC:CD:42:20:A6:75:EE:48"}}},"request":{"raw":"GET /css/images/animated_loader.gif HTTP/1.1\r\nHost: iplogger.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 17 Jul 2025 09:17:29 GMT\r\netag: \"102f-63a1c7a8eb2c8\"\r\naccept-ranges: bytes\r\ncontent-length: 4143\r\ncontent-type: image/gif\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4143,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 232 x 63","md5":"fcbe7d2e70a7ddc7c354c4d5dfd98ad6","sha1":"730f716caf0b0f5bb345047c826625f314acd335","sha256":"f44361e1c42dac67374b7280363302f0659ee6b50d4c75dd2823037a77095266","sha512":"8972aec0220dc6e5095d783d6fe660a0b15ff1f5acc38f182ab7b2d2a769f7ff8f03743dea84476cbe464350b377bb5fe027abdf4ac38615ffef0f546491d8db","ssdeep":"96:9NQo6r2Zv0EtTZSDxBRzbws5NGke+1fS/sFR0h31QCM:9K8v0E+dEkeWS/D19M","tlshash":"3c816c22fe0927f8e61509301287645b6c09ee3cb2767ceb5458b67524b173f32269c6","first_seen":"2025-11-05T01:12:37.878792Z","last_seen":"2026-04-04T20:37:18.528647Z","times_seen":22,"resource_available":false,"data":null}},"time_used":499,"timings":{"blocked":121,"dns":1,"connect":103,"send":0,"wait":163,"receive":0,"ssl":111},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"iplogger.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tinyurl.info.gf/track.php","fqdn":"tinyurl.info.gf","domain":"info.gf","tld":"gf"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tinyurl.info.gf","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:10:47 GMT","end":"Tue, 05 May 2026 06:10:46 GMT"},"fingerprint":{"sha1":"0D:C9:9B:DB:DB:B8:93:8F:15:D2:BB:4E:37:C2:63:22:E9:32:36:7E","sha256":"5B:4C:EB:44:17:B0:02:D8:0E:47:96:36:21:E7:E7:D4:70:0B:5A:46:54:74:EE:4F:F9:83:B6:62:42:2B:99:D2"}}},"request":{"raw":"POST /track.php HTTP/1.1\r\nHost: tinyurl.info.gf\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 89\r\nOrigin: https://tinyurl.info.gf\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/hltJiK34rH\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":89,"data":"{\"latitude\":0,\"longitude\":0,\"trackingcode\":\"rBY4Fo3UQxRTrmN\",\"referrer\":\"Direct/Unknown\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 23\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text","md5":"cc9067c2ee470dc248b14b194209a34e","sha1":"31789ace8fdb0fae2976e8303b614c51d0a139a9","sha256":"7c370d9536d7d0d6a0f7cd7f9826692acd93e4fb05ba46f7b630b879740343d3","sha512":"93bbe8dc1338a568cfb4a4e8a56f47a689142f999c7744b8db3ad6862594f8828c73246ce923400a43f0c90f2fcc784a32fafebae059aea99bc9e7a863d1f538","ssdeep":"","tlshash":"10300000c0000000000000300000000000000000c00000000000000000000000000000","first_seen":"2023-03-07T01:29:39Z","last_seen":"2026-04-05T07:07:58.975939Z","times_seen":1011,"resource_available":true,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":358,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"tinyurl.info.gf","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iplogger.site/css/favicon.png","fqdn":"iplogger.site","domain":"iplogger.site","tld":"site"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iplogger.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:09:38 GMT","end":"Tue, 05 May 2026 06:09:37 GMT"},"fingerprint":{"sha1":"F5:05:C6:EB:91:A4:EF:47:D3:1D:D4:F6:D7:9E:FE:EE:80:C5:5B:11","sha256":"49:07:DB:11:65:D6:79:E6:CC:51:47:B9:82:F1:3D:6F:E6:3B:1F:B1:3E:BD:D2:92:FC:CD:42:20:A6:75:EE:48"}}},"request":{"raw":"GET /css/favicon.png HTTP/1.1\r\nHost: iplogger.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 31 Jan 2025 12:16:36 GMT\r\netag: \"184a-62cff83931100\"\r\naccept-ranges: bytes\r\ncontent-length: 6218\r\ncontent-type: image/png\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6218,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 65, 8-bit/color RGB, non-interlaced","md5":"5a030c32be051b9cff9fecfb39e10ece","sha1":"af676ee5ab21887c826130edc5b76fa3528f20e8","sha256":"685ce7f2fd63ae132a6c8891921ef6ae23717f0dac6e050ca3a52b6a58f8c18e","sha512":"820f027e0b8986c44151aa631fadf6b32b2914fb0ce39afd88447c1917cd2d430d79485efdc0e2a930fa92140a353b5b67eb517d8b62678992da0ff573682659","ssdeep":"96:4SMllcHitlIxv9vk7C1+I4wWHLihk/xOlKaY0WeL9v6aMFAYHV1L91na1lG8:4SHIIHUCD4wau5LDL97W/P/naTG8","tlshash":"73d18e4a65cb442d118d52b635db9f0a86379f0a112e5c086fe5834bdb62ce178f2ab3","first_seen":"2025-11-05T01:12:37.882479Z","last_seen":"2026-04-04T20:37:18.505695Z","times_seen":29,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"iplogger.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"data527.click/1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026is_first=true\u0026randomA=0_7675\u0026maxw=1280\u0026time=04%2F04%2F2026%2020%3A36%3A52","fqdn":"data527.click","domain":"data527.click","tld":"click"},"ip":{"addr":"134.122.81.220","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:52.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"data527.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 19:32:29 GMT","end":"Sat, 13 Jun 2026 19:32:28 GMT"},"fingerprint":{"sha1":"C5:BE:DD:5C:60:21:5A:01:37:75:72:1A:E1:48:02:B1:1D:89:20:A5","sha256":"37:42:C6:5D:B7:A8:EC:5F:89:C0:DD:15:65:F8:F2:15:6C:59:07:41:B2:86:8A:38:88:86:9E:29:EC:A4:51:53"}}},"request":{"raw":"GET /1eab0c4020731942a75e/678e192fc9/?placementName=default\u0026is_first=true\u0026randomA=0_7675\u0026maxw=1280\u0026time=04%2F04%2F2026%2020%3A36%3A52 HTTP/1.1\r\nHost: data527.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\nset-cookie: shown1=0; expires=Sun, 05 Apr 2026 20:36:52 GMT; Max-Age=86400; secure; SameSite=None\nused_ad2937736=1; expires=Sun, 05 Apr 2026 03:59:59 GMT; Max-Age=26587; path=/; secure; SameSite=None\ntotal_impressions=1; expires=Sun, 05 Apr 2026 03:59:59 GMT; Max-Age=26587; secure; SameSite=None\r\nexpires: Sun, 01 Jan 2014 00:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nx-cache: MISS\r\nx-server: debian-s-1vcpu-1gb-fra1-01\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82509,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65536), with no line terminators","md5":"a157c21b9fb5fc5b10cb6e7da4631b44","sha1":"58f1e35ebaaf8eb564c5e57fa02e6561372f587b","sha256":"4bc56ff80f744c28e959b1a0f84c1214e08375b5a2cf91e7db1cd70da4af67e7","sha512":"73b9825d223e6bf69a2dca393a0e9f4f6e752954763f8938fd8490a9a3251ff35225a6c824755f2e3d9086f31b47469ed04363c922ab5d7173bd85ccad4519cd","ssdeep":"768:Q4YYDoHS3DepA1WPIIhKZ0fK3Ve2J/ObMSWXC52SgEfDU8JonSNHbmDgxaXHljo8:0u6p+W4+Scv2bwT5O+0Dt8o","tlshash":"468340fd0f690ce4a24a9ec66fd0b91c19bcb07f2c5088d4f61e4a9f47e255d7893a12","first_seen":"2026-04-04T20:37:18.532642Z","last_seen":"2026-04-04T20:37:18.532642Z","times_seen":1,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":136,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/leaflet@1.7.1/dist/leaflet.css","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 08:16:48 GMT","end":"Tue, 19 May 2026 09:15:09 GMT"},"fingerprint":{"sha1":"F3:CF:0B:A3:28:07:E9:5A:D0:8B:F4:9E:A8:A1:9B:71:A6:59:38:23","sha256":"DD:EE:6D:62:AC:D0:59:11:F9:1C:53:44:27:F0:8B:A5:2C:A2:C6:C4:BF:B8:79:AF:A5:5F:B3:E1:29:E8:45:8E"}}},"request":{"raw":"GET /leaflet@1.7.1/dist/leaflet.css HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: text/css\r\ncf-ray: 9e731b8c4e0b0b65-OSL\r\ncf-cache-status: HIT\r\nfly-request-id: 01JYFB7CWTE93Z4WZDHDFY0W14-ord\r\naccess-control-allow-origin: *\r\nage: 270688\r\ncache-control: public, max-age=31536000\r\nexpires: Sun, 04 Apr 2027 20:36:51 GMT\r\nlast-modified: Mon, 23 Jun 2025 21:31:06 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:BPfK9M5v34c2XP6p0cxVz1mUQLst0gTLk0mlc7kuodA=:\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14272,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"5c761a156eea82263d8bacf1718fe04d","sha1":"716e68587cc5720af3b8ab81b4c8b16df3e39ade","sha256":"04f7caf4ce6fdf87365cfea9d1cc55cf599440bb2dd204cb9349a573b92ea1d0","sha512":"c6875904d4c2e67d7b5edd9ab533ee1351f18d5312bcb556f6872a50a2ec082e425dd6ea0a66e502c84e3004bafe47aaabfb0c64c675f6c711e0fb190a1491ec","ssdeep":"192:6zzo0Oh9SVx1lvqrC04i11mdsHnLtcOEAY0x4m8yT2OMhnVhPl4d+yEcBLDLatM3:CUjh9SVB2HLtcpAVnTShnVh5mLDLU8","tlshash":"bc52d017b73a33a8d2257619f7b08a33bd2a506191a7c7fdb9cce714839885d2c530e9","first_seen":"2023-04-05T14:41:17Z","last_seen":"2026-04-05T00:55:27.374494Z","times_seen":2810,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":25,"dns":1,"connect":1,"send":0,"wait":17,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iplogger.site/css/images/continue.png","fqdn":"iplogger.site","domain":"iplogger.site","tld":"site"},"ip":{"addr":"192.34.56.97","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iplogger.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 06:09:38 GMT","end":"Tue, 05 May 2026 06:09:37 GMT"},"fingerprint":{"sha1":"F5:05:C6:EB:91:A4:EF:47:D3:1D:D4:F6:D7:9E:FE:EE:80:C5:5B:11","sha256":"49:07:DB:11:65:D6:79:E6:CC:51:47:B9:82:F1:3D:6F:E6:3B:1F:B1:3E:BD:D2:92:FC:CD:42:20:A6:75:EE:48"}}},"request":{"raw":"GET /css/images/continue.png HTTP/1.1\r\nHost: iplogger.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 17 Jul 2025 10:01:58 GMT\r\netag: \"4f04-63a1d1996f8ab\"\r\naccept-ranges: bytes\r\ncontent-length: 20228\r\ncontent-type: image/png\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20228,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 78, 8-bit/color RGBA, non-interlaced","md5":"43ce69331ff89cd7fd02302edbbca80c","sha1":"3b6b8aaeaaa39941ca93e05a76415575a8af2eff","sha256":"fcca5f1c2629317d64525884a76cc8228756a18deb244ef6de0485b4249b8da1","sha512":"5c79ea30d7004dc886182d70f57ed38c819efe7f27e32a86acd44df94abe28285c37ff084798d21a4767f4a44d47fac23e35e3039922d65bc666c62cbf5449fa","ssdeep":"384:NDzaeS2fIsKJ4w5ziymfbt1cFlXQBlw6TFCre8NfovwNatcPti5D9:Z/LHEBSclMxCregw8atcc9","tlshash":"e892d153e3bfd37a30debd1ae29a7d3da252dc28b01282859549752b5c1ca4c9ce5380","first_seen":"2025-11-05T01:12:37.876664Z","last_seen":"2026-04-04T20:37:18.536131Z","times_seen":22,"resource_available":false,"data":null}},"time_used":795,"timings":{"blocked":288,"dns":81,"connect":104,"send":0,"wait":209,"receive":1,"ssl":109},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"iplogger.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"o-oo.ooo/js/AfPopV3.js?ver=26","fqdn":"o-oo.ooo","domain":"o-oo.ooo","tld":"ooo"},"ip":{"addr":"185.66.201.42","port":443,"asn":201702,"as":"skHosting.eu s.r.o.","country":"Slovakia","country_code":"SK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tinyurl.info.gf/hltJiK34rH","date":"2026-04-04T20:36:51.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"o-oo.ooo","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 03:16:51 GMT","end":"Sat, 13 Jun 2026 03:16:50 GMT"},"fingerprint":{"sha1":"6A:41:5C:CD:47:8F:E5:64:C0:98:0E:40:1D:D4:20:CE:9C:D6:2A:26","sha256":"E7:6B:AF:C7:30:50:68:72:F4:49:AF:FE:B9:75:60:C9:CB:A6:BF:F2:4A:82:23:83:D0:9C:F7:9D:39:A0:A6:39"}}},"request":{"raw":"GET /js/AfPopV3.js?ver=26 HTTP/1.1\r\nHost: o-oo.ooo\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tinyurl.info.gf/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Apr 2026 20:36:51 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 17 Jul 2025 18:48:59 GMT\r\netag: W/\"6879459b-19d5f\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":105823,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators","md5":"73b0d4087611b356a0a14bc37543aa5e","sha1":"5e959a76299c94b9d6bbcea08a83068ea3378f09","sha256":"82ac7853c111dde43313fb661e8461ac68ca4f6d639b08ace5fb62ccaf3734a3","sha512":"5ccc1d028e0e401af2bd127676d2a82a1fc76f5c402d7ceba10dbd374604d1f2de55674e6e54dd0e2c9895a7b2e320a67c7cf489c7d54d20fecc3fc03827a5cd","ssdeep":"1536:1RY8OvlYcEKvheTo+JxL86OXyvHikoHpu1u+EZ7F50mn5pg4i86F8xnZUCioU6:g8Ovaclc1Hl8Z0mn5pg4oGRZXU6","tlshash":"cca35561710350d630e1d26e166ab3c12d795402f4298da6fc21fb9fcaaed93419faf3","first_seen":"2025-07-22T04:26:03.713313Z","last_seen":"2026-04-04T20:37:18.538668Z","times_seen":83,"resource_available":true,"data":null}},"time_used":543,"timings":{"blocked":253,"dns":178,"connect":33,"send":0,"wait":35,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}