{"report_id":"33c209ed-b73a-4438-9041-5515dd67250e","version":6,"status":"done","tags":[],"date":"2026-03-28T03:50:17Z","url":{"schema":"https","addr":"slon-spa.com","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":0,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"final":{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"title":"SLON SPA","dom":{"size":34794,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (34794), with no line terminators","md5":"774af8edf076e8f0babc52d77dd76916","sha1":"363ec42540cb7e5e40368d8e578a8f9355d82ef7","sha256":"2067c7f106f520cc5f4c48d9a7c178371aa78459215404ed4e3b80161fb5f9ca","sha512":"3a3197166ef6bc455559c7a67e8dd812b9a6ea5be0c65581db3139acb6ebac1ce5f8f3d60b092d7f5b4b466837e2dff7aaa2b8a5bed3bc300888ab3969ebd8d0","ssdeep":"768:RRTZ7cw4kEJ5T33N6xqScTRjCqIiPxVIQ9ff2d0vg8SC2T:4LJqcTRj7xVIQ9bI","tlshash":"a7f2e8f2b3edb2e4b103dfb5cd3364607a5b34fe6ab6c54442a4ce94ea514cc8989c94","dom_hash":"domhash9757b8d4390c00b4f0b6ad03081f59b1","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"slon-spa.com","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":0,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T03:50:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-28","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/64/6d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null},"summary":[{"fqdn":"beautyprosoftware.com","ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"domain_registered":"2017-11-08","domain_rank":3195581,"first_seen":"2018-01-03T19:58:25Z","last_seen":"2025-11-07T11:43:01.544111Z","alert_count":0,"request_count":3,"received_data":24012,"sent_data":1470,"comment":"","tags":null,"fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-22T22:16:16.728956Z","alert_count":0,"request_count":2,"received_data":31478,"sent_data":1115,"comment":"","tags":null,"fingerprints":null},{"fqdn":"region1.analytics.google.com","ip":{"addr":"216.239.34.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22257,"first_seen":"2022-03-17T11:26:33Z","last_seen":"2026-03-22T22:38:57.591658Z","alert_count":0,"request_count":2,"received_data":1672,"sent_data":1746,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.no","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2001-02-26","domain_rank":92680,"first_seen":"2012-06-26T23:22:08Z","last_seen":"2026-03-22T22:38:08.306115Z","alert_count":0,"request_count":1,"received_data":580,"sent_data":687,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-22T22:20:05.651051Z","alert_count":0,"request_count":2,"received_data":14916,"sent_data":929,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"maps.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3442,"first_seen":"2012-05-22T14:23:23Z","last_seen":"2026-03-22T23:46:24.366307Z","alert_count":0,"request_count":1,"received_data":550,"sent_data":468,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o4504197057937408.ingest.us.sentry.io","ip":{"addr":"34.160.81.0","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2012-04-07","domain_rank":0,"first_seen":"2025-06-25T02:13:55.588324Z","last_seen":"2025-11-07T11:43:01.310958Z","alert_count":0,"request_count":2,"received_data":1448,"sent_data":1335,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"maps.google.com","ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":76,"first_seen":"2012-09-10T23:07:43Z","last_seen":"2026-03-23T06:54:55.347392Z","alert_count":1,"request_count":3,"received_data":751349,"sent_data":1336,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.beautyprosoftware.com","ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2017-11-08","domain_rank":0,"first_seen":"2019-04-27T03:47:38Z","last_seen":"2025-12-21T13:58:28.359203Z","alert_count":0,"request_count":12,"received_data":2862050,"sent_data":6232,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"api.aihelps.com","ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"domain_registered":"2015-06-04","domain_rank":0,"first_seen":"2017-09-28T10:14:07Z","last_seen":"2025-12-21T13:58:28.317533Z","alert_count":0,"request_count":29,"received_data":714535,"sent_data":19331,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-03-22T22:23:33.61086Z","alert_count":0,"request_count":2,"received_data":851013,"sent_data":864,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"slon-spa.com","ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"domain_registered":"2016-08-12","domain_rank":0,"first_seen":"2026-03-28T03:50:24.064594Z","last_seen":"2026-03-28T03:50:24.064594Z","alert_count":0,"request_count":56,"received_data":4539160,"sent_data":39646,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"jQuery:1.11.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery Migrate:1.2.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"FancyBox","description":"FancyBox is a tool for displaying images, html content and multi-media in a Mac-style 'lightbox' that floats overtop of web page.","website":"https://fancyapps.com/fancybox","common_platform_enumeration":"","icon":"FancyBox.svg","categories":["JavaScript libraries"]},{"name":"PHP:5.4.45","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]},{"name":"PrestaShop","description":"PrestaShop is a freemium, open-source ecommerce solution, written in the PHP programming language with support for the MySQL database management system.","website":"https://www.prestashop.com","common_platform_enumeration":"cpe:2.3:a:prestashop:prestashop:*:*:*:*:*:*:*:*","icon":"PrestaShop.svg","categories":["Ecommerce","CMS"]},{"name":"Bootstrap:10","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"bxSlider","description":"Add a respsonsive image slider to any website.","website":"https://bxslider.com/","common_platform_enumeration":"","icon":"bxSlider.png","categories":["Photo galleries","JavaScript libraries"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/64/6d/util.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f8a7e55083af89166ecd4be2f33e959f","sha1":"3416adfa6dcaf4eced52980320dc989d8315010e","sha256":"a8ae40661333061df05b8e8915506e972d1c4a8f2bad404dc2e26b74d1f45ef8","sha512":"866d4e242bdd85e4c5fcb92b903bb1f991c6c582f3374bfcdd453c3cd63976bd69055ab9c21a6a9d78b69538e7d47384391560a32561094c641a1f0293a5967b","ssdeep":"6144:Z8jkyZOkxIRRmaT2jGUFzYRqZayty0WG6olwCk8Zxu0BFg8IkwW:Z8jkyZOkxIRRmaT2jGUFzYRqIyty0WGX","tlshash":"0164e67c31316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e4638","size":310651,"data":"","first_seen":"2026-03-26T17:56:36.31894Z","last_seen":"2026-06-28T20:33:46.804573Z","times_seen":6044,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-T8TGT48","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c43b7ba5e6b3dfda04523bab80dc9676","sha1":"7155c7b50f6dc8174a9254a6e9b7577e4d961836","sha256":"ff2d4b590a8fc2d7fe46a2e83a2e158a2af89b01018780f988253f1fb79fa460","sha512":"267eba2905138cb5d39003af2b456fbf913d3af523dda8fc30bf82c5df1f2add8905ed2041a3e6a7d88f49b9143c80305aadf52068bb84e6f42b8cbc5573ca99","ssdeep":"6144:HORjaFhrVJlQGXms8WVd1W+rwkQd9B3XOT/ZY:FhxJlp8YinAY","tlshash":"7b8419ceb3d674624393a478803f018ba27a79e2f84cd895f185c8d42e7469a5237f7d","size":383556,"data":"","first_seen":"2026-03-28T03:50:33.168295Z","last_seen":"2026-03-28T03:50:33.168295Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/hoverIntent.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"afd5cfd89a0d06a3a3483886f073069a","sha1":"465e891c9b31427c33d940b7e87c7250cac311bb","sha256":"740cb53532e536c1c7a90cbb037a9a002d2126b34bed1d6d3722b52d2bfe11b7","sha512":"4d324655501227c5f5a75da1d2fa6643bbd9aef9a43c782314b9cab47b7f81caade670332f4a819eff205fae909852d5f0f7920e27a3916178e0707cfde9ad03","ssdeep":"96:qCXMYp3c8AXfqab3v6X1B5DfEu798gDmXw8:58YpURb3SX1B5DfEeKfXw8","tlshash":"f4a1f04d325a15629b13a325d3af747abb25468baa05908437bf774c2f984384323fde","size":4938,"data":"","first_seen":"2023-03-07T01:42:08Z","last_seen":"2026-07-01T11:14:09.784058Z","times_seen":1512,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"1480f598f3b0dc1b0a6282efc497949d","sha1":"6e22c12967512643c127d01a699ab8896f297614","sha256":"44506b2eec1ad2c14e69d378567d11ad1c564d5ae3c0a40eff357b31599a6403","sha512":"fd50d34c7d99f530aedf488a1a3994ada64f30836d86d1ad836d94545c538c12a98050adf1fb9ff848fd2818fc84bce3848991644c920d4e59575d00aab8f9a5","ssdeep":"","tlshash":"cdc02b8c211e0d7041f737008f3fb704f002321494e06935480a23049d30e07e784814","size":153,"data":"","first_seen":"2026-03-28T03:50:33.190108Z","last_seen":"2026-03-28T03:57:46.566471Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/bxslider/jquery.bxslider.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"9d4c02bb88328a44f029a8ee48aef328","sha1":"edcabe3e1fadf0d68d6faff6a60c1fe82027fb7a","sha256":"bee78b1fea48191ebb87402c4d68a71ca544734719c35f5b06044923e38e5502","sha512":"f6a6f58ad72d7bc079913348004d8777bfc2c0508fe7d71cb7aecdd48cff4b35ff81b37e4212ffcf89c5234b7e91fcce12d811a1ed4f42367a16494bf6c8c2c6","ssdeep":"192:7RbGoLN83BRKmfL+ClFVPDhjfHGTgiD3VARMWvdO34AgEJrv/T16OsQon05rzIHE:9XZ8WjOVRXy16/kXIHHSCruwe","tlshash":"dc92541b713436fe46b622b5b299cf487276908ac537f8f861b5d85819e8cc4301badb","size":19363,"data":"","first_seen":"2026-03-28T03:50:33.170976Z","last_seen":"2026-03-28T03:57:46.507563Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/119.b4c7093a.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4fd546979a7d121e71b06edfb09f9a55","sha1":"7d91756ec95a80957f0883f9bb92c8c45fa75387","sha256":"a099e4be37ba497f95323863b915055215a60ab4101920839a69eb0d9c66a1ab","sha512":"0592bb52beedf89974617cca02d1b2bbc366459033f533772a7f92eac83dbe05f8be3e0a0d1b85be08887c8f5d6108fe0a5376ec4050430889cf11cec5c0009b","ssdeep":"192:IUGk2Wnhdca/cIdgAGfz27VroUWcJ7QBLsIqaUqMDhRevfvVXdaFwVOJJxK5zjjc:RhOaUwSLsUvVXIpJJOzt0w+RDECBAa","tlshash":"1582b85ef382373635b3336c39df7592735d207812991cbac4ec552823b5e5ea63a488","size":18801,"data":"","first_seen":"2026-03-28T03:50:33.184122Z","last_seen":"2026-03-28T03:57:46.551303Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"94b0cf2696f22c834e4c4157b76b4f6e","sha1":"6e7dee96fe60ac0e086cc581a02791c5d120eda5","sha256":"f3237af447e9d473f272abb2a35504d2315490eea54c17b56a571b6afbfb2231","sha512":"d907ee363b96728356026aebd1d72fabc7dfddd2207aeddc79225535bc04e2dc5d5af5874ff38307e89c4ccf9ac085d93e4f7dfb1b3ae7ba6eac6dcd33e424a1","ssdeep":"","tlshash":"95e028da78110c7170ed0ef533b1a11c71431108ac0d5c22cefdc91428185c74c134cc","size":341,"data":"","first_seen":"2026-03-28T03:50:33.193696Z","last_seen":"2026-03-28T03:57:46.573091Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/global.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"326b5986737d60ff8fda5078c2ab9933","sha1":"4e69b8eb129aa90402cfb9e5c16a00a338411201","sha256":"5ea6fb3e2ff0965083e43f41321da5e493f6c98293c965df738cc5cee331e937","sha512":"063d7f7723fa6541505583015f26b0234758d4a5941dd5f0295ff6de22ab60dee5c767dcc25785bf4b8cecbc9fe6ccb4817d7c338eac05013df28579f0ad6759","ssdeep":"384:BGujQ7uWyPPCAgq6XnHJzGP7r9/W2lp4Guj4noBS+YdsL5vFBXfvGmN3yJscKKK0:z9GAg7npzGPP9/W+gooQshvGmNcKKK0","tlshash":"6bb2a552e73d153a4037305f985f6188727a4473da4a4c25fcacc8b82bd4e6a33e2e6d","size":23770,"data":"","first_seen":"2026-03-28T03:50:33.181753Z","last_seen":"2026-03-28T03:57:46.476361Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/fancybox/jquery.fancybox.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"cc9e759f24ba773aeef8a131889d3728","sha1":"53360764b429c212f424399384417ccc233bb3be","sha256":"bc50bf49cbe79ee49b4ee8b56f26ff4877bc4945c16f260b1481ba2355c96347","sha512":"bb7c913e954d85481ae34b0ce767d210a5a580afdf8c5cc2b43ef09312055b93f1cede6ab0fe5e601ee3981afe7bc28ec4530291e373ce4487c518f94e951d5b","ssdeep":"384:5N7WhsyZ3mw3DJeKZurcVCxHrXhYF/hxQ7SLp2EWJYZ/uSh:5N6xZ3mwI4urcVCxHrXhY9hOaQa/uSh","tlshash":"bda21961b2603d53d07b2a26414f550ea0320423fb078dfa646de9e45ba5bc425b7fde","size":23135,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-07-02T09:34:21.670534Z","times_seen":21590,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/online-booking-init/index.js","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"introduction_type":"importedModule","is_inline":false,"md5":"2b5f59d2fbebce3b43fac63255561987","sha1":"b1d8d217aa23253c05d72062f1ed06f379f91f5f","sha256":"8bcf37a3615269d81df8cffaaacd2f05e0ecd4a64858de418877dd1c77e6f03d","sha512":"f1e994537387a32045ee4ef18b8af667a73e3ee102b8ff0a4fb3e29b7662bac88d7529adf6ba2d5e8ca6cb8217adebe001822179b890ee179f1b7f6638805357","ssdeep":"","tlshash":"24a022ee800223bb0b082cc0c880c8200be30030023c03c0e22c03e200300e2ea2ccc2","size":77,"data":"","first_seen":"2025-06-25T02:14:14.14123Z","last_seen":"2026-03-28T03:57:46.479372Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/online-booking-init/index-389ddf8b.js","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"introduction_type":"importedModule","is_inline":false,"md5":"f52221e52b140e6dc1204d96c196b96c","sha1":"42a5af1df8abd933eb36e3e45fbcefceb2772009","sha256":"db130abad28c6826c9d5bcb597d587d5907900bea18e84889bfc436564654918","sha512":"99deb24fd0dba3306bd509ee06051545af2482b3003ffb40b9d23403bea0ea451c04ec5bd1fafbc333992553121661a367b4407d402584d5cc789afa5dcc648e","ssdeep":"384:iHyNEmcLgqKGRnAWk1qD1bRTahEhtX8AF8T0sr0PCk3yooAVJM/4:iHWEmc0qKGRkUZRTahEhifT0sr0PCwoW","tlshash":"5782d9aab8843139b763c49b76fb5404f739a8c2782239b8325c4c855ba3fd943a3d55","size":17947,"data":"","first_seen":"2025-06-25T02:14:14.072348Z","last_seen":"2026-03-28T03:57:46.486233Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/2.11db13ff.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5dadeac8567358104e919dbec2a38494","sha1":"7b054224bf37a6b6dd54d977fd41b254f37a1673","sha256":"2e404444db625ea370502344ff23cd53eefd1b54901537027fbe77eed5195d35","sha512":"52fb6eebb6a38181e1a7ebb99af357c30261f6ad52d5434383d5024449a58b9393408f029d9f23e4323e9b4759f52b2b57fc2675a50a56d695a3b1bc4f1d932b","ssdeep":"6144:SxR0+jCjRSybMnWsKD7A7aQtxMPDswtTdFFN7tFkjL/cbrvm4T0BgkmMFv+mu2P9:g08UDdQWNbtkydkk2Pb0TLY2kqDjty","tlshash":"085508dab681f26216e332a4803f510ff37d9c55a44d8098f6e6d4ca6c7895a603bf3d","size":1284508,"data":"","first_seen":"2026-03-28T03:50:33.196908Z","last_seen":"2026-03-28T03:57:46.589334Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"ded3d62847acdd5be29371fe6ead1148","sha1":"204731e7ee387dc51605e663a97a5e411fb42ea3","sha256":"3fd52824bd7160b62b409e294b4891e9a97c0be00adb8a0ae7acc08cae15287c","sha512":"6a5d0d427f54cf5367583f99b61c7e6d00e57085470b59fc2d66d618405e412184b9e601203bf8ea49a40ce711a6ab2570523f9d59e2b972fdcdde17453218b5","ssdeep":"","tlshash":"3f21eed50678487d802e7111c66f79adaef56630d242c2fee8acc8a551c14dbc261ddf","size":1366,"data":"","first_seen":"2026-03-28T03:50:33.203391Z","last_seen":"2026-03-28T03:57:46.575937Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/superfish-modified.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"cd2afae22971f76bc5ffd89be9c2eca7","sha1":"7f61c46f0a9a5807a034db88fd5d1a330e4d485f","sha256":"4bf93de0cc46387ed3a5d5fdf35f6d218cf59b6da74fa9b340b011859f439ad6","sha512":"94add9b981ae043562c360cc3bcaf5c729e0e4c952e8808e92f58297133b3a5d1cc29e768a7d0d4ff4757d0c7e0197d41c73fe9c35e4efd00238b70cf242d7b9","ssdeep":"192:o1a7G++jacaTOh0Zl049C9NmjaEg9Qi6TO:ZDDTOhgxLO","tlshash":"dee12dc9fb9e25d3c2ba325a08af50cd623d9076d846182ffc75e66c6c9487c826197c","size":6983,"data":"","first_seen":"2023-03-07T13:17:34Z","last_seen":"2026-06-30T14:13:55.668647Z","times_seen":290,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"55d422d353375b6ff78c9af056c13b15","sha1":"56a76234bea6adc55c2e967248cd285680586d34","sha256":"5345e1e3e4521cae6cea132ed9bd35cabf7cecda00612a57812b50515e9f0777","sha512":"daf3a14b84e22a2cc05d8d98924a7068cda89240b5c9f8dba2f6294aba29cef9fbe0667e4b18f77819c2d2565661ce93cbd9a5a8158fdb1aab5f457f7ffbd051","ssdeep":"","tlshash":"a4f0d48e3d5db0573bf47938c633a5af767d074020529d08cd01c81434205874c52d4d","size":485,"data":"","first_seen":"2026-03-28T03:50:33.20517Z","last_seen":"2026-03-28T03:57:46.576853Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/b/512817","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a3314cbfbd8508420935591a0e20c516","sha1":"f541f2d4e962ee5dd7d260c3c4c6f7711533bc4b","sha256":"785e9ad9bd585ec64a2a64df1fbd1fc2bf1551dcaa7480bb12cea8ef70405ddd","sha512":"34301f8f3e8db3dfe04fd5d810f11afde2ae08d53b0e6746a89976b912613498c46db4b909d2e17c71d5e971e9705579d88189089e467c793a1fcf2913deaf59","ssdeep":"","tlshash":"f38109ba775cbae6e5314891083f90a5e12d38297c98dcd0439dc57a3838dc4616ff72","size":4067,"data":"","first_seen":"2026-03-28T03:50:33.208387Z","last_seen":"2026-03-28T03:57:46.570574Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/jquery-1.11.0.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fc25e27d42774aeae6edbc0a18b72aa","sha1":"b66ed708717bf0b4a005a4d0113af8843ef3b8ff","sha256":"b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682","sha512":"87d90a665c15d71ac872bd8bc003d9863964c7ec7ada6370b902b93c0bbd7770fe25730d946c7c6a465baa95efa74bc0e78af3f83aea615af35060cc8702a6c1","ssdeep":"1536:EPpEy5BMibZGOj/bEe8v+/UWf4IhvAuCh/jqkODZ2D5N9Rag0MOIdSZAgtgoX5Yn:bIO/e2D5c4LgtImLja98HrK","tlshash":"cc93e8d9b6d2706297b730a851bf510bb17698eab80c4c60f058d8e47eb4e8d507bf2d","size":96381,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-07-02T09:21:27.776032Z","times_seen":30653,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/10-bootstrap.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"7ba470f70a0141a75a81d57e85c80d33","sha1":"4939afee748a597e5a06eefc4a5489a538279545","sha256":"650c142505681d7842af8b9eb182c38ec5b117c3326c7ae06b93cbb4be4172a2","sha512":"2466876ac6f2735f93271561b20bb80c999c0908e3dfc8e586cc460155b3ae67397958f0a1f6c4469665df06c23c86477cc0eae17f3a7c259671046458e71d87","ssdeep":"768:h2v6X8Yks6Zzy4PzYtwb4XDLD8agMRXfcAfwI0OCtgez:hN8jo77CCK","tlshash":"3ec26406b2313161079bf2f5115b020b723a7a7ee906907c38b9dae63db9c597127f39","size":27631,"data":"","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-01T03:58:23.04796Z","times_seen":838,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps/api/js?sensor=true\u0026key=AIzaSyDFJgNBgl82GbVZuwkfScgnwD4fYABA2vE","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ce7f12c11227d6ae5e05817e27f3261","sha1":"426880baea3a4e72d364d4a89bd8985c8b98d911","sha256":"ba1d6903694228e7b586b522615a74257741435c845649c7c5a8bc33bd78fa41","sha512":"3edeba7db2795d40af24af48d052665319168ecb76386c05e8f6fded19986f4ec0646a27582a77cef2864b1a226036c57b46c7279a69d71113417deaca8ba7a4","ssdeep":"6144:D92NoHpKbjhUFhzgFGGzRFkAG6tlr7KMPG+M/aSxpIYQXpe1W7DaD2Sr7Wq0+c2L:D92NoHMbjhUFhzgFGGzRFkAnTrmMPG+i","tlshash":"b1643c9473a2746187b2e4e450370106f27e649af00c8eacb69ccde3adf69464677f78","size":311503,"data":"","first_seen":"2026-03-28T03:50:33.158186Z","last_seen":"2026-03-28T03:57:46.53136Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:A1VdZYqhPnjpWx4/eTe8qSMbqaQd6VL2Jyt9LdJoyayCVPVD5wdBfQPfCHiUr3:AXdZYqNjpU4yPqSMbqaQGL2QfdDayCZC","tlshash":"a6a1dc9939fb50210233b1bd1bafa918b23895236208dd61b98c9364bf94437d7f1fc9","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-06-07T08:18:38.899011Z","times_seen":919823,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/jquery-migrate-1.2.1.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb05d8d73b5b13d8d84308a4751ece96","sha1":"743052320809514fb788fe1d3df37fc87ce90452","sha256":"1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d","sha512":"7b68a43a22a41404a2ff58e0da6a237492cad0fc3e56d216980802b4d5fb483895262a7e049340d6670002bdf899ba88c319239e60d0aae1ac31d98556b0ad6e","ssdeep":"96:tBySz91Gwyk35YrfBewIt9jKLKDs2SFNK7wIDBRANyCfVJ45NI:zySzvGw/35YbMx9jKLKD3UIDBR8VVUq","tlshash":"3fe196dc72aab5611ffa30a8503bd21b72b25aec140d95a4f08ccde5392cc5d413ab7e","size":7199,"data":"","first_seen":"2023-03-07T01:02:56Z","last_seen":"2026-07-02T09:10:32.106563Z","times_seen":24111,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/jquery.modal.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"a3c73f5af9f3f18fea45b4181a754d03","sha1":"a0d877be8327bb08d1d732bd286fdb591c133a11","sha256":"970d08b0edc4bfc0925495d8b11564f3c2fd368f745f7b3510a7fced11848894","sha512":"cedc59b1cc5be7994a2fec665866446c11de908cf2fb5a982871994d66581f5194c31cb4862035f255ba39120c8f80c7460be63ffa8672fab013214557b39855","ssdeep":"96:jPCgS/KZzQeF0VczC5x4MIKG3okQ9vGmzSUXd7INVdYn9LzYIED1Ol/:jKgS2QeqV3v4MdG3zQBHzSqPYIED1A","tlshash":"2da11f0bedbc635902ff91aa3d9e1d394135a2b06407448c7578cfd979a8c09606fe7a","size":4974,"data":"","first_seen":"2023-03-07T12:09:05Z","last_seen":"2026-07-02T08:37:00.030998Z","times_seen":934,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/blocktopmenu.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc047d2d0d4751882f47973c7baf1f16","sha1":"3c69ece916202e4a3bdd6ab30e4d5421d9521893","sha256":"2bb35c51eed975a14370279cf7582f7998848602f2c7912f2984f82c7f1f56ab","sha512":"aa2b7864bbbbea25fe29d307b8b03a1596f3bf6a40187680c5a2f4687bb61d3052773b5e951b2538e263cddbe907e238842e8c54867801ddc74360cad4639000","ssdeep":"","tlshash":"6171a67af56e0433a27b746e129b944d3b280496e3cacc55fc7c89b82f8111916f6d2b","size":3823,"data":"","first_seen":"2023-03-10T06:24:47Z","last_seen":"2026-06-08T22:23:39.632524Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/index.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"1c579ababb5a3d550e9b02945a5645c9","sha1":"fd92f8984be32ade6d21a7f6b08232e40cdd3224","sha256":"e8725812053471bec5b6612f5bd791cc43a655814ca9cb4132d2d4020ada2371","sha512":"15ca89a669df288a46d3cb8a43c9f7a738712644faa2485edaf93b63cd67200249de6efeddb0f10d84513e47297d59c8f3fab27e55bd6ae2808d2843ff0c953a","ssdeep":"","tlshash":"97d09720a61033289c3601a97c7fc5c0fa81a030364710342268648882a0a853e2b1cb","size":230,"data":"","first_seen":"2026-03-28T03:50:33.130355Z","last_seen":"2026-03-28T03:57:46.538287Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YRSWQRHPN3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d455ae70ac5bd3ea1cde9efb7658d8fd","sha1":"53fc682e922b6a8fa61a5a387d007e8dc7b39236","sha256":"58325198eaa229d19135c6339bc79b24bf886cebe4063d7f53e183a768efc46b","sha512":"f87199f5e35b87fc96120aa48bab4ac74f84af59355c59fce400a527c0013cb721202ec09b035e4e232de2d1d8db1932c70eda98a1ca94d364c0197ed8c2cfe3","ssdeep":"6144:RgORjaFCE9VJlQGXHIzs8WVP1W+rwkQdqQtYTc0HdZgi0:cCEfJlbIY8CmOpc","tlshash":"d3a40aceb3d674625296e478903f01cba57b29e2b44cc8a5f189cce02e7465a4277f7c","size":466203,"data":"","first_seen":"2026-03-28T03:50:33.113497Z","last_seen":"2026-03-28T03:57:46.500462Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/wow.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"a26a117ff59c944bbb654bf506f69786","sha1":"237c90127c99e91347536835096276b0add6d018","sha256":"cfa1739ee346d63a3d3cfdff8c18cbe8fdedbcb32d4b0895028c193ce828e7a5","sha512":"11a93fdbd393a5bdfa2cba36af8ec8a55ccf04b5e700c3c0572a5b499899e1091ff29ffb4bf5d11b9c69ece2963cf61f253ea67ad23e20e4644791bc17dd34fa","ssdeep":"96:irZgL1xvPV6GqKyR6TYdtHFMLzA4pOROVEE1fosvGeaMozHImBaokbl:iry9PVfSnAPAjROVEEdos+eatzHILoe","tlshash":"04f175c9ba967035c75792f2833f0106b23a5aeea028047cb5b98dd57d38c58523bf78","size":8182,"data":"","first_seen":"2023-03-07T01:10:38Z","last_seen":"2026-07-02T09:43:53.210097Z","times_seen":7838,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"661593abab813e3894847a3bf49e46f0","sha1":"0d77c6db7cbdaefbf0d678ab464f698dda4f53eb","sha256":"6a0d615c7ff7a303a6e1766d91cc14a367f92197196de49a8cb33cc1a3586081","sha512":"f64b91c6f3e8e225798ce167b9556f138ba36e232b58bad938a6c040a84bd13d2a176e1ec2623412b808f0d87dc3ad89d9d3a20308fc315c050e914af1b527dc","ssdeep":"","tlshash":"6a319f81eb2c37bb646f32964c1bb7c5222e057dc8054c26fcbc6a6906e54491373abe","size":1827,"data":"","first_seen":"2026-03-28T03:50:33.213461Z","last_seen":"2026-03-28T03:57:46.586405Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"0f199b53a30890a8eb92142034e4a6ab","sha1":"7a7ac44fd006260f4a942a7da9ad358104f53e94","sha256":"1e294602fad5c1a1a4ddfaf628f39334e44e74077960ede3119a082842ab6a93","sha512":"60c9ed6193fa68ee4c59441c9c5d1ead87b7e56d6a357402d632ee2b6ab46b800344739ecee207fd6e0b22d2a70671e48870cf4bd305e5200d6d474f69eddc75","ssdeep":"","tlshash":"0bd01254f3109f53a11820444be7df2a23515260f09e8e9b500cc4bd7fc51ec2e03457","size":200,"data":"","first_seen":"2026-03-28T03:50:33.21542Z","last_seen":"2026-03-28T03:57:46.587512Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/15-jquery.total-storage.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"25bb6f0d5dc5f3094b9cd007e246cf1d","sha1":"668596c0e96650cba50f5538384bebb48abde0ca","sha256":"67dadeecd506147b7adba2b464bb05723e729997af9df1aa0ff7696e535b4d0b","sha512":"cdbfdf0ff8ecdd84abbcfd1421df6c55ebcc10bd846f30f3013316fb0b0e0ac6120ad63e774dff1ad89e598f148ba4ab848d69ff43c34aa1d0ce515e97a3c3e9","ssdeep":"","tlshash":"9451112f32d2722582c4167d7c6f12abe73669f2609c5194d09190e07e64c15c673f9f","size":2564,"data":"","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-01T03:58:22.935696Z","times_seen":1103,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/homeslider/js/homeslider.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"97d7fa87f4580f6e038ffc94ab9304c6","sha1":"b91ebdde80aa0f9697b031c566a4ce5441c36064","sha256":"bb3d1f4a0dd993c2f374f89728f48500216e9e9cf54c15fab1f0abfc42593ac9","sha512":"30d15f6ca8d4ce250e92f99fdb2e3a12262d904d77c065ba67e8690e35e5f03615a9aed29171233ec783c4d1aa9d56b2f0754b6850f1d185820a17df4eaddd0a","ssdeep":"","tlshash":"66410096b32e027b45791d146d2ddc2acfd849e14b4b603bf18c0d58a7a423e10f6ced","size":2410,"data":"","first_seen":"2026-03-28T03:50:32.888922Z","last_seen":"2026-03-28T03:57:46.505512Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/jquery.easing.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"9cda9e740bbf260a190f4041132b5105","sha1":"603599b494c5f0c9ed5d11ccea03ca6517da46dc","sha256":"ecfc183e33d25d24aa7c06218e0a413488fff8774e4b4b87543c766db9b0b8ba","sha512":"eb05ae2c63ba13a30c3b4e5d99507fcd70915b2db611e8005135ead278f43d6ac09f92dddc1c50051b3fd01ca2a0708d075d98c9510ab934944b97a543390326","ssdeep":"96:uBm7MaOr8uroJzDV6u3R3zd4j6zp4tSZCHjuwE9nCDTVpWZ:pQaOr8ur83V33R3hq6+uwLvo","tlshash":"71b1108a71f17719539133f011ba205b729dace5260e5804e8b9a9897c7b27c87bbc6c","size":5564,"data":"","first_seen":"2023-03-07T01:03:49Z","last_seen":"2026-07-01T08:08:55.291178Z","times_seen":1683,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/main.2c799342.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0f22f893ef7824671d13f67964ab8313","sha1":"132790e69d19282f414d8b07f57030f632767b74","sha256":"aa569c2f6f98367201bd0c79242190f2cffa40a55243c9a8a83f5ae5e12b00fb","sha512":"8fe40a9af634ed28cf66d8541f7c3f4a475d94b527d0fc29faf07f7c115709fb8ff3545d18ea8ae2cc973b56f63c891d723583acb89678e9ff566bd93bbc13ac","ssdeep":"24576:mXuSN+FDYHjVNr33ElnjL4hRoXmDdTKiDrqXOhOHg9NpBK6ypM/GVwUzpYPelvKb:yuMiEj","tlshash":"ce45c6e6989263dd2892b292dab66f0fb1b8d414f108e325fc7ac0c3e91e5d35171b47","size":1183127,"data":"","first_seen":"2026-03-28T03:50:33.21839Z","last_seen":"2026-03-28T03:57:46.588412Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/64/6d/common.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f29ac17caf00ca7bc74ad37bbaeea197","sha1":"33ad2d0284418dee91dd5f89be516a35111d584f","sha256":"24662a858cc7da350ab34058f833947fdeb6f522587c9a50afb83d7b83bc8194","sha512":"f5f5454018d23681f652791057931d3019c7cc7532e1fa6bb9af06275d409667a187e1cdb9f421d4c4a516aa04179cb8d42830daef07c9aa2e7b4f20b6699ccd","ssdeep":"3072:nK/UOMgYuldpuEPichAFGK83apF6aQnB/CQWfe/Hl8hlYzKk+8/kMc2XU5a46:nK/UOMg/dp/6ch+83XnntCml8hWzKk+A","tlshash":"50c3c6d9319370b3bf71a89440a70106b29aa499b45dcd2db1fdc8f2aef185601f9b38","size":126936,"data":"","first_seen":"2026-03-26T17:56:36.341726Z","last_seen":"2026-06-28T20:33:46.854061Z","times_seen":6044,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-28","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/64/6d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/call-me-fast.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"3f097beea41f17a509e4c26fd635cb42","sha1":"5eafab34f722201abcde3a65e404cf346dfe4fcd","sha256":"db7feaaa34eeda4ca0e65d8510cba485d06d27e066102414ee8c905e97c81022","sha512":"ad1f9703d1f90ec709373b3c7e209f72845c1780289d53d27649459a21cf9b34888be1422134d1e4f33312a2f29bcf00a619b0480fae95da1814f98559773fa8","ssdeep":"96:GYaTbFaRZqD1B7sfha1s+Gib2V81qJQOPBKWnxyDtx9wAnQTVN6f:FaQRZqKhadGib2VyObXxO/9wAnQT0","tlshash":"00b1d89ebde4701211b33cb100efc6069139eeaa281f9992a011e5cc7e78b6c11b7d79","size":5516,"data":"","first_seen":"2026-03-28T03:50:32.927794Z","last_seen":"2026-03-28T03:57:46.510087Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/tools.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e0b7bb4c8207d4eab0a9d1ee43455c2","sha1":"d6200a4b8569e056873457a169dabe5ead2f7ab1","sha256":"680aca32b04ff845a8c27b6a01655884b9d7722c2f72107c3c06b773c03808c9","sha512":"1c9dc05cb861cec09745c4424c3948960b27609bf7cf1f4fd1f8367d04598df2ba9f8c37a00c191848b2890c243070be83ab030230c3c24583596ff52bcb90f8","ssdeep":"384:iyi7W9KOucl4OfEVhOVMmgm1FnhwNh1ot3yqSrmNsdCU1KEGMH4t:ZixoMi3nhwN/QySsDKiH4t","tlshash":"c892f994fd455bab08ba2138454f420cfabda871b259c9d1f0cc42d027b5d7f92bbc6a","size":19353,"data":"","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-06-30T14:13:55.650882Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/15-jquery.uniform-modified.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"deadf79f5622a50a973f5b3fdcf3c76f","sha1":"47c1100b4eba4c8814296e6048c5fccf8df07c98","sha256":"a7ba80d1ea8b2a08b8762c85123b698ccae669591249a02dfabde3f368431072","sha512":"46f5acb38efe87a297e704e835fd24d842b32dd78756c32fb76992693b3888ab44c936984c7e7e46335c58465eb14d047f0ed213722354cb5e8a7585ada3fc00","ssdeep":"768:jfsBKnIaB641jH3YLYmcPfV/Z+4R6B3eR:jfs4nIk641jH3wYmcPfV/Z+4R6B3eR","tlshash":"81f20f0d38f262a185b770ba5bdf5009b239922b5209de017c9e53f45f64628f2e37de","size":36400,"data":"","first_seen":"2023-05-03T15:19:19Z","last_seen":"2026-06-30T14:13:55.623701Z","times_seen":284,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/sandbox%20eval%20code","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"34c08ca3e74026ae2a1166b2b810e003a2866b015aa78402b00a003b1441fe21aaa1a8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-06-07T08:18:38.896325Z","times_seen":921522,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/jquery.easing.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"b02bef6a62053b45babfbda795b6eac0","sha1":"3df9034ec9a2ff4d1964be64c4753cf4628affb9","sha256":"91fabad8aada7dfd913da46fffba65e16f37e97fbe07612e16acba215cee6c28","sha512":"0d44d0cfdd32f419dd0b9fef47c391a1b09544d599b6095fc610b25a813ab1214646f34cf6d073c5349a45fb200e713d62ca3364a12cfabc15b5b6ce6682bf6b","ssdeep":"96:uBmbQlcQgliUtaq2xsv0jAeAWFdTGj1GfsS:pcAsfAyd","tlshash":"76a1519cb7d5b21b8359f2709a3e0d0fe2646427856ea82fcc4c4495ba7c335c269d7c","size":4955,"data":"","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-02T00:56:55.173205Z","times_seen":942,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"slon-spa.com/js/tools.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/tools.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:20:55 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77e7-4b99\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":19353,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"5e0b7bb4c8207d4eab0a9d1ee43455c2","sha1":"d6200a4b8569e056873457a169dabe5ead2f7ab1","sha256":"680aca32b04ff845a8c27b6a01655884b9d7722c2f72107c3c06b773c03808c9","sha512":"1c9dc05cb861cec09745c4424c3948960b27609bf7cf1f4fd1f8367d04598df2ba9f8c37a00c191848b2890c243070be83ab030230c3c24583596ff52bcb90f8","ssdeep":"384:iyi7W9KOucl4OfEVhOVMmgm1FnhwNh1ot3yqSrmNsdCU1KEGMH4t:ZixoMi3nhwN/QySsDKiH4t","tlshash":"c892f994fd455bab08ba2138454f420cfabda871b259c9d1f0cc42d027b5d7f92bbc6a","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-06-30T14:13:55.650882Z","times_seen":44,"resource_available":true,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":862,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/jquery.modal.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/autoload/jquery.modal.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:18 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d846-136e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4974,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4882)","md5":"a3c73f5af9f3f18fea45b4181a754d03","sha1":"a0d877be8327bb08d1d732bd286fdb591c133a11","sha256":"970d08b0edc4bfc0925495d8b11564f3c2fd368f745f7b3510a7fced11848894","sha512":"cedc59b1cc5be7994a2fec665866446c11de908cf2fb5a982871994d66581f5194c31cb4862035f255ba39120c8f80c7460be63ffa8672fab013214557b39855","ssdeep":"96:jPCgS/KZzQeF0VczC5x4MIKG3okQ9vGmzSUXd7INVdYn9LzYIED1Ol/:jKgS2QeqV3v4MdG3zQBHzSqPYIED1A","tlshash":"2da11f0bedbc635902ff91aa3d9e1d394135a2b06407448c7578cfd979a8c09606fe7a","first_seen":"2023-03-07T12:09:05Z","last_seen":"2026-07-02T08:37:00.030998Z","times_seen":934,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/fancybox/jquery.fancybox.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/plugins/fancybox/jquery.fancybox.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:21:08 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77f4-5a5f\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23135,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (645)","md5":"cc9e759f24ba773aeef8a131889d3728","sha1":"53360764b429c212f424399384417ccc233bb3be","sha256":"bc50bf49cbe79ee49b4ee8b56f26ff4877bc4945c16f260b1481ba2355c96347","sha512":"bb7c913e954d85481ae34b0ce767d210a5a580afdf8c5cc2b43ef09312055b93f1cede6ab0fe5e601ee3981afe7bc28ec4530291e373ce4487c518f94e951d5b","ssdeep":"384:5N7WhsyZ3mw3DJeKZurcVCxHrXhYF/hxQ7SLp2EWJYZ/uSh:5N6xZ3mwI4urcVCxHrXhY9hOaQa/uSh","tlshash":"bda21961b2603d53d07b2a26414f550ea0320423fb078dfa646de9e45ba5bc425b7fde","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-07-02T09:34:21.670534Z","times_seen":21590,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/homeslider/js/homeslider.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/modules/homeslider/js/homeslider.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:52:28 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d88c-96a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2410,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"97d7fa87f4580f6e038ffc94ab9304c6","sha1":"b91ebdde80aa0f9697b031c566a4ce5441c36064","sha256":"bb3d1f4a0dd993c2f374f89728f48500216e9e9cf54c15fab1f0abfc42593ac9","sha512":"30d15f6ca8d4ce250e92f99fdb2e3a12262d904d77c065ba67e8690e35e5f03615a9aed29171233ec783c4d1aa9d56b2f0754b6850f1d185820a17df4eaddd0a","ssdeep":"","tlshash":"66410096b32e027b45791d146d2ddc2acfd849e14b4b603bf18c0d58a7a423e10f6ced","first_seen":"2026-03-28T03:50:32.888922Z","last_seen":"2026-03-28T03:57:46.505512Z","times_seen":2,"resource_available":true,"data":null}},"time_used":854,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":854,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"o4504197057937408.ingest.us.sentry.io/api/4508811232280576/envelope/?sentry_version=7\u0026sentry_key=91e88c2b9486c967dc3c3565c7800ba9\u0026sentry_client=sentry.javascript.react%2F9.0.1","fqdn":"o4504197057937408.ingest.us.sentry.io","domain":"sentry.io","tld":"io"},"ip":{"addr":"34.160.81.0","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:58.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ingest.sentry.io","organization":"Sentry"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 24 Jul 2025 00:00:00 GMT","end":"Mon, 24 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:C7:A0:3C:30:51:F2:AE:98:2C:88:9F:C7:8D:24:55:ED:C3:34:BD","sha256":"78:73:F7:3D:EE:58:1B:F8:9A:1E:17:AB:A3:70:00:86:76:EA:4E:AF:AB:F4:7B:34:5F:FA:39:D8:3B:5D:F4:B5"}}},"request":{"raw":"POST /api/4508811232280576/envelope/?sentry_version=7\u0026sentry_key=91e88c2b9486c967dc3c3565c7800ba9\u0026sentry_client=sentry.javascript.react%2F9.0.1 HTTP/1.1\r\nHost: o4504197057937408.ingest.us.sentry.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 9035\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9035,"data":"{\"event_id\":\"fd1e5a12003042fb8d9025f92d44a622\",\"sent_at\":\"2026-03-28T03:49:58.244Z\",\"sdk\":{\"name\":\"sentry.javascript.react\",\"version\":\"9.0.1\"},\"trace\":{\"environment\":\"production\",\"public_key\":\"91e88c2b9486c967dc3c3565c7800ba9\",\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"sampled\":\"true\",\"sample_rand\":\"0.08953864813482293\",\"sample_rate\":\"1\"}}\n{\"type\":\"transaction\"}\n{\"contexts\":{\"trace\":{\"span_id\":\"a9f5bab918c29c85\",\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"data\":{\"sentry.origin\":\"auto.navigation.browser\",\"sentry.op\":\"navigation\",\"sentry.source\":\"url\",\"sentry.sample_rate\":1,\"hardwareConcurrency\":\"48\",\"sentry.idle_span_finish_reason\":\"idleTimeout\"},\"op\":\"navigation\",\"origin\":\"auto.navigation.browser\"},\"react\":{\"version\":\"17.0.2\"}},\"spans\":[{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.css\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/calendar-emoji.f71aa575.svg\",\"op\":\"resource.css\",\"parent_span_id\":\"a9f5bab918c29c85\",\"span_id\":\"8bd5ce4c5051a8eb\",\"start_timestamp\":1774669797.266,\"timestamp\":1774669797.389,\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.css\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/gender-both-emoji.7eb1dfeb.svg\",\"op\":\"resource.css\",\"parent_span_id\":\"a9f5bab918c29c85\",\"span_id\":\"a15feff35894f923\",\"start_timestamp\":1774669797.267,\"timestamp\":1774669797.352,\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.css\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/heart-emoji.67305bc4.svg\",\"op\":\"resource.css\",\"parent_span_id\":\"a9f5bab918c29c85\",\"span_id\":\"a20c7ff3d941b695\",\"start_timestamp\":1774669797.267,\"timestamp\":1774669797.4129999,\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.other\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.602ae404.woff2\",\"op\":\"resource.other\",\"parent_span_id\":\"a9f5bab918c29c85\",\"span_id\":\"b3528390bda4af6b\",\"start_timestamp\":1774669797.269,\"timestamp\":1774669797.381,\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.other\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-900.19ea557d.woff2\",\"op\":\"resource.other\",\"parent_span_id\":\"a9f5bab918c29c85\",\"span_id\":\"abf24db1e46600f1\",\"start_timestamp\":1774669797.2710001,\"timestamp\":1774669797.3890002,\"trace_id\":\"e42bdea858914bc8a2898979ecbd23f1\",\"origin\":\"auto.resource.browser.metrics\"}],\"start_timestamp\":1774669797.236,\"timestamp\":1774669797.4129999,\"transaction\":\"/b/512817\",\"type\":\"transaction\",\"transaction_info\":{\"source\":\"url\"},\"platform\":\"javascript\",\"request\":{\"url\":\"https://beautyprosoftware.com/b/512817/order/details\",\"headers\":{\"Referer\":\"https://slon-spa.com/\",\"User-Agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\"}},\"event_id\":\"fd1e5a12003042fb8d9025f92d44a622\",\"environment\":\"production\",\"sdk\":{\"integrations\":[\"InboundFilters\",\"FunctionToString\",\"BrowserApiErrors\",\"Breadcrumbs\",\"GlobalHandlers\",\"LinkedErrors\",\"Dedupe\",\"HttpContext\",\"BrowserSession\",\"BrowserTracing\",\"CaptureConsole\"],\"name\":\"sentry.javascript.react\",\"version\":\"9.0.1\",\"packages\":[{\"name\":\"npm:@sentry/react\",\"version\":\"9.0.1\"}]},\"breadcrumbs\":[{\"timestamp\":1774669795.654,\"category\":\"console\",\"data\":{\"arguments\":[\"[AIHelps] Online-Booking version: \",\"1.6.115\"],\"logger\":\"console\"},\"level\":\"info\",\"message\":\"[AIHelps] Online-Booking version:  1.6.115\"},{\"timestamp\":1774669795.92,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/auth/client_modules/512817\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.046,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.183,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.185,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/positions?fields=name\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.19,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services/categories?fields=name\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.196,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.219,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.272,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.273,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.766,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.032,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.033,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.214,\"category\":\"navigation\",\"data\":{\"from\":\"/b/512817\",\"to\":\"/b/512817/order/details\"}},{\"timestamp\":1774669797.235,\"category\":\"sentry.transaction\",\"event_id\":\"7f6f7c134243479b9204a3f80308e0a3\",\"message\":\"7f6f7c134243479b9204a3f80308e0a3\"}]}"}},"response":{"raw":"HTTP/2 429 Too Many Requests\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:58 GMT\r\ncontent-type: application/json\r\nretry-after: 60\r\nx-sentry-rate-limits: 60:transaction;profile;transaction_indexed;span;span_indexed:organization:span_usage_exceeded\r\nvary: origin, access-control-request-method, access-control-request-headers,accept-encoding\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after\r\ncontent-encoding: br\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"429","status_text":"Too Many Requests","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":198,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"478b411c59eb87249bea32cf7c7be5d2","sha1":"023907c62eb55758905bb3c0e640b5b204ae0652","sha256":"bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263","sha512":"fd5a62565a479ebe0d27a4e3891117df96bb4bac0dd13bb46dbe674d7813557f41f99b00669d4fe3959279b14f64c0738d1627bd0257a22d6103e3b713022222","ssdeep":"","tlshash":"5ad022ebc07a4e6a0ac213a953404924a932aa0a1fcacf2668dc812a0289204662d31d","first_seen":"2023-04-06T03:33:39Z","last_seen":"2026-07-02T08:47:18.619302Z","times_seen":19682,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/64/6d/common.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:59.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"D2:1C:F1:0A:15:56:46:69:23:C8:CB:C9:43:56:AB:F3:49:D9:DC:8C","sha256":"12:10:E8:77:74:7D:E0:EF:96:11:A9:A4:E1:BE:36:B8:ED:01:E2:9A:F2:3E:42:84:96:5F:43:D0:37:C4:03:B9"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/6d/common.js HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37643\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 26 Mar 2026 17:47:47 GMT\r\nexpires: Fri, 26 Mar 2027 17:47:47 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 26 Mar 2026 08:28:40 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 122532\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":126936,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (726)","md5":"f29ac17caf00ca7bc74ad37bbaeea197","sha1":"33ad2d0284418dee91dd5f89be516a35111d584f","sha256":"24662a858cc7da350ab34058f833947fdeb6f522587c9a50afb83d7b83bc8194","sha512":"f5f5454018d23681f652791057931d3019c7cc7532e1fa6bb9af06275d409667a187e1cdb9f421d4c4a516aa04179cb8d42830daef07c9aa2e7b4f20b6699ccd","ssdeep":"3072:nK/UOMgYuldpuEPichAFGK83apF6aQnB/CQWfe/Hl8hlYzKk+8/kMc2XU5a46:nK/UOMg/dp/6ch+83XnntCml8hWzKk+A","tlshash":"50c3c6d9319370b3bf71a89440a70106b29aa499b45dcd2db1fdc8f2aef185601f9b38","first_seen":"2026-03-26T17:56:36.341726Z","last_seen":"2026-06-28T20:33:46.854061Z","times_seen":6044,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-28","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/64/6d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/calendar-emoji.f71aa575.svg","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/calendar-emoji.f71aa575.svg HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG1fPzJLO3DlNN7NM_Sj2jh4NZ5LFvAG_yxmK4QGK5tYp4OQEqWB2_MHrtc4rp6Ze8EaUr0GqS8\r\nx-goog-generation: 1770808118203270\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 37665\r\nx-goog-hash: crc32c=3FED/g==, md5=cbb5WDjnH+9Xlt2g9ZsMQA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ncontent-length: 28266\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:38 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":37665,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"71b6f95838e71fef5796dda0f59b0c40","sha1":"4f30f12d654fb1716eca71b91f8c8d987d2c33e6","sha256":"05ee3e0e74f3bd6c8d15e6c039a8a477f1a551f66faf5d4e16a8009d36e3ab8b","sha512":"c70bc7b57885cb374eccecdddbeb582d429f79017645bfc657a422a93095f1eeb9c142ade1695004100065f5c23203b7ebb16ca1cd28e132921584ae44e52fea","ssdeep":"768:L6o/ULoLX3GNqJ1TfP3MQI34A7+h4k4GfD5Q4v8BcdmXvVRt:LnULqHGNArP3MQI34A7+h4k4C+FBugRt","tlshash":"f803f19ba8324e75b555926c62e47215dcba0f4a230e828fd7022633cedd0802f5b57e","first_seen":"2026-03-28T03:50:32.895288Z","last_seen":"2026-03-28T03:57:46.49654Z","times_seen":2,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":92,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/jquery-migrate-1.2.1.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.522Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/jquery-migrate-1.2.1.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:20:57 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77e9-1c1f\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7199,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7085)","md5":"eb05d8d73b5b13d8d84308a4751ece96","sha1":"743052320809514fb788fe1d3df37fc87ce90452","sha256":"1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d","sha512":"7b68a43a22a41404a2ff58e0da6a237492cad0fc3e56d216980802b4d5fb483895262a7e049340d6670002bdf899ba88c319239e60d0aae1ac31d98556b0ad6e","ssdeep":"96:tBySz91Gwyk35YrfBewIt9jKLKDs2SFNK7wIDBRANyCfVJ45NI:zySzvGw/35YbMx9jKLKD3UIDBR8VVUq","tlshash":"3fe196dc72aab5611ffa30a8503bd21b72b25aec140d95a4f08ccde5392cc5d413ab7e","first_seen":"2023-03-07T01:02:56Z","last_seen":"2026-07-02T09:10:32.106563Z","times_seen":24111,"resource_available":true,"data":null}},"time_used":838,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":838,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/4/9/5/495.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/4/9/5/495.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 110349\r\nlast-modified: Mon, 18 May 2020 21:12:45 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2fa4d-1af0d\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":110349,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"dbd849f502c872bea4dbedce4c2dd312","sha1":"ef831c22d582f7f4bb2dbae62b9c6f9f6d3c934f","sha256":"7b6462e704f2e80e8e5637b21e55e786ee50dd263c5060a897d12c469debd043","sha512":"a873794c7f2d5c94b5adf0b151ca827feb5f73912aa4b7f91c4237302bb763e1d8c3e44a4bd47391aa30ad528a75b3b917dfa959a66f1c1fa83cd639fa437571","ssdeep":"3072:7SziJNURjNJX42XxBsCN5hu6f39VDLUv9:9Ij1Xx3TJf3Ql","tlshash":"75b31209cb146af6f5b195689cf9499a94f84bd4bd4f405fd2a19cb2700bcd93c2c07a","first_seen":"2026-03-28T03:50:32.898524Z","last_seen":"2026-03-28T03:57:46.508791Z","times_seen":2,"resource_available":false,"data":null}},"time_used":889,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":844,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/autoload/highdpi.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/autoload/highdpi.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\ncontent-length: 183\r\nx-accel-version: 0.01\r\nlast-modified: Mon, 09 Feb 2026 12:51:12 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":340,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3d90fe52ca2e6be1871f4e8c4a44eb4c","sha1":"338aac1036e5f438bc89a80e415b122a3ac120a6","sha256":"34b4e6b432b4f9f5c03aeb99281649a2cd627c1287f26136fcd8d277beb1d207","sha512":"09be6327ec99d4d6869ee619352a44d8cd5e5ade6ed83867347dfb119a6bb267e50dd6d88ccf70e3d8ed1b1dbeacddca48bcafcbb5863bd70bee370a7f335d46","ssdeep":"","tlshash":"5ee0d817ab865507365e0c2618140293201b0c9ad230aebf20ee946897c9973e033708","first_seen":"2023-04-07T11:54:31Z","last_seen":"2026-06-30T14:13:55.642146Z","times_seen":591,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/upload/video_bg.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /upload/video_bg.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1035001\r\nlast-modified: Fri, 21 Jun 2024 20:35:27 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"6675e40f-fcaf9\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1035001,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2166x1218, components 3","md5":"f906cc775918495757fdcd94bd85bb10","sha1":"be06be6470ba5658947610863923f28d6d992f30","sha256":"b75e16c0781875491192aa27410e79c527535584b82ce3a98a76871407c40672","sha512":"8a1be35db111a2ae597f995556e0380f4c3db7ebba56df2b1f38faf81ac63a74ea5a65d0e8daf10be488336c2dde1e9924fc70524f13d646915204fc2c2a9b34","ssdeep":"24576:dG78+1U/f3XS4w9L5hzS6Qq+omtG9ybfZr7ibPqAgSLA:u8mU/f3tcvT+jM9JSSk","tlshash":"a02533e28e54d5125e781a7dbebaf1f0fc94281bceb48d4138fe6a2887e45704993c4d","first_seen":"2026-03-28T03:50:32.906607Z","last_seen":"2026-03-28T03:57:46.497817Z","times_seen":2,"resource_available":false,"data":null}},"time_used":957,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/img//visa1.png","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/img//visa1.png HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/png\r\ncontent-length: 11646\r\nlast-modified: Mon, 09 Feb 2026 12:51:08 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"6989d83c-2d7e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":11646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 550 x 167, 8-bit/color RGBA, non-interlaced","md5":"dc91b9c73e6381b4bd8c4856ba29f1d1","sha1":"e0a81452c4800c6e3163bee6dbf68ee4ad754f9f","sha256":"f3dc1ffc3b61f788ae2112c937aeaa2b392dfb80032d15bad845d22e36988efb","sha512":"380891873a8fd5b63e42e29a40bf20f8391f36d64b0d9536c8a698ff6419d8d3f9d70615e2141f1ff3b67ea3dad66947a2e378f33cd1304fc18ef301fc48edd2","ssdeep":"192:pSFQbmSgrqBitgAUNMOhVqIWBEhbEH/qSpt8PcACXt5G0+SnMNPzDB8rJF4N07tx:QFMfgltgbNdV9WBEpSnnt5GanQbDBe4s","tlshash":"8e32a0852d84815e44ea3aad08eb75cd6bfc8168b120e25f12a7fae70554d3324d973f","first_seen":"2026-03-28T03:50:32.909096Z","last_seen":"2026-03-28T03:57:46.494041Z","times_seen":2,"resource_available":false,"data":null}},"time_used":873,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":835,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/online-booking-init/index.js","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"beautyprosoftware.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 00:07:25 GMT","end":"Thu, 11 Jun 2026 00:07:24 GMT"},"fingerprint":{"sha1":"C7:0D:0C:3E:E9:60:D1:57:95:ED:02:A1:FB:2E:5E:9C:5E:EE:5E:E5","sha256":"22:B1:7B:34:48:61:37:9A:CD:DA:D0:E5:BF:02:CE:1A:66:DC:46:AE:EF:40:A2:FE:8B:4A:0D:C7:14:2D:BB:14"}}},"request":{"raw":"GET /online-booking-init/index.js HTTP/1.1\r\nHost: beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000\r\ncontent-type: text/javascript; charset=utf-8\r\netag: \"cvy00p51bq4g25\"\r\nlast-modified: Mon, 02 Oct 2023 13:47:31 GMT\r\nserver: Caddy\r\nvary: Accept-Encoding\r\ncontent-length: 77\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":77,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"2b5f59d2fbebce3b43fac63255561987","sha1":"b1d8d217aa23253c05d72062f1ed06f379f91f5f","sha256":"8bcf37a3615269d81df8cffaaacd2f05e0ecd4a64858de418877dd1c77e6f03d","sha512":"f1e994537387a32045ee4ef18b8af667a73e3ee102b8ff0a4fb3e29b7662bac88d7529adf6ba2d5e8ca6cb8217adebe001822179b890ee179f1b7f6638805357","ssdeep":"","tlshash":"24a022ee800223bb0b082cc0c880c8200be30030023c03c0e22c03e200300e2ea2ccc2","first_seen":"2025-06-25T02:14:14.14123Z","last_seen":"2026-03-28T03:57:46.479372Z","times_seen":3,"resource_available":true,"data":null}},"time_used":398,"timings":{"blocked":177,"dns":37,"connect":43,"send":0,"wait":43,"receive":0,"ssl":95},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:55.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:39 GMT","end":"Mon, 01 Jun 2026 08:37:38 GMT"},"fingerprint":{"sha1":"31:A8:B5:C1:CD:F5:51:78:A9:8C:E3:B4:73:92:CF:C0:6D:69:48:19","sha256":"81:9A:84:FB:F5:4C:AB:82:DF:C1:27:CC:60:46:A6:23:A8:49:56:99:47:CF:C4:05:3F:0D:87:31:DD:2C:23:A2"}}},"request":{"raw":"GET /s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 18688\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 22 Mar 2026 10:06:09 GMT\r\nexpires: Mon, 22 Mar 2027 10:06:09 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:09:30 GMT\r\ncontent-type: font/woff2\r\nage: 495826\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18688,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18688, version 1.0","md5":"9e606da1cbeb392aefa88d31f35784c8","sha1":"a4f64ab8a0fa21a0b54511c56695fd5f52b384c0","sha256":"d857325c360f7128b347ca924c1974967aaa886ba47dad22e4042d6c38b26a83","sha512":"ca51a5588d36b308cb5b3851f55ec6cd370a92d3c98d047490442adf9946ce83884f9d1a4b945c4afefda044a41ee42a7b0338659ddef290146041ad7d4b7c8b","ssdeep":"384:1Ok9ouoF0LTHT1V93FgkajZ/Q23aRFqlJFdb7jRTV7g0mc8CF7C:1Muw25V9VgkaKzqN9/RTV7gE7ZC","tlshash":"ea82e1cc81081ae9ee05b5b718ee53772e0844a9373b140a3f7a9ba77f27254c0657ce","first_seen":"2025-09-05T09:37:16.845418Z","last_seen":"2026-07-02T09:00:24.171744Z","times_seen":4224,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":55,"dns":1,"connect":7,"send":0,"wait":8,"receive":2,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/call-me-fast.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/autoload/call-me-fast.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:18 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d846-158c\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":5516,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4112)","md5":"3f097beea41f17a509e4c26fd635cb42","sha1":"5eafab34f722201abcde3a65e404cf346dfe4fcd","sha256":"db7feaaa34eeda4ca0e65d8510cba485d06d27e066102414ee8c905e97c81022","sha512":"ad1f9703d1f90ec709373b3c7e209f72845c1780289d53d27649459a21cf9b34888be1422134d1e4f33312a2f29bcf00a619b0480fae95da1814f98559773fa8","ssdeep":"96:GYaTbFaRZqD1B7sfha1s+Gib2V81qJQOPBKWnxyDtx9wAnQTVN6f:FaQRZqKhadGib2VyObXxO/9wAnQT0","tlshash":"00b1d89ebde4701211b33cb100efc6069139eeaa281f9992a011e5cc7e78b6c11b7d79","first_seen":"2026-03-28T03:50:32.927794Z","last_seen":"2026-03-28T03:57:46.510087Z","times_seen":2,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/b/512817","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"beautyprosoftware.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 00:07:25 GMT","end":"Thu, 11 Jun 2026 00:07:24 GMT"},"fingerprint":{"sha1":"C7:0D:0C:3E:E9:60:D1:57:95:ED:02:A1:FB:2E:5E:9C:5E:EE:5E:E5","sha256":"22:B1:7B:34:48:61:37:9A:CD:DA:D0:E5:BF:02:CE:1A:66:DC:46:AE:EF:40:A2:FE:8B:4A:0D:C7:14:2D:BB:14"}}},"request":{"raw":"GET /b/512817 HTTP/1.1\r\nHost: beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=utf-8\r\netag: \"dgc33jn5cw1j3uq-gzip\"\r\nlast-modified: Wed, 11 Feb 2026 11:09:05 GMT\r\nserver: Caddy\r\nvary: Accept-Encoding\r\ncontent-length: 2648\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":4994,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (4994), with no line terminators","md5":"3fd3247158642e6978dec6ea6818fef9","sha1":"b72a73bcce47f362b20e5f490bd07ce0ad28b5ba","sha256":"7f58c8180910407ce6022fb8ed848ac60dafd9f77de8a501c10da9e9b2d3a518","sha512":"504fc7d18b558ee7506d2928b32be002523e3705738d8d8a0d3b1626a682f7655e62c505217385a90cb0853d27ce34362656e65fe4c8623ca51d96391cec23f0","ssdeep":"96:zP8J8QLd7jC7ReD0Xl3wDj+nf2F5Zy4P87881TNRKijQlX632T:Y+QLd7jqRR9lnf2FT0881TWdN632T","tlshash":"cfa1f9ebff0cb6daa93048d1183ba0ade15d28597ce5dcc052ddc57a3828ec8517ab61","first_seen":"2026-03-28T03:50:32.930212Z","last_seen":"2026-03-28T03:57:46.494538Z","times_seen":2,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/favicon.ico?1773868903","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/favicon.ico?1773868903 HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; _ga_YRSWQRHPN3=GS2.1.s1774669794$o1$g0$t1774669794$j60$l0$h0; _ga=GA1.1.270901070.1774669794\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 1150\r\nlast-modified: Mon, 18 May 2020 21:10:39 GMT\r\ncache-control: max-age=31536000\r\nexpires: Sun, 28 Mar 2027 03:49:54 GMT\r\netag: \"5ec2f9cf-47e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"49a8ac47d755bac87efa61669f6e94d8","sha1":"7094eee95ab73af95d0a83a58dd95461412c68b6","sha256":"9d46e8e8ded6e41414ec5b4a12a3ba7f310e5354529480ffa3f281dbf235627c","sha512":"7556b5e25adb20f459aed0d49ed6c157e8557fe3f17be9bb09206faa5f3211dfe8711f116176a25b5cbd306b7ec8756b46865be9225742b0dd389bd5916f6a82","ssdeep":"","tlshash":"fe218b5a3149807fd9f55ab2a804d37994a97d71d566063763c9bd2f7e323c35001111","first_seen":"2026-03-28T03:50:32.932914Z","last_seen":"2026-03-28T03:57:46.538978Z","times_seen":2,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/auth/client_modules/512817","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/auth/client_modules/512817 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13a4-e08e-2e60-74094d136a11\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20339,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"478e9f17c95cf93c7c3360de047e2c8c","sha1":"2a9d962451bcb39f16f5cc330d4d402e29c08f02","sha256":"f086d60059e87a9e6ae10f96a6bea54decb544839c761efa0c4efaa443bcba48","sha512":"9fd6448322aae860fe5f8348e0beeb1a81fd96301f1945d5fd76ef0f7aff0c8bc028af51881dbb6f9b43a5683f542ddb625156c6fab2ec896f91e62d24ba3230","ssdeep":"192:vofcFWs6GZ2ld2LLSEi7kTwW/Z2q1W2pTg2TwuJoBf2hqWB1I2dHH245xWtR0roo:vK6UWIBcXTzI29d24fza8yNZfw+WFr","tlshash":"5292ddfa59081e3aca49736abda03d871e2ab07712d429a865b8af9743c1c758711f43","first_seen":"2026-03-28T03:50:32.935118Z","last_seen":"2026-03-28T03:57:46.475543Z","times_seen":2,"resource_available":false,"data":null}},"time_used":99,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":99,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/heart-emoji.67305bc4.svg","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/heart-emoji.67305bc4.svg HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/svg+xml\r\nx-guploader-uploadid: AMNfjG19pNkEheaZq3f109IemB4WuKmTc7PFLLmuDLoRoWuKJebRsB4OtJO34Q_WDOeigvjPlP9YqSA\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:40 GMT\r\nx-goog-generation: 1770808120124530\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 32201\r\nx-goog-hash: crc32c=TjS2Ig==, md5=Rip8Boph/3KKQuGrCGxafg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":32201,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"462a7c068a61ff728a42e1ab086c5a7e","sha1":"8e10b26b124e5bc80c52b1130203b350c9a227b2","sha256":"2234d815ce8041aae358a50ee0400fe11fc43b4c282e4cf657fdbb252cea7216","sha512":"29c5fe3eb2e7c5f553b0c2f8e23720cf9460d5be8092e57da6d6ef21a1142d90036b15a01df7d80fe4ccc9e833e17af613574268839bb07cfe01546ae6078cae","ssdeep":"768:9fM2elCupj3jMe3TjA/6wJJA0QHYG9zO/rnmJddSbFG:F5upj3j73TjA/PnA1ibmrgbFG","tlshash":"b9e2f127c59602afe3e9385d1b89b8557fc0e9ac57ccc776c3701ece5b6aa740523026","first_seen":"2026-03-28T03:50:32.938463Z","last_seen":"2026-03-28T03:57:46.541128Z","times_seen":2,"resource_available":false,"data":null}},"time_used":138,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/css/2.54fe28ad.chunk.css","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:54.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/css/2.54fe28ad.chunk.css HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AMNfjG1BgKGvhfL9GSpoKBXvnwhqK_mjVlMi-fKz9kdkj01uQM5HgqGALQvqz9-NRVdsADAt\r\nx-goog-generation: 1770808120910933\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 45703\r\nx-goog-hash: crc32c=jstOEw==, md5=VQ2S+YxzZdr5IF7rzIhDAg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ncontent-length: 10890\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:40 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}],"data":{"size":45703,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (45703), with no line terminators","md5":"550d92f98c7365daf9205eebcc884302","sha1":"d5e3c0c6d115c294c14de4034fac8cbab223fb6a","sha256":"a9db6a450a6eaa3fe4188c87ba572017a17833903f75bebb94456796fd653268","sha512":"bc3f70c091570dc8ef28794fd2897327dc112ef33911acf878d264e20a142a6dcf23750c907716510e096a3feda20e2e46dcf1adcff3650f188b6383841e41e1","ssdeep":"768:cINIbQV7xa7HaQV7xa7H6CcvCNwQV7vuKd:kUxa7HaUxa7H6CcIwUvT","tlshash":"f323b81b75a1335494225e16c7fc4d68ea1ed56340a10fee37ce260b8b46f9e378a607","first_seen":"2025-06-25T02:14:14.037875Z","last_seen":"2026-03-28T03:57:46.477431Z","times_seen":3,"resource_available":false,"data":null}},"time_used":625,"timings":{"blocked":274,"dns":34,"connect":25,"send":0,"wait":76,"receive":1,"ssl":212},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-YRSWQRHPN3\u0026gtm=45je63p1v9118938642z8897300843za200zd9118938642\u0026_p=1774669793434\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=270901070.1774669794\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AAAAAGA\u0026gaf=2\u0026_s=1\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026sid=1774669794\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fslon-spa.com%2F\u0026dt=SLON%20SPA\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026tfd=1440","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.34.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"58:CB:88:A1:C4:55:4E:E5:46:DC:A0:9C:B3:54:25:79:20:1E:E8:09","sha256":"0B:B5:96:A2:57:57:EC:BA:63:14:8A:AF:4C:C2:32:63:18:8B:75:80:8F:78:1D:1F:5B:00:B7:B3:7E:C9:B7:18"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-YRSWQRHPN3\u0026gtm=45je63p1v9118938642z8897300843za200zd9118938642\u0026_p=1774669793434\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=270901070.1774669794\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AAAAAGA\u0026gaf=2\u0026_s=1\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026sid=1774669794\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fslon-spa.com%2F\u0026dt=SLON%20SPA\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026tfd=1440 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://slon-spa.com/\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://slon-spa.com\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:178:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:178:0\r\nreport-to: {\"group\":\"ascnsrsggc:178:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:178:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":91,"timings":{"blocked":37,"dns":0,"connect":8,"send":0,"wait":17,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/fonts/CenturyGothicRegular/CenturyGothic.woff","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/fonts/CenturyGothicRegular/CenturyGothic.woff HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/themes/default-bootstrap/css/custom.css\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; _ga_YRSWQRHPN3=GS2.1.s1774669794$o1$g0$t1774669794$j60$l0$h0; _ga=GA1.1.270901070.1774669794\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/x-font-woff\r\ncontent-length: 70108\r\nlast-modified: Mon, 09 Feb 2026 12:51:13 GMT\r\ncache-control: max-age=31536000\r\nexpires: Sun, 28 Mar 2027 03:49:54 GMT\r\netag: \"6989d841-111dc\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":70108,"size_decoded":0,"mime_type":"application/x-font-woff","magic":"Web Open Font Format, TrueType, length 70108, version 2.35","md5":"1389f49a600213a6d723857f809f2867","sha1":"ff34055ae14842c2b3e758704cb50c36b1d1151b","sha256":"3aea50a30e0bbb10ad9b15471bd4249b96a8f7fdd830773f4a6e68ec9d5dd4bf","sha512":"2c5f38ed71b3ac79409fcb1cee8f118ec9e1b147455c6becdbcb0854f5d31c7e14e386c8c387486b578bbada92518b88748fe07a5e87b35c9c2249231a92b37a","ssdeep":"1536:vNtd7Xnw1GFfx0kmgoG1asEfZo+1wgmcdKnL0j2YBdxm5sUAT:vB3wcFVRAByc3BxmiN","tlshash":"636302c50a33c3747caaea7557b8aeec4b801fc27691ed5846a9108f35d95537e0b833","first_seen":"2023-05-17T11:22:33Z","last_seen":"2026-06-24T13:34:26.734686Z","times_seen":49,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"beautyprosoftware.com/online-booking-init/index-389ddf8b.js","fqdn":"beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.38.231.228","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"beautyprosoftware.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 00:07:25 GMT","end":"Thu, 11 Jun 2026 00:07:24 GMT"},"fingerprint":{"sha1":"C7:0D:0C:3E:E9:60:D1:57:95:ED:02:A1:FB:2E:5E:9C:5E:EE:5E:E5","sha256":"22:B1:7B:34:48:61:37:9A:CD:DA:D0:E5:BF:02:CE:1A:66:DC:46:AE:EF:40:A2:FE:8B:4A:0D:C7:14:2D:BB:14"}}},"request":{"raw":"GET /online-booking-init/index-389ddf8b.js HTTP/1.1\r\nHost: beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript; charset=utf-8\r\netag: \"cvy00p51bq4gduj-gzip\"\r\nlast-modified: Mon, 02 Oct 2023 13:47:31 GMT\r\nserver: Caddy\r\nvary: Accept-Encoding\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":17947,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (17922)","md5":"f52221e52b140e6dc1204d96c196b96c","sha1":"42a5af1df8abd933eb36e3e45fbcefceb2772009","sha256":"db130abad28c6826c9d5bcb597d587d5907900bea18e84889bfc436564654918","sha512":"99deb24fd0dba3306bd509ee06051545af2482b3003ffb40b9d23403bea0ea451c04ec5bd1fafbc333992553121661a367b4407d402584d5cc789afa5dcc648e","ssdeep":"384:iHyNEmcLgqKGRnAWk1qD1bRTahEhtX8AF8T0sr0PCk3yooAVJM/4:iHWEmc0qKGRkUZRTahEhifT0sr0PCwoW","tlshash":"5782d9aab8843139b763c49b76fb5404f739a8c2782239b8325c4c855ba3fd943a3d55","first_seen":"2025-06-25T02:14:14.072348Z","last_seen":"2026-03-28T03:57:46.486233Z","times_seen":3,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.no/ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-YRSWQRHPN3\u0026cid=270901070.1774669794\u0026gtm=45je63p1v9118938642z8897300843za200zd9118938642\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026z=1940527634","fqdn":"www.google.no","domain":"google.no","tld":"no"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.no","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:39:20 GMT","end":"Mon, 01 Jun 2026 08:39:19 GMT"},"fingerprint":{"sha1":"66:E0:1E:17:A5:9D:F7:BA:D0:19:D6:AF:6E:30:BE:8B:49:91:CD:18","sha256":"25:80:3E:93:FF:7B:53:46:49:43:9F:DA:83:0E:7A:D9:BA:CD:BA:81:38:DC:DF:E0:F1:06:FA:80:D1:5E:C2:00"}}},"request":{"raw":"GET /ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-YRSWQRHPN3\u0026cid=270901070.1774669794\u0026gtm=45je63p1v9118938642z8897300843za200zd9118938642\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026z=1940527634 HTTP/1.1\r\nHost: www.google.no\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\nx-content-type-options: nosniff\r\nserver: cafe\r\ncontent-length: 42\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-07-02T09:06:03.965738Z","times_seen":970123,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":82,"dns":2,"connect":20,"send":0,"wait":37,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/modules/themeconfigurator/css/hooks.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /modules/themeconfigurator/css/hooks.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 09 Jul 2024 07:24:59 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"668ce5cb-558\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1368,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"389319f8ca99453be7a2190ee19faa3d","sha1":"b6ea1aaa471c3507264bac93a80ebebca2c433d5","sha256":"4613e5535c56f4bb8d0dec743d0a333f1c1343d5579701475f8e085d185f067d","sha512":"7dd8260fffd177986feb9c478d29eee4edffc23321a24075884650d462523fddd5f404a6a9ab18268e69de5b41b946a741d1f3499eb98525080352b970ebd61f","ssdeep":"","tlshash":"d121e56707ba249d4245d066dbe9301c768680dbabde6dd1b88cd248dfce7d140f2bc8","first_seen":"2023-04-07T01:17:08Z","last_seen":"2026-06-29T00:03:14.027826Z","times_seen":208,"resource_available":false,"data":null}},"time_used":826,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":826,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/autoload/jquery.modal.min.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/autoload/jquery.modal.min.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:12 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d840-c81\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3201,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3201), with no line terminators","md5":"54e7ff4998b2900efc138ead15e54a93","sha1":"928eeaad352ee4698ec1dddad216ec38424cfee3","sha256":"eaa593bcfe485f4b5a8ac997cf9936604f9fbef91652db94a8e22b75d612bfc1","sha512":"4f754bd6aea331423318b441f73f3aa0983d3e017b039e5e0b65e407ddf3c964aa430dc9bbee8810965805f4fb13dc0e1ccec708c08e652a5cb2cc67527e8079","ssdeep":"","tlshash":"8961b6b20d57056a72abc77287d51ba80475ca37e6130bbeb1267138c25a8d425f721f","first_seen":"2023-04-05T06:18:56Z","last_seen":"2026-07-02T09:56:20.038441Z","times_seen":8370,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/15-jquery.uniform-modified.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/autoload/15-jquery.uniform-modified.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:18 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d846-8e31\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36401,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"deadf79f5622a50a973f5b3fdcf3c76f","sha1":"47c1100b4eba4c8814296e6048c5fccf8df07c98","sha256":"a7ba80d1ea8b2a08b8762c85123b698ccae669591249a02dfabde3f368431072","sha512":"46f5acb38efe87a297e704e835fd24d842b32dd78756c32fb76992693b3888ab44c936984c7e7e46335c58465eb14d047f0ed213722354cb5e8a7585ada3fc00","ssdeep":"768:jfsBKnIaB641jH3YLYmcPfV/Z+4R6B3eR:jfs4nIk641jH3wYmcPfV/Z+4R6B3eR","tlshash":"81f20f0d38f262a185b770ba5bdf5009b239922b5209de017c9e53f45f64628f2e37de","first_seen":"2023-05-03T15:19:19Z","last_seen":"2026-06-30T14:13:55.623701Z","times_seen":284,"resource_available":true,"data":null}},"time_used":860,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":860,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/superfish-modified.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/modules/blocktopmenu/js/superfish-modified.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:52:27 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d88b-1b47\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6983,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"cd2afae22971f76bc5ffd89be9c2eca7","sha1":"7f61c46f0a9a5807a034db88fd5d1a330e4d485f","sha256":"4bf93de0cc46387ed3a5d5fdf35f6d218cf59b6da74fa9b340b011859f439ad6","sha512":"94add9b981ae043562c360cc3bcaf5c729e0e4c952e8808e92f58297133b3a5d1cc29e768a7d0d4ff4757d0c7e0197d41c73fe9c35e4efd00238b70cf242d7b9","ssdeep":"192:o1a7G++jacaTOh0Zl049C9NmjaEg9Qi6TO:ZDDTOhgxLO","tlshash":"dee12dc9fb9e25d3c2ba325a08af50cd623d9076d846182ffc75e66c6c9487c826197c","first_seen":"2023-03-07T13:17:34Z","last_seen":"2026-06-30T14:13:55.668647Z","times_seen":290,"resource_available":true,"data":null}},"time_used":857,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":857,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/6/7/6/676.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/6/7/6/676.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 204281\r\nlast-modified: Mon, 18 May 2020 21:15:21 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2fae9-31df9\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":204281,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"d5e47529aa5c35b961fc3219f5772349","sha1":"41d13d749c983b2501d7d5fd58d6254ff795ae75","sha256":"27fc3236b04db549d6143ae3aaebc676d9b89e3d0b2356e27a424bd7c60ecfc7","sha512":"b57f45101a073470456e71dceded4bedda0036d2646c1d40be46c1444d441da2c1feb3b857805d6d7b03d6bf90f4a9dbd1badcc95940adebf5c341f0c615e524","ssdeep":"6144:c4tI2lLMAVhBGCpkG7HuQa+NgL4lc0jNgk3O2iQzrc:HITAc/GTULR0Rd9pc","tlshash":"5a1423f74751a5c5b9339777a40b4ad1c2f6204cf501e4eb718634aaeeb632083236ab","first_seen":"2026-03-28T03:50:32.964612Z","last_seen":"2026-03-28T03:57:46.490881Z","times_seen":2,"resource_available":false,"data":null}},"time_used":902,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":844,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/7/0/0/700.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/7/0/0/700.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 91722\r\nlast-modified: Mon, 18 May 2020 21:15:47 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2fb03-1664a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91722,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"730a12e19126b9ed26c68c75ea33ae3b","sha1":"e7ead3e661d05f4fc3662ad43e2b40eec124415f","sha256":"fffff15b6eeb838337ef920ae8a2a25d7dde4cf048d9a066b0ea2b1ca4bfe557","sha512":"e2c32d6865ae5f6c62d052fd636f5d2b33420f6f1eb7107972a2a61979e9960c179b4dabf208b6bbe437ef08701fb7b13ddf41e88b4606e7c146183d2098632b","ssdeep":"1536:lG/6OFk9nUPL3Dwwds7v9tEg8hVLERpoNkwr5ogu8opL77o79sB07JcI65pkwvPN:4/6+k23DR/ll2pStoh8oB77oqB07Jg5t","tlshash":"ae93028edfc4ddc0bd3c5010c6641a7874a7dea5ccf4227a59e0e8aab6f188c8c66d48","first_seen":"2026-03-28T03:50:32.966853Z","last_seen":"2026-03-28T03:57:46.528356Z","times_seen":2,"resource_available":false,"data":null}},"time_used":887,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":839,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/jquery.easing.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/plugins/jquery.easing.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:20:58 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77ea-135b\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4955,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"b02bef6a62053b45babfbda795b6eac0","sha1":"3df9034ec9a2ff4d1964be64c4753cf4628affb9","sha256":"91fabad8aada7dfd913da46fffba65e16f37e97fbe07612e16acba215cee6c28","sha512":"0d44d0cfdd32f419dd0b9fef47c391a1b09544d599b6095fc610b25a813ab1214646f34cf6d073c5349a45fb200e713d62ca3364a12cfabc15b5b6ce6682bf6b","ssdeep":"96:uBmbQlcQgliUtaq2xsv0jAeAWFdTGj1GfsS:pcAsfAyd","tlshash":"76a1519cb7d5b21b8359f2709a3e0d0fe2646427856ea82fcc4c4495ba7c335c269d7c","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-02T00:56:55.173205Z","times_seen":942,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/settings?fields=client_module(button_text,button_color,element_id,button_position,googleAnalyticsCode)","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:55.338Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/settings?fields=client_module(button_text,button_color,element_id,button_position,googleAnalyticsCode) HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://slon-spa.com/\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-500.54f36bb0.woff2","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.649Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-500.54f36bb0.woff2 HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.beautyprosoftware.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG13Ha8a6y3AlreeqsQCQw6kBHEWO7Rg9HCRBXSD7Tp_13R8stDmfDgSG4NH4TV88_99\r\nx-goog-generation: 1770808116621623\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 52304\r\nx-goog-hash: crc32c=H1Ygpw==, md5=o/jSOVKaYtDRFDJHhqrR4w==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\ncontent-length: 52304\r\nserver: UploadServer\r\nvia: 1.1 google\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:36 GMT\r\netag: \"a3f8d239529a62d0d114324786aad1e3\"\r\ncontent-type: application/octet-stream\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":52304,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 52304, version 1.0","md5":"a3f8d239529a62d0d114324786aad1e3","sha1":"6b3aef415bd0e3fb9c36780055f267468a63de87","sha256":"1d5dbbb642d516ce49ac030e02c58416e71a645f5c66618fe4dd6c80e23b63c9","sha512":"c592cd9e324a1aaa21c89f39cdc2b89118d3e69487e6ac581846777f3e345dccc98ffe9ae76f3e011afa21ae9d63a981b107aa3a32ef97224f8037b6c8dcaed8","ssdeep":"1536:PUE9otjWQkCPVAhC6fJ9ZCcw42/dl8XAqQdiL5U12u6s:PUqWWQ5PmT9CcwWXJFW2zs","tlshash":"c733f2a45e019c4f08c1667c14df69c8bba237077fae955d8c3cd139c46a517f40b9ae","first_seen":"2023-04-08T00:46:32Z","last_seen":"2026-07-01T10:37:45.826441Z","times_seen":202,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":98,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.602ae404.woff2","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.602ae404.woff2 HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.beautyprosoftware.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG3W3CrQsFSZ5OpIp47nUqwtPHcO0cbMsdz9y9nX2iQptKI-srduiB0uCEBylGfU3tTtYCtsbOE\r\nx-goog-generation: 1770808120014812\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 52284\r\nx-goog-hash: crc32c=Sy0EcQ==, md5=P3S5vxgHSHAX5rcbDmmmQA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\ncontent-length: 52284\r\nserver: UploadServer\r\nvia: 1.1 google\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:40 GMT\r\netag: \"3f74b9bf1807487017e6b71b0e69a640\"\r\ncontent-type: application/octet-stream\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":52284,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 52284, version 1.0","md5":"3f74b9bf1807487017e6b71b0e69a640","sha1":"fd5ef676c459a40e8f07f530c76063473dcf2514","sha256":"810e99e8ccb24477168d39a02104fc987e71a21e77d0ebf38716c2a5799b9f6d","sha512":"31a8b392bfb1a7da56eb219b58d451650dfaa8d0575aaefcd8b93ad7c7e4dbcbce3f37b12950fb572c370e3fdf582e01d47935e1d722c0f1e407a222660e506c","ssdeep":"1536:2Ez+9VQae6ECyAachDlHP8QnCRxHX3GRnHTFtsd6EuF:2Ez+9V2bolHPURt3G5HTHsdm","tlshash":"a933029d5baf127d8b2e57f507c01e12ec51895f39979f87c834ad80d8cd3412faa906","first_seen":"2023-04-08T00:46:32Z","last_seen":"2026-06-30T17:01:28.42774Z","times_seen":84,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/jquery-1.11.0.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.521Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/jquery-1.11.0.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:20:57 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77e9-1787d\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96381,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32341)","md5":"8fc25e27d42774aeae6edbc0a18b72aa","sha1":"b66ed708717bf0b4a005a4d0113af8843ef3b8ff","sha256":"b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682","sha512":"87d90a665c15d71ac872bd8bc003d9863964c7ec7ada6370b902b93c0bbd7770fe25730d946c7c6a465baa95efa74bc0e78af3f83aea615af35060cc8702a6c1","ssdeep":"1536:EPpEy5BMibZGOj/bEe8v+/UWf4IhvAuCh/jqkODZ2D5N9Rag0MOIdSZAgtgoX5Yn:bIO/e2D5c4LgtImLja98HrK","tlshash":"cc93e8d9b6d2706297b730a851bf510bb17698eab80c4c60f058d8e47eb4e8d507bf2d","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-07-02T09:21:27.776032Z","times_seen":30653,"resource_available":true,"data":null}},"time_used":852,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T03:49:52.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 10589\r\np3p: CP=\"IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA\"\r\npowered-by: PrestaShop\r\nset-cookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; expires=Fri, 17-Apr-2026 03:49:52 GMT; path=/; domain=slon-spa.com; secure; httponly\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-cache-status: BYPASS\r\nx-powered-by: PHP/5.4.45, PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"jQuery:1.11.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery Migrate:1.2.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"FancyBox","description":"FancyBox is a tool for displaying images, html content and multi-media in a Mac-style 'lightbox' that floats overtop of web page.","website":"https://fancyapps.com/fancybox","common_platform_enumeration":"","icon":"FancyBox.svg","categories":["JavaScript libraries"]},{"name":"PHP:5.4.45","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]},{"name":"PrestaShop","description":"PrestaShop is a freemium, open-source ecommerce solution, written in the PHP programming language with support for the MySQL database management system.","website":"https://www.prestashop.com","common_platform_enumeration":"cpe:2.3:a:prestashop:prestashop:*:*:*:*:*:*:*:*","icon":"PrestaShop.svg","categories":["Ecommerce","CMS"]},{"name":"Bootstrap:10","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"bxSlider","description":"Add a respsonsive image slider to any website.","website":"https://bxslider.com/","common_platform_enumeration":"","icon":"bxSlider.png","categories":["Photo galleries","JavaScript libraries"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]}],"data":{"size":45200,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (643), with CRLF, LF line terminators","md5":"0fc1dfc16ebb4bc281fd90d36533d3ae","sha1":"987e580bb6c25a048649cc629a06c2278c86897f","sha256":"02d362a009121004d88250cc867e4fd9233ad579579570fe80e77f22fcbaa51d","sha512":"77cdda886a7b76971f4c1815d650fb38e6190096acd2df559d0a2767092b7a1d0074058d01c9f91dbb66377cc7246eb0ff422debd1f62595301b9ad279813a35","ssdeep":"384:ZtLBVWspYXIY4OHa/tbC6c1cKjcrc0cec5cwcUc9LchcRcKx0me1+JOfdSlwT5Lc:ZpBVrpY5rHa1UBr9xbpcQ9/0v9","tlshash":"5013b8228b9d2cbf011122ca901076ccf8ef4e3bd6678a96f5ff0d5d67c2d82c52595a","first_seen":"2026-03-28T03:50:32.998804Z","last_seen":"2026-03-28T03:57:46.532901Z","times_seen":2,"resource_available":false,"data":null}},"time_used":635,"timings":{"blocked":59,"dns":26,"connect":15,"send":0,"wait":511,"receive":1,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.ac8743d7.woff2","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.652Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.ac8743d7.woff2 HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.beautyprosoftware.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG0uJhOD_F2bRAhTg5PCfGtmXjNqXqhs6_N7D91AdeLTdRrPrxzuam8aAIecWvBcQwxEIOJY3CQ\r\nx-goog-generation: 1770808116962625\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 52488\r\nx-goog-hash: crc32c=Rr3FjA==, md5=y3GJVSBGQHklJjkh7vPSVg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\ncontent-length: 52488\r\nserver: UploadServer\r\nvia: 1.1 google\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:36 GMT\r\netag: \"cb7189552046407925263921eef3d256\"\r\ncontent-type: application/octet-stream\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":52488,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 52488, version 1.0","md5":"cb7189552046407925263921eef3d256","sha1":"2cca366855d9842fd06aacd4a29a366b04e7bcff","sha256":"fa6b03fb3e67aaa5b00d6b3aeee40ec0201656aee9da35f446f53efbcfd66b3a","sha512":"3f7507fd4027b6648a1c95b45bd750d2dfae7849bbf882511483402d4f91077be50367e0304c7c486f855a747a1c4b4b9b755ecab696819421359323bcecb2b5","ssdeep":"1536:cwTD0q4sarRhLtvqglcLrh5bIWvNb4ys+K7b:c047RzBlcLXbBFbkb","tlshash":"8a330220e8d3340f6ba57ab4747c5e979fb08d24b28db186e50a427577cdb8aa18cc60","first_seen":"2023-04-08T00:46:32Z","last_seen":"2026-07-01T10:37:45.824373Z","times_seen":993,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":74,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-13a4-f184-3502-dcc746d9bf97\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f81b16064ad863c76d6eb232ea082ddf","sha1":"28eb40ff65a9135aaf8c985ed4e8cfb44c7112e4","sha256":"4a9d89d58abd8c6d1d19beb695c13245d883afc67eb65da92a55b53ba5551a98","sha512":"273bcce5feec6782de11989152fa596e24ecf66a9f5432b28af089f7f24148b638bfaaf00102d8fb6837b4f979538dcd482be9ab14aa77e534a8f7557e3b484d","ssdeep":"","tlshash":"3ad0eb4b002c01b38a0cf195fa2ca28f2f39207a2ac3aa484b3c211fd1e9a610380303","first_seen":"2026-03-28T03:50:33.003881Z","last_seen":"2026-03-28T03:57:46.48138Z","times_seen":2,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/64/6d/util.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:59.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"D2:1C:F1:0A:15:56:46:69:23:C8:CB:C9:43:56:AB:F3:49:D9:DC:8C","sha256":"12:10:E8:77:74:7D:E0:EF:96:11:A9:A4:E1:BE:36:B8:ED:01:E2:9A:F2:3E:42:84:96:5F:43:D0:37:C4:03:B9"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/6d/util.js HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 71320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 26 Mar 2026 17:47:47 GMT\r\nexpires: Fri, 26 Mar 2027 17:47:47 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 26 Mar 2026 08:28:40 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 122532\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":310651,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (524)","md5":"f8a7e55083af89166ecd4be2f33e959f","sha1":"3416adfa6dcaf4eced52980320dc989d8315010e","sha256":"a8ae40661333061df05b8e8915506e972d1c4a8f2bad404dc2e26b74d1f45ef8","sha512":"866d4e242bdd85e4c5fcb92b903bb1f991c6c582f3374bfcdd453c3cd63976bd69055ab9c21a6a9d78b69538e7d47384391560a32561094c641a1f0293a5967b","ssdeep":"6144:Z8jkyZOkxIRRmaT2jGUFzYRqZayty0WG6olwCk8Zxu0BFg8IkwW:Z8jkyZOkxIRRmaT2jGUFzYRqIyty0WGX","tlshash":"0164e67c31316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e4638","first_seen":"2026-03-26T17:56:36.31894Z","last_seen":"2026-06-28T20:33:46.804573Z","times_seen":6044,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/wow.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.543Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/wow.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:09 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d83d-1ff6\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8182,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8152)","md5":"a26a117ff59c944bbb654bf506f69786","sha1":"237c90127c99e91347536835096276b0add6d018","sha256":"cfa1739ee346d63a3d3cfdff8c18cbe8fdedbcb32d4b0895028c193ce828e7a5","sha512":"11a93fdbd393a5bdfa2cba36af8ec8a55ccf04b5e700c3c0572a5b499899e1091ff29ffb4bf5d11b9c69ece2963cf61f253ea67ad23e20e4644791bc17dd34fa","ssdeep":"96:irZgL1xvPV6GqKyR6TYdtHFMLzA4pOROVEE1fosvGeaMozHImBaokbl:iry9PVfSnAPAjROVEEdos+eatzHILoe","tlshash":"04f175c9ba967035c75792f2833f0106b23a5aeea028047cb5b98dd57d38c58523bf78","first_seen":"2023-03-07T01:10:38Z","last_seen":"2026-07-02T09:43:53.210097Z","times_seen":7838,"resource_available":true,"data":null}},"time_used":852,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/c/31.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/c/31.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11472\r\nlast-modified: Mon, 18 May 2020 21:11:07 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2f9eb-2cd0\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":11472,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced","md5":"d62797338842e9f3a3d9fd96b15c38d9","sha1":"aa0c95d331d10d65056a2b4591a83117fd09172e","sha256":"266c34afdd9cb9878df687594eefb8e062ed992519ffe5f7d94e2bb1527d0d3e","sha512":"6243b64b44cb23aae0dfb81c8ab5efe1afccb0ba31649cd14fa0278ec2874fd6945969fbe9e3d4ea12fe496c33b35a124867f43d5c50e213417d83d596c0f94e","ssdeep":"192:Ttuac2H7XhdBc371VexC0zPBT59GHChq56QNGgVy6erNRvuIcJEvUEmH1RP056w7:K2HDhdBwRVejpPEQzQNmZuDJEsEmH/Pi","tlshash":"1432bfd2f132554119ca2cfb495fcc81d8180dbe296012f6d82b32feb46c7243b67b41","first_seen":"2026-03-28T03:50:33.011114Z","last_seen":"2026-03-28T03:57:46.535403Z","times_seen":2,"resource_available":false,"data":null}},"time_used":875,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":848,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"o4504197057937408.ingest.us.sentry.io/api/4508811232280576/envelope/?sentry_version=7\u0026sentry_key=91e88c2b9486c967dc3c3565c7800ba9\u0026sentry_client=sentry.javascript.react%2F9.0.1","fqdn":"o4504197057937408.ingest.us.sentry.io","domain":"sentry.io","tld":"io"},"ip":{"addr":"34.160.81.0","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ingest.sentry.io","organization":"Sentry"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 24 Jul 2025 00:00:00 GMT","end":"Mon, 24 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:C7:A0:3C:30:51:F2:AE:98:2C:88:9F:C7:8D:24:55:ED:C3:34:BD","sha256":"78:73:F7:3D:EE:58:1B:F8:9A:1E:17:AB:A3:70:00:86:76:EA:4E:AF:AB:F4:7B:34:5F:FA:39:D8:3B:5D:F4:B5"}}},"request":{"raw":"POST /api/4508811232280576/envelope/?sentry_version=7\u0026sentry_key=91e88c2b9486c967dc3c3565c7800ba9\u0026sentry_client=sentry.javascript.react%2F9.0.1 HTTP/1.1\r\nHost: o4504197057937408.ingest.us.sentry.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 29893\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":29893,"data":"{\"event_id\":\"7f6f7c134243479b9204a3f80308e0a3\",\"sent_at\":\"2026-03-28T03:49:57.235Z\",\"sdk\":{\"name\":\"sentry.javascript.react\",\"version\":\"9.0.1\"},\"trace\":{\"environment\":\"production\",\"public_key\":\"91e88c2b9486c967dc3c3565c7800ba9\",\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"sampled\":\"true\",\"sample_rand\":\"0.056419126922959806\",\"sample_rate\":\"1\"}}\n{\"type\":\"transaction\"}\n{\"contexts\":{\"trace\":{\"span_id\":\"816783e392b93f0b\",\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"data\":{\"sentry.origin\":\"auto.pageload.browser\",\"sentry.op\":\"pageload\",\"sentry.source\":\"url\",\"sentry.sample_rate\":1,\"hardwareConcurrency\":\"48\",\"performance.timeOrigin\":1774669794.769,\"performance.activationStart\":0,\"sentry.idle_span_finish_reason\":\"externalFinish\"},\"op\":\"pageload\",\"origin\":\"auto.pageload.browser\"},\"react\":{\"version\":\"17.0.2\"}},\"spans\":[{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/auth/client_modules/512817\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/auth/client_modules/512817\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669795.662,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669795.917},\"description\":\"GET https://api.aihelps.com/v1/auth/client_modules/512817\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"82f61a58b122d6a6\",\"start_timestamp\":1774669795.66,\"status\":\"ok\",\"timestamp\":1774669795.919,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669795.927,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.045},\"description\":\"GET https://api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"9effbc119bd8f4b4\",\"start_timestamp\":1774669795.926,\"status\":\"ok\",\"timestamp\":1774669796.046,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.077,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.181},\"description\":\"GET https://api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"803bae2ff5e43960\",\"start_timestamp\":1774669796.076,\"status\":\"ok\",\"timestamp\":1774669796.182,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.079,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.236},\"description\":\"GET https://api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"98b0e8aac1e447bd\",\"start_timestamp\":1774669796.078,\"status\":\"ok\",\"timestamp\":1774669796.271,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/positions?fields=name\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/positions?fields=name\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.081,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.183},\"description\":\"GET https://api.aihelps.com/v1/positions?fields=name\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"bf74cf7bf3bf53d3\",\"start_timestamp\":1774669796.08,\"status\":\"ok\",\"timestamp\":1774669796.184,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.083,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.23},\"description\":\"GET https://api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"898e9bc759a90e7b\",\"start_timestamp\":1774669796.082,\"status\":\"ok\",\"timestamp\":1774669796.218,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/services/categories?fields=name\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/services/categories?fields=name\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.085,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.188},\"description\":\"GET https://api.aihelps.com/v1/services/categories?fields=name\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"bd0b13ba3fe52cf8\",\"start_timestamp\":1774669796.084,\"status\":\"ok\",\"timestamp\":1774669796.19,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"http.response_content_length\":2,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.087,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.237},\"description\":\"GET https://api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"a02ba9b63942b974\",\"start_timestamp\":1774669796.086,\"status\":\"ok\",\"timestamp\":1774669796.272,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.089,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.194},\"description\":\"GET https://api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"81bdfb9becd2a681\",\"start_timestamp\":1774669796.087,\"status\":\"ok\",\"timestamp\":1774669796.195,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.665,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.764},\"description\":\"GET https://api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"9073bb0f28b96ae0\",\"start_timestamp\":1774669796.664,\"status\":\"ok\",\"timestamp\":1774669796.765,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200},\"description\":\"GET https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"90e7d3a3223678dd\",\"start_timestamp\":1774669796.666,\"status\":\"ok\",\"timestamp\":1774669797.033,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.http.browser\",\"sentry.op\":\"http.client\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"type\":\"fetch\",\"http.method\":\"GET\",\"http.url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"server.address\":\"api.aihelps.com\",\"http.response.status_code\":200,\"network.protocol.version\":\"unknown\",\"network.protocol.name\":\"\",\"http.request.redirect_start\":1774669794.769,\"http.request.fetch_start\":1774669796.668,\"http.request.domain_lookup_start\":1774669794.769,\"http.request.domain_lookup_end\":1774669794.769,\"http.request.connect_start\":1774669794.769,\"http.request.secure_connection_start\":1774669794.769,\"http.request.connection_end\":1774669794.769,\"http.request.request_start\":1774669794.769,\"http.request.response_start\":1774669794.769,\"http.request.response_end\":1774669796.794},\"description\":\"GET https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"op\":\"http.client\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"a5f1528a53bf04c0\",\"start_timestamp\":1774669796.668,\"status\":\"ok\",\"timestamp\":1774669797.032,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.http.browser\"},{\"data\":{\"sentry.origin\":\"auto.ui.browser.metrics\",\"sentry.op\":\"browser.domContentLoadedEvent\"},\"description\":\"https://beautyprosoftware.com/b/512817\",\"op\":\"browser.domContentLoadedEvent\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"97a31f2afc36b9ae\",\"start_timestamp\":1774669795.662,\"timestamp\":1774669795.6660001,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.ui.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.ui.browser.metrics\",\"sentry.op\":\"browser.loadEvent\"},\"description\":\"https://beautyprosoftware.com/b/512817\",\"op\":\"browser.loadEvent\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"80e27da4c841590c\",\"start_timestamp\":1774669795.7840002,\"timestamp\":1774669795.7840002,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.ui.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.ui.browser.metrics\",\"sentry.op\":\"browser.request\"},\"description\":\"https://beautyprosoftware.com/b/512817\",\"op\":\"browser.request\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"96c29cc4837e85b9\",\"start_timestamp\":1774669794.769,\"timestamp\":1774669794.8200002,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.ui.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.ui.browser.metrics\",\"sentry.op\":\"browser.response\"},\"description\":\"https://beautyprosoftware.com/b/512817\",\"op\":\"browser.response\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"a9750ec780a408b7\",\"start_timestamp\":1774669794.769,\"timestamp\":1774669794.8200002,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.ui.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.script\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/js/2.11db13ff.chunk.js\",\"op\":\"resource.script\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"9a693fe0f4f4badc\",\"start_timestamp\":1774669794.875,\"timestamp\":1774669795.231,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.link\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/css/2.54fe28ad.chunk.css\",\"op\":\"resource.link\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"adfadf6c02343f22\",\"start_timestamp\":1774669794.875,\"timestamp\":1774669795.232,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.link\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/css/main.69452279.chunk.css\",\"op\":\"resource.link\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"8ed7744087e1a977\",\"start_timestamp\":1774669794.875,\"timestamp\":1774669795.216,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.script\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/js/main.2c799342.chunk.js\",\"op\":\"resource.script\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"a7f9ddcf493f8488\",\"start_timestamp\":1774669794.8760002,\"timestamp\":1774669795.2170002,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.script\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/js/119.b4c7093a.chunk.js\",\"op\":\"resource.script\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"8a62bb256c5750f6\",\"start_timestamp\":1774669795.542,\"timestamp\":1774669795.624,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"mark\"},\"description\":\"sentry-tracing-init\",\"op\":\"mark\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"9a30ef719319cc88\",\"start_timestamp\":1774669795.6100001,\"timestamp\":1774669795.6100001,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.other\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-500.54f36bb0.woff2\",\"op\":\"resource.other\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"a9148d1719f39eee\",\"start_timestamp\":1774669795.644,\"timestamp\":1774669795.778,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"},{\"data\":{\"sentry.origin\":\"auto.resource.browser.metrics\",\"sentry.op\":\"resource.other\",\"http.response_transfer_size\":0,\"http.response_content_length\":0,\"http.decoded_response_content_length\":0,\"url.scheme\":\"https\",\"server.address\":\"cdn.beautyprosoftware.com\",\"url.same_origin\":false,\"network.protocol.name\":\"\",\"network.protocol.version\":\"unknown\"},\"description\":\"https://cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.ac8743d7.woff2\",\"op\":\"resource.other\",\"parent_span_id\":\"816783e392b93f0b\",\"span_id\":\"8a1d1d8073ea0c35\",\"start_timestamp\":1774669795.647,\"timestamp\":1774669795.7580001,\"trace_id\":\"424c9d9988654b1db74e409e36568b61\",\"origin\":\"auto.resource.browser.metrics\"}],\"start_timestamp\":1774669794.769,\"timestamp\":1774669797.033,\"transaction\":\"/b/512817\",\"type\":\"transaction\",\"transaction_info\":{\"source\":\"url\"},\"measurements\":{\"ttfb.requestTime\":{\"value\":0,\"unit\":\"millisecond\"}},\"platform\":\"javascript\",\"request\":{\"url\":\"https://beautyprosoftware.com/b/512817\",\"headers\":{\"Referer\":\"https://slon-spa.com/\",\"User-Agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\"}},\"event_id\":\"7f6f7c134243479b9204a3f80308e0a3\",\"environment\":\"production\",\"sdk\":{\"integrations\":[\"InboundFilters\",\"FunctionToString\",\"BrowserApiErrors\",\"Breadcrumbs\",\"GlobalHandlers\",\"LinkedErrors\",\"Dedupe\",\"HttpContext\",\"BrowserSession\",\"BrowserTracing\",\"CaptureConsole\"],\"name\":\"sentry.javascript.react\",\"version\":\"9.0.1\",\"packages\":[{\"name\":\"npm:@sentry/react\",\"version\":\"9.0.1\"}]},\"breadcrumbs\":[{\"timestamp\":1774669795.654,\"category\":\"console\",\"data\":{\"arguments\":[\"[AIHelps] Online-Booking version: \",\"1.6.115\"],\"logger\":\"console\"},\"level\":\"info\",\"message\":\"[AIHelps] Online-Booking version:  1.6.115\"},{\"timestamp\":1774669795.92,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/auth/client_modules/512817\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.046,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.183,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.185,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/positions?fields=name\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.19,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services/categories?fields=name\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.196,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.219,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.272,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.273,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669796.766,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.032,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.033,\"category\":\"fetch\",\"data\":{\"method\":\"GET\",\"url\":\"https://api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start\",\"status_code\":200},\"type\":\"http\"},{\"timestamp\":1774669797.214,\"category\":\"navigation\",\"data\":{\"from\":\"/b/512817\",\"to\":\"/b/512817/order/details\"}}]}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\ncontent-type: application/json\r\ncontent-length: 41\r\nvary: origin, access-control-request-method, access-control-request-headers\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":41,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7696ea7fef3863359710d1971acb8c61","sha1":"fd8ca13669d85b36339c4c567e78932ae18f9d88","sha256":"bf812900d78af42c49af2b64f31b9e0613a7f9375ab1427340b428c4606585f3","sha512":"5d77cea202e48e6fedc7b2a9eb21b69ed9fd6d7fd057bce6851f7d992766e6de0bc524d161028de909db5818001c9d0528a4d2883e7caee6e597584006b56ce1","ssdeep":"","tlshash":"839004407c3d4074405103c75d44c4000f77d40cd7341d0dd505330111f10530071511","first_seen":"2026-03-28T03:50:33.013787Z","last_seen":"2026-03-28T03:50:33.013787Z","times_seen":1,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":121,"dns":28,"connect":11,"send":0,"wait":38,"receive":0,"ssl":79},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/global.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/global.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:04 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d838-355ee\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":218606,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with very long lines (480)","md5":"82c2c32d060f1c802e8324b422fb20f0","sha1":"57ef1ea0b6440ac1c31c2b99db20f455ac44a2bc","sha256":"d603baf5a6ed169f3f9ca3a49945a2590ba6b0809dad09360849c28d28fd8263","sha512":"a8beff59b5fafdcf0bb00d3749aab78ae6510f621a9c955aeb280743facf105294ca14832f3914379cc8ab93fc95fabd59a8d663ee1551d26dfdd3b49bde0bb0","ssdeep":"6144:2rZmnKcxe8s8ixHdTiC0KJslbN6uRUVpsBy:2rZmnKcxe8JlbN6uRUVpsBy","tlshash":"b224a4d7eab515447322c0583297eb91b7216003c94ecd7afb9f319cdf892c852a2b8d","first_seen":"2026-03-28T03:50:33.016Z","last_seen":"2026-03-28T03:57:46.5267Z","times_seen":2,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/hoverIntent.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/modules/blocktopmenu/js/hoverIntent.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:52:27 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d88b-134a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":4938,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"afd5cfd89a0d06a3a3483886f073069a","sha1":"465e891c9b31427c33d940b7e87c7250cac311bb","sha256":"740cb53532e536c1c7a90cbb037a9a002d2126b34bed1d6d3722b52d2bfe11b7","sha512":"4d324655501227c5f5a75da1d2fa6643bbd9aef9a43c782314b9cab47b7f81caade670332f4a819eff205fae909852d5f0f7920e27a3916178e0707cfde9ad03","ssdeep":"96:qCXMYp3c8AXfqab3v6X1B5DfEu798gDmXw8:58YpURb3SX1B5DfEeKfXw8","tlshash":"f4a1f04d325a15629b13a325d3af747abb25468baa05908437bf774c2f984384323fde","first_seen":"2023-03-07T01:42:08Z","last_seen":"2026-07-01T11:14:09.784058Z","times_seen":1512,"resource_available":true,"data":null}},"time_used":855,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":855,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/modules/homeslider/homeslider.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/modules/homeslider/homeslider.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:48 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d864-ea0\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":3744,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fa1d8d02760e8a3ead0ae4b6638cb90c","sha1":"e90543e4fe6bbe54ea26aabc3f3d1d730b918e58","sha256":"dadbc5eb0524fd3877a0f554b1a5cbdd9bb0edd09e624870a3d0fcacde52c26b","sha512":"68a2cd8be9aaf6e3d7056c4f06fd342ec859a9a6b7bddc7d4293fe6cd16bf4df0a609526ba5b4a9a8faee271bfb2705401f361ebcb4da3f56a23f144c18be783","ssdeep":"","tlshash":"2b7108425be31c0d6809956c7a5d9aecdea44527470bcea8faecba1ccf4c1e251d35cc","first_seen":"2023-05-16T12:29:33Z","last_seen":"2026-06-30T14:13:55.602155Z","times_seen":60,"resource_available":false,"data":null}},"time_used":791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans:300,600\u0026subset=latin,latin-ext","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:40 GMT","end":"Mon, 01 Jun 2026 08:37:39 GMT"},"fingerprint":{"sha1":"5F:99:6E:26:2A:3A:DA:FF:7F:0D:EE:C5:8B:2A:01:AE:28:26:AD:C4","sha256":"2B:88:E7:79:70:E5:E9:DE:0E:A9:0A:B8:F1:F5:C6:D6:10:77:F0:C9:0F:E6:2A:13:A3:D6:08:F9:89:A3:60:E8"}}},"request":{"raw":"GET /css?family=Open+Sans:300,600\u0026subset=latin,latin-ext HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 28 Mar 2026 03:49:53 GMT\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11588,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"ab5aa3a2bfd1341c9a57779a700afe92","sha1":"0a648a629db9647c9ce62c409aeeaf9ebfae09ab","sha256":"3dcad35e996c1b5d42e747215f03508b9fb7e1917149c273dd1785ecee53a7d7","sha512":"e34d8ff28274272fe01f1a965b6862911a40055e748a0ae8a846145d7dc560e6b549891e5a835817e7b18b744cfccba2fc1f91ff688b76e9bf04ce1b3fd578a3","ssdeep":"192:NCddw24WrqKnbqGIwV4Mrz7bCuuH2PlrqxnbqGIwV478zMY:0AYqY47hhqY4S","tlshash":"31322ba00017285063431de663de7e34ee0fa2617044d07a6bfd8b9beedad6963b435d","first_seen":"2025-09-19T19:05:46.413973Z","last_seen":"2026-07-01T00:17:49.323797Z","times_seen":437,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":73,"dns":0,"connect":22,"send":0,"wait":33,"receive":0,"ssl":103},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/jquery.easing.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/jquery.easing.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:09 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d83d-15bc\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":5564,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (3601)","md5":"9cda9e740bbf260a190f4041132b5105","sha1":"603599b494c5f0c9ed5d11ccea03ca6517da46dc","sha256":"ecfc183e33d25d24aa7c06218e0a413488fff8774e4b4b87543c766db9b0b8ba","sha512":"eb05ae2c63ba13a30c3b4e5d99507fcd70915b2db611e8005135ead278f43d6ac09f92dddc1c50051b3fd01ca2a0708d075d98c9510ab934944b97a543390326","ssdeep":"96:uBm7MaOr8uroJzDV6u3R3zd4j6zp4tSZCHjuwE9nCDTVpWZ:pQaOr8ur83V33R3hq6+uwLvo","tlshash":"71b1108a71f17719539133f011ba205b729dace5260e5804e8b9a9897c7b27c87bbc6c","first_seen":"2023-03-07T01:03:49Z","last_seen":"2026-07-01T08:08:55.291178Z","times_seen":1683,"resource_available":true,"data":null}},"time_used":852,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-13a4-e08e-0bab-29a23e6afaf9\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":168155,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (62229), with no line terminators","md5":"02e37158e72323fec39ddec7628cb1db","sha1":"3018884ba3848a1ea0c330ead994835a47bdffe0","sha256":"a02e6a1659aafe99c089888625ed0608de467cf950e1f7bed0a9a00bd3035dc3","sha512":"553aa5bb99777a87147f237faeb1819463336dc65957b10a1e96400dcaf6db4532d01c281bb63fb56c6f7422aa6cf9eeeec1bf4b9d708fe98b11031537f84f70","ssdeep":"768:hG9MOdFGEQbkAAjaJDmoPbli8gWutamJwtzY4qVQRqQt76HpHXvpqRGKgixdd9x6:hs8mAsEfJM5QV19PziMda3","tlshash":"de04ee9b5e0cb972c6c692e3fc931d261af7c005039d69b58a746f1b03d2bd8875cb92","first_seen":"2026-03-28T03:50:33.027017Z","last_seen":"2026-03-28T03:50:33.027017Z","times_seen":1,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-900.19ea557d.woff2","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.282Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/montserrat-v15-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-900.19ea557d.woff2 HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.beautyprosoftware.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG0iCQYJDeaQpQSbFqbJTYvlq_PQ_ZzQ90v2D9_Dvib6B1C_dVty-jgx-kIWI3HZdNkD8ffT9dU\r\nx-goog-generation: 1770808120742818\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 52128\r\nx-goog-hash: crc32c=6BiWhg==, md5=sg0edFaD03uV/Jt+gJpCBQ==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\ncontent-length: 52128\r\nserver: UploadServer\r\nvia: 1.1 google\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:40 GMT\r\netag: \"b20d1e745683d37b95fc9b7e809a4205\"\r\ncontent-type: application/octet-stream\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":52128,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 52128, version 1.0","md5":"b20d1e745683d37b95fc9b7e809a4205","sha1":"75d8b2825c7c80e6ff13207723f72dc57fdee4cf","sha256":"15a9535a674704ea9a2d002d7a77c64ecd50af3f70ca76caa2ebda589ee32ed3","sha512":"f3806ea64f8b8f24508b272eb3c5a93b68ed41414986e0c2e33e89a65fac38c13e1ed5a0f3832753600a0f0a6eaa81339b4e2c3c4829825d4ced41ccef3f2154","ssdeep":"1536:B+s1dCoA6zX2ImC7I5oCBJZ3fdvz681IW1lm/+c:BJB5X2ImC7I5rZPdvz681IW/G+c","tlshash":"0733f217058939497e6157e642b5d04ef3e12ebc18d6322f531f88d3bc371adea8a29c","first_seen":"2023-05-03T18:28:31Z","last_seen":"2026-05-19T05:16:49.235743Z","times_seen":109,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":79,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/bxslider/jquery.bxslider.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/plugins/bxslider/jquery.bxslider.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 10 Jul 2025 08:21:07 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"686f77f3-d23\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3363,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"4cddbc28514be3683e4a9a3fda3d5eb6","sha1":"0cbdce57302e90e3a52d77fade7801030bf59267","sha256":"8f345def25e5d172060d7a1df95831fd9dd1d660b06208f2190bf9d01ebd2e11","sha512":"f057407429d2c536c02e2663c5d732ee67ddbb5b98959bdf4301082c2865fb2b53f26002e3ffc1bd01f88f0d13ede13a6e5a1eea28f8280c7f002bcb505c1a5d","ssdeep":"","tlshash":"98618bd51bb66655651ae07c3d06c39d2a388013af0fccfcd6e5b92ccf8d9c20223698","first_seen":"2023-04-07T01:17:08Z","last_seen":"2026-07-01T19:40:33.772164Z","times_seen":681,"resource_available":false,"data":null}},"time_used":791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/category.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/category.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:03 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d837-ab1\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":2737,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"b25c2317de0f3a1e40cab1cc4d6d858e","sha1":"24daaf21a8078387fdb3fe5251393d85937bf23e","sha256":"8df3f2bffa2d9584fa7698fabc5e4c1cad34a95475effedf5f9ab2c14cfdec62","sha512":"3f75f90985f87312a7d62b366c899da19afe3b4f225e7c3b25c9c265476925dadd3ab4526273e067407f239f04f0135ea6893625a6047465bc880655cb8d1af7","ssdeep":"","tlshash":"2551a137c6be5d987b22a064a2a52be87314933398498df43f4cb948cf8d3c490d539d","first_seen":"2026-01-29T15:43:42.775863Z","last_seen":"2026-05-19T05:34:31.579152Z","times_seen":31,"resource_available":false,"data":null}},"time_used":828,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":828,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-138d-1e53-3c13-7d727cf32aa8\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":921,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ab7be523f4ef0eb175811523f2176f2c","sha1":"57672ea526b683114959110ce38c7034201a727d","sha256":"f3b1c8c627b6a980e32f400fffe7cd5b4305ab1184db6544e081d321a3f2772b","sha512":"3e59bd154286565a3b92f6c25c081cf838edb7ebd0f6104ffbcb9a63003ae82ada88ece3f0d4bf465d3192e49a3b8dfcfd7bf82397bfa4e4a2e8d528d4b75ce5","ssdeep":"","tlshash":"61110018e4459efd0965c374bdaa7d0b0bfa421270dd3964d9e8990a07cadce4143953","first_seen":"2026-03-28T03:50:33.040026Z","last_seen":"2026-03-28T03:57:46.496033Z","times_seen":2,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/services?public=true\u0026fields=\u0026client_gender=female\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13fd-1783-2e60-7409729c8ba1\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17665,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"69c684e0e49a0a405ebabb737dcac0be","sha1":"72600981fafd78f9b1ef3b1529c091932f6034f8","sha256":"cd05bcb4a711150f8605dc22ecbce94271247153cbd094436269735e55efdb09","sha512":"81a36cc6f52bd13eebc940265849c3e4d0519a0d2918faee33b0b5879beb0a7fd5ee362dce72c99d63c9079d838b880db7bb4e108a0d2a1101bdf59e12301385","ssdeep":"192:LOjRGCus4N9l3Q88L8L+lC6FsYrNctThZwZPb3VujqNQtCMVW/fNn0ZYd25IVwx1:AJDPQh+bACXn0ZYdO7ZfTi3tMHD","tlshash":"2f8253556b28ff7aca4038f70dc745343b47b554a0a129e8dbb0e86052969f888fd7f2","first_seen":"2026-03-28T03:50:33.043063Z","last_seen":"2026-03-28T03:57:46.502641Z","times_seen":2,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-13ff-78b6-0bab-29a25f08c7a2\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33122,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4994dcad7b2e95f320d01d5ab6a290fb","sha1":"4e6a57f837fa9d3835988b46f9ee83d28f64867a","sha256":"41da0b8c6d13cb98c53445ba405307bcd3a37254efc4e16bccde6825ccd09ff9","sha512":"9b2823d134b45d39bae492777724f2703c44eaca62d73ab3c4efccf8fcb0040e0734f0575d8470a794e051226eb6b21ec1c959205b929d06857237c2d959d95c","ssdeep":"192:/xFzxF7xFoxFtxFExFpxFAxFQxF1xFMxFxxFCxFgxFsxFZxFqxFuxF0xF2xFoxFW:ait","tlshash":"1ce294e7ca1a6370abb3056267e86592ed3870575e466cf12f9e3341caf083365087e7","first_seen":"2026-03-28T03:50:33.045602Z","last_seen":"2026-03-28T03:57:46.482686Z","times_seen":2,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/c/34.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.547Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/c/34.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 8238\r\nlast-modified: Mon, 18 May 2020 21:11:08 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2f9ec-202e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8238,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced","md5":"0841137538a6f18a5a78dd6660956a4e","sha1":"6389fbcbb660a6e2991b786ed33c0be733823281","sha256":"96d3e7e389e3f014070445c4b6d14ee1f85eba739499cea81921fece5b133be0","sha512":"f5801e4096a16f102f173238bb9d31de0b3daa868ddddefbefd66f4b8f2c19699954b08a0fcad624d16f1520e74a92b2b60afe685b5a71edc44df0df8f719048","ssdeep":"192:V7SK1/wxcCxSHarPT3hsqZjIBRjzPt7zcvnCBUWXbvDYE8LZao:VwlE6iqZj6l7zReWXP0R","tlshash":"b502aff98009d0cff62f58e7f96266666134492c0cc5e09fa93dd2621c6b540ba27a77","first_seen":"2026-03-28T03:50:33.05014Z","last_seen":"2026-03-28T03:57:46.493468Z","times_seen":2,"resource_available":false,"data":null}},"time_used":877,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":849,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/modules/blocktopmenu/css/blocktopmenu.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.508Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/modules/blocktopmenu/css/blocktopmenu.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\ncontent-length: 98\r\nx-accel-version: 0.01\r\nlast-modified: Mon, 09 Feb 2026 12:52:25 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"6173983b92938742da47debc360a0d51","sha1":"6e8e32d30d2734c7f11ada9a1a5809ba086c345d","sha256":"c26bd4f1ead2b5b23829840e58476144f6205cb177fef08c44196a7ce863e50b","sha512":"9f6450b42c62a6e1b24c468dc00223e86c76d3ccfccf0371c439951b7ddafde3f06b23806e18f1de894c0ae6904b001f0e0e4d0f40e0613abd0fc799b2e8f9ad","ssdeep":"","tlshash":"0fb012929c7d6c86403111009c2f50d0b124038395c81488f04440744515450f092d05","first_seen":"2026-03-28T03:50:33.052932Z","last_seen":"2026-03-28T03:57:46.542276Z","times_seen":2,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/7/0/3/703.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/7/0/3/703.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 116494\r\nlast-modified: Mon, 18 May 2020 21:15:49 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2fb05-1c70e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":116494,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"7026da7c62a9996dd4603194fc9f225e","sha1":"2f5ab09104b7a3cf084e7904bec82936a4d4c413","sha256":"1c61f5a8c88e8a6e003d5a24b37cbef381f8c52e31f02f05837ff0af7b315d71","sha512":"01790ae891657f2f198f48ffdfd688e628b3ebcf28a28f54d3236a03c1740ac0b023e284a0753b5a4532260d22f2763f38323626758b94eec153e6f59714be0d","ssdeep":"3072:omkb4YedzIhjZjHA0GR1+/Xv+QYZBQgP6LnTaTuyfstUXd6L:FoedUzHA0Gav+Q8RonRyEtUNU","tlshash":"7cb3128277e036e9f329a0b089e1c90c1e982dbfcb5eb89636f07595d6cc9e74817425","first_seen":"2026-03-28T03:50:33.055978Z","last_seen":"2026-03-28T03:57:46.544337Z","times_seen":2,"resource_available":false,"data":null}},"time_used":888,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":837,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/auth/client_modules/512817","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/auth/client_modules/512817 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://slon-spa.com/\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-12f2-104a-0bab-29a237643d58\r\ncache-control: no-store\r\npragma: no-cache\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e8ef182e933100fb4bec6b7fca88a419","sha1":"fd2d82a9e3b900313deb2f29668fc34ae0349670","sha256":"64a67adf14d80f7adb4818b7d39b471246896235dc6ccaed9538fb4a88f6c51c","sha512":"115809229063633897526930bcb643be0a8e7d6b93a13475dfd33cb46b6fdeb4b48aa84c8d72637cb7e10b34fd965af177e08a9e009c27bd185dd555390d7912","ssdeep":"","tlshash":"45a0112a228e0ca8080aaf020a0200a3233800020a80808c08832ae22a0a0aaa2cba03","first_seen":"2026-03-28T03:50:33.059674Z","last_seen":"2026-03-28T03:57:46.495051Z","times_seen":2,"resource_available":false,"data":null}},"time_used":558,"timings":{"blocked":172,"dns":36,"connect":42,"send":0,"wait":214,"receive":0,"ssl":91},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/employees?fields=photo%2Cphoto_exists%2Cpositions%2Cfirstname%2Clastname%2Croles%2Cgender%2Cpublic%2Carchive%2Cdefault_appointment_duration%2Cschedules%28location%29 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/positions?fields=name","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/positions?fields=name HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/modules/blockcontact/blockcontact.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/modules/blockcontact/blockcontact.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:43 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d85f-5e9\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1513,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"81f10f566b1f0cc310c7da8b23edfa22","sha1":"eb604804c1f7e083a11db3c767123297587a3830","sha256":"78fe0f0e4c4a0a35f59e4285c53c94719ac693a6e9461d0cd7bafbde41fd098d","sha512":"0ae3be191a55baa46356f4f0f14b943656252dadd50b46efce51cf0bcf1580c691137254cfbeaf7e12c3eee8fc6851a987b1c43461820c381b616c0817b912d9","ssdeep":"","tlshash":"9f31cc1b0ff114487516e445ab2f26417380a943d28eced9fd88e34cdf8a1e48ce1a8d","first_seen":"2023-05-10T12:59:04Z","last_seen":"2026-06-30T14:13:55.635463Z","times_seen":99,"resource_available":false,"data":null}},"time_used":816,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":816,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/modules/blockcart/blockcart.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.513Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/modules/blockcart/blockcart.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:42 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d85e-380f\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":14351,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"ca4e07f8c3c9803a66c02085bce70360","sha1":"6bd32bdf18fa5f67bfb2dc6220999b3fdbdab1d4","sha256":"c053ae64dc7cf179894de294ce9cd79810dc554aab96fd2c6c1e77d202c66eb8","sha512":"3efd77a9fffa086c44daaee302c4efd7173ab5773376551da0d42be00271ffebf7fb57a65630f9eec9fa7993889da5242a2005553c3923a98c08ad2d97761c5d","ssdeep":"384:k9lF/OLZFsFyQFtgptOnEFMsvgAV8P4Mc3QlT6M:SF/kZFsF5FtgptOnEFMsvgAV8P4Mc3QH","tlshash":"0a52108acb774d983451e699ae67b6c13210b913534c8ce8fa8cb14cdf8e6d442f169f","first_seen":"2023-05-16T12:29:33Z","last_seen":"2026-06-30T14:13:55.606067Z","times_seen":64,"resource_available":false,"data":null}},"time_used":792,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":792,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/autoload/responsive-tables.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/autoload/responsive-tables.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:12 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d840-599\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1433,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3639635d7f7f3c1038c75ab53abce169","sha1":"c6b66b986f3fe248d9a8d7d5f145511653a40582","sha256":"8103fb363ac7513e817bf9ed443ffac59587621c8da3c00b165f714808098c88","sha512":"abcb6f0e630a2cb8f8234657c3604dcc194d70e72e39f43a1e364867b07e919891d9bed2e45c07a654f7fff2233acfbb36406a583987a5cd4dc42dcc0508cc87","ssdeep":"","tlshash":"982120e25f1031442563e3b67c2be8afef12015abb9958b97d46305cc22cf18411fee6","first_seen":"2023-04-07T11:54:31Z","last_seen":"2026-06-30T14:13:55.615988Z","times_seen":545,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/modules/smartblog/css/smartblogstyle.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /modules/smartblog/css/smartblogstyle.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 09 Jul 2024 07:23:28 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"668ce570-3ec5\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":16069,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"8807232d69822d551403eb079c60002e","sha1":"da988697abbdb3838358546b449a233acbe64eb5","sha256":"1a2f8c5ba556302fbcd10fea0504ae319941df45225b50320813280e4643b4e8","sha512":"e387404e1680def8c0a32569fb00a6eede953a133e4021570f5ad75e9573b1c292484b4c0719b39dce5a94423dc375061319f36e618e2a5113fd93c4289c2287","ssdeep":"384:dAP1FgD1Fph3vpnqUfXnHwewmMDp+6ASFoFX/FDF3H:dA9FgD1Fph3vpnqUfXnHwys06LFoFX/z","tlshash":"0e72009297f71d49b85a90acafbe6742330d4003564decbcbf94a15ccf89ae9817274c","first_seen":"2025-04-12T04:42:33.088415Z","last_seen":"2026-04-23T16:17:05.209201Z","times_seen":4,"resource_available":false,"data":null}},"time_used":827,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":827,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:40 GMT","end":"Mon, 01 Jun 2026 08:37:39 GMT"},"fingerprint":{"sha1":"5F:99:6E:26:2A:3A:DA:FF:7F:0D:EE:C5:8B:2A:01:AE:28:26:AD:C4","sha256":"2B:88:E7:79:70:E5:E9:DE:0E:A9:0A:B8:F1:F5:C6:D6:10:77:F0:C9:0F:E6:2A:13:A3:D6:08:F9:89:A3:60:E8"}}},"request":{"raw":"GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 23\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://slon-spa.com\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=9\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8a80554c91d9fca8acb82f023de02f11","sha1":"5f36b2ea290645ee34d943220a14b54ee5ea5be5","sha256":"ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356","sha512":"ca4b6defb8adcc010050bc8b1bb8f8092c4928b8a0fba32146abcfb256e4d91672f88ca2cdf6210e754e5b8ac5e23fb023806ccd749ac8b701f79a691f03c87a","ssdeep":"","tlshash":"c7200000000000000000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-07-02T09:07:38.562086Z","times_seen":417226,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":7,"send":0,"wait":17,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/employees/free_time?from=2026-03-28T00%3A00\u0026to=2026-04-28T00%3A00\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026gaps_mode=none\u0026gaps_positions=day_start HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/c/33.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.549Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/c/33.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 3461\r\nlast-modified: Mon, 18 May 2020 21:11:08 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2f9ec-d85\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":3461,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced","md5":"5e9e541eebb4b3accd3eb740b6fec5f0","sha1":"ef60c7ac3fbf7842f2ff5a600ccea242106e4a20","sha256":"f9e66e425968e584af9e323551e35954d8a8ebe8ec8b0871a6374ed64387aeed","sha512":"5e5b9ea26fa8b9fcc5be6f3ed212a9fd3d97619d6bcc1ca74a50c5990b73ddd7aeecb1cbe516b0e9424a516639e8d52bccd9abfec3f86611d2515784809f9215","ssdeep":"","tlshash":"a6615dc25f70101654270897d89e4f4244fac76f1d51b3768dd0416de9b3bf8bc0e96a","first_seen":"2026-03-28T03:50:33.080591Z","last_seen":"2026-03-28T03:57:46.533388Z","times_seen":2,"resource_available":false,"data":null}},"time_used":875,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":846,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/c/35.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.550Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/c/35.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 3841\r\nlast-modified: Mon, 18 May 2020 21:11:09 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2f9ed-f01\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":3841,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced","md5":"99054a17f0e5bb354b1cf6d63a7d4c36","sha1":"d98228a7c3c5893721dc6dcbe21ed27655173a04","sha256":"4f36f90ebcf72e112a3ecc0562be5b88fbba06f4ecb7793645e7dddc7d18f9d0","sha512":"1005bc5dc873e8d3224beea46a7ff84f92c267ad303f6f5618f84f7ea3cc097654abd4a7840435c87d6dbed07b0fa78ea0c72c8f1f67b655498cef5bffde5b27","ssdeep":"","tlshash":"958109ee72168b27806c7751b8a66f69ce034ba593d84db0b79b1c871cf43abc4e0513","first_seen":"2026-03-28T03:50:33.084048Z","last_seen":"2026-03-28T03:57:46.508276Z","times_seen":2,"resource_available":false,"data":null}},"time_used":858,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":845,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/fonts/fontawesome-webfont.woff2?v=4.3.0","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/themes/default-bootstrap/css/font-awesome/font-awesome.css\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; _ga_YRSWQRHPN3=GS2.1.s1774669794$o1$g0$t1774669794$j60$l0$h0; _ga=GA1.1.270901070.1774669794\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 56780\r\nlast-modified: Mon, 09 Feb 2026 12:51:13 GMT\r\netag: \"6989d841-ddcc\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":56780,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 56780, version 4.197","md5":"97493d3f11c0a3bd5cbd959f5d19b699","sha1":"1075231650f579955905bb2f6527148a8e2b4b16","sha256":"aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c","sha512":"bfe4679bbe5d1db21f6ecb2d6c2810dd02d3b698efdd50004cc355c1d0bc51de8dd102707c796b26e8250c600b4b64db88b67d3f28157777b68e36ad7930bfc0","ssdeep":"1536:zxwdj+K8kLkunGAASpdw6hsxD/G+zSIoiCQN+n:zxmVY6dwJThoiCQE","tlshash":"eb430269f84b577202275a0509ee0d34ef804962eef247fbb1fb90c5d6309ac1ea1b56","first_seen":"2023-04-05T09:41:17Z","last_seen":"2026-07-02T08:57:29.307978Z","times_seen":28919,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Montserrat:600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:40 GMT","end":"Mon, 01 Jun 2026 08:37:39 GMT"},"fingerprint":{"sha1":"5F:99:6E:26:2A:3A:DA:FF:7F:0D:EE:C5:8B:2A:01:AE:28:26:AD:C4","sha256":"2B:88:E7:79:70:E5:E9:DE:0E:A9:0A:B8:F1:F5:C6:D6:10:77:F0:C9:0F:E6:2A:13:A3:D6:08:F9:89:A3:60:E8"}}},"request":{"raw":"GET /css?family=Montserrat:600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 28 Mar 2026 03:49:54 GMT\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1976,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"12ce6622c0385bd1e9b1a0118e1e1fbd","sha1":"02b938c55f67cd7d827095f25707fb4831301864","sha256":"53761c912409aa46068a6ed266f59ad7f8657e2b449702ea71072c8949db88bf","sha512":"5893acfa4ebcb970d700d711fe97a68151025a0c34b986d395e7ad16ae9a7674c4dfff07b6cc73a4e7953ce5531fd4ee35e48137d8af39e7b975eeb1415cc612","ssdeep":"","tlshash":"b8418981111ae500eb470cc623ce7e26dd4ea56274a0c079bffd6c98ade9c230b75b6d","first_seen":"2025-09-05T19:24:06.228848Z","last_seen":"2026-07-01T05:50:00.893806Z","times_seen":1225,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/helpers/names/order","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/helpers/names/order HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/services?fields=category%2Cname%2Cduration%2Cpublic%2Carchive%2Cgender%2CdescriptionPlainText%2Clocation_prices%2Cprice_currency HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services/categories?fields=name","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/services/categories?fields=name HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-13a7-53a1-3502-dcc731794c79\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1625,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"31c698ae999834ce93fdd641b4bb86c9","sha1":"70531a619ce78405de3359d4362a0f68d40e2b16","sha256":"331c059155406b78da847b99fe60b1b19ea2d5d87532f8a4802053284959174a","sha512":"0bd11e7a97f3d40d93a37e3506c0dcb0f52080a1e23a2e8b03e72321f68d0a7726c6e3805394a954d0be08f211db19bd1451e4d9749e15c6a57f92ca078a2d46","ssdeep":"","tlshash":"2131e0dd6728bf7ec54074b74d87176a3b4ba1b260991ed98770ac2802e27a0887c7b1","first_seen":"2026-03-28T03:50:33.092019Z","last_seen":"2026-03-28T03:57:46.52609Z","times_seen":2,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/fancybox/jquery.fancybox.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.506Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/plugins/fancybox/jquery.fancybox.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 10 Jul 2025 08:21:08 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"686f77f4-131f\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4895,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"6c55951ce1e3115711f63f99b7501f3a","sha1":"5f163444617b6cf267342f06ac166a237bb62df9","sha256":"968a8e56e4adaf8c135199ebd7f6cc065424ca45974d4dfbeb5607e69fe72fcd","sha512":"4bad47c444bbbfab71fe6f2256531965fab3fa41c74b3096cf732c78a0653f448dbb59b153786e9dc14106c355dde7e5573a907c9f06bdf1ed33b2fead49e70f","ssdeep":"96:GKXaoFzzzQFRlRdrcNMo0Oy8ri4cSX2W4Leyg6o:GKIFX7rQitLW","tlshash":"f6a10e6b6a503a04643e9e54df2fda46d63f2482a60b4dfb615cf92883d97e050e3dcc","first_seen":"2023-04-05T07:58:25Z","last_seen":"2026-07-02T06:23:48.211254Z","times_seen":9410,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/modules/editorial/css/editorial.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /modules/editorial/css/editorial.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\ncontent-length: 282\r\nx-accel-version: 0.01\r\nlast-modified: Tue, 09 Jul 2024 07:22:45 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":573,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9558242c260fb2cf467b872bffcf7e17","sha1":"23fafe01f2c7a8100dba3a3441987a2bec0ce345","sha256":"f3b5be98de4ea610345db198c4f8e21405583ef6ac8a06051d71549fcd15e97e","sha512":"446c8b3780839caf5a156c62f2e64c51b3ea9c72437d4edb9697b31283b0cb9c77eb62e1f69d9b45d290fce9533fb371646f62418e517d61cd0bd50ff5c32cb7","ssdeep":"","tlshash":"4af028232577044a700adca5ef636246b20c80923e098eb9b0b4d929cdcf96631b325a","first_seen":"2023-05-16T12:29:33Z","last_seen":"2026-06-21T09:52:52.030382Z","times_seen":25,"resource_available":false,"data":null}},"time_used":837,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":837,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/font-awesome/font-awesome.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/font-awesome/font-awesome.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:12 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d840-6e6e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":28270,"size_decoded":0,"mime_type":"text/css","magic":"troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (372)","md5":"4fc4781c68f4079468cf851966720e61","sha1":"52df1156a61449afbe65011db2e5c8cd3ae768d1","sha256":"8a2fe9bc8e7d8172cc522b1cfa3ab12c21fdf20e84f6ba525f8970ff9ee0cc7f","sha512":"c00fb3abdfecfde6b7736a9e62d415b2f30e3ca8e62b83e7fd5a7ab69e297986d01b1ff460adbc51396759e649db9dd9bc11549ab129ffe4a49a51cb23e30278","ssdeep":"384:k6XMEg2M65BUa+atVw36sDKT5f2OeM53GJB3wuj7jy1:VMEgps+a+atVw36IKT5fPyJmuHjy1","tlshash":"c3c220eee4be14d44329c4862347e3a0b339b7399d4e4d45d2a23d8cf5c265da286bcd","first_seen":"2025-11-20T08:51:35.332155Z","last_seen":"2026-03-28T03:57:46.510574Z","times_seen":3,"resource_available":false,"data":null}},"time_used":861,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/15-jquery.total-storage.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/autoload/15-jquery.total-storage.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:18 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d846-a04\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2564,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (437)","md5":"25bb6f0d5dc5f3094b9cd007e246cf1d","sha1":"668596c0e96650cba50f5538384bebb48abde0ca","sha256":"67dadeecd506147b7adba2b464bb05723e729997af9df1aa0ff7696e535b4d0b","sha512":"cdbfdf0ff8ecdd84abbcfd1421df6c55ebcc10bd846f30f3013316fb0b0e0ac6120ad63e774dff1ad89e598f148ba4ab848d69ff43c34aa1d0ce515e97a3c3e9","ssdeep":"","tlshash":"9451112f32d2722582c4167d7c6f12abe73669f2609c5194d09190e07e64c15c673f9f","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-01T03:58:22.935696Z","times_seen":1103,"resource_available":true,"data":null}},"time_used":861,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/c/37.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/c/37.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 14338\r\nlast-modified: Mon, 18 May 2020 21:11:10 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2f9ee-3802\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":14338,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced","md5":"c8dbe429ba9f6628af482db476fc4de6","sha1":"5a4c062660c796e0aa3b145cd9afdd8eb1887bbc","sha256":"cabd8a5c8216f0fc033cd1751a32fd1b97111c2bbe1e08f42e294bcbf625332b","sha512":"92c5ba257729d47e4a0a716fd67402b203aeb51a3fa043b214887762197f85a1d95ff4b1e08684f531ceed6926feca1001bf9f1487278df441ca1f2b5451072c","ssdeep":"192:VDSZ6KUmBwII+nRvcsQ8OSaQfOtJS1EAgDcwlDdot9ecXElEsDdKpcJKcjri:Ra6QNnhVh3eSeTDJDobtXaYpcUcjri","tlshash":"dd52c0552e33093d5b722900f7f529496e1f77371299a829370b892f5cf1dda32a13c2","first_seen":"2026-03-28T03:50:33.103042Z","last_seen":"2026-03-28T03:57:46.504539Z","times_seen":2,"resource_available":false,"data":null}},"time_used":879,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":850,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/5/8/3/583.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/5/8/3/583.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 148561\r\nlast-modified: Mon, 18 May 2020 21:13:53 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2fa91-24451\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":148561,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"93d6ce81d3bb1b8d0e06c521e1eb05e1","sha1":"7c564527120abaab3b5fde54da9b4b063aea0923","sha256":"5fea5470ffbcbd7217a2c494f01934227a7cb3657efa0e8a8b4fcb4bfb3a5b33","sha512":"c9eea122cde83ef7256d7d9179e3595341a073384e576b0ca32692bf4484929e53e27f71fbca1075284dd77728ff8d260bd430d9964cecde2bc94019a7be07e0","ssdeep":"3072:nsxWYC97h3S3uBFpwV6bWWW6tl3mvklrG9RQyum:sa9VC3mpw76tl3t5oJ","tlshash":"03e31279428ca0ffce1156b4a15ec6a5afd8f94f112c4fb690e4bb8a98350fdcb46131","first_seen":"2026-03-28T03:50:33.105883Z","last_seen":"2026-03-28T03:57:46.527605Z","times_seen":2,"resource_available":false,"data":null}},"time_used":902,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":839,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/settings?fields=client_module(button_text,button_color,element_id,button_position,googleAnalyticsCode)","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:55.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/settings?fields=client_module(button_text,button_color,element_id,button_position,googleAnalyticsCode) HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://slon-spa.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-1332-7015-2e60-740933072739\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":116,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"905ea81d3c20afb7268d713075ca57a4","sha1":"29f03981f86a2811fbdcf00193e47a6efacac951","sha256":"82e7bc41ba53a81a4ea18ac61d7da5a64b845357bbc4afcc7b22be4b0db8907b","sha512":"75d963134c96d73198a15a692e1d28555a2f2255a8e723549106639e7cd9a12586613ccb31269415508ad50adcec0f6ad136275372f6a95b9a2b8d8dd080c886","ssdeep":"","tlshash":"aab092c1e63c0256074fd302608e441a3df8420064c87628d484ddaa02cb064e3aa486","first_seen":"2026-03-28T03:50:33.109077Z","last_seen":"2026-03-28T03:57:46.492227Z","times_seen":2,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w9aXpsog.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:55.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:37:39 GMT","end":"Mon, 01 Jun 2026 08:37:38 GMT"},"fingerprint":{"sha1":"31:A8:B5:C1:CD:F5:51:78:A9:8C:E3:B4:73:92:CF:C0:6D:69:48:19","sha256":"81:9A:84:FB:F5:4C:AB:82:DF:C1:27:CC:60:46:A6:23:A8:49:56:99:47:CF:C4:05:3F:0D:87:31:DD:2C:23:A2"}}},"request":{"raw":"GET /s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w9aXpsog.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 11120\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 26 Mar 2026 13:41:57 GMT\r\nexpires: Fri, 26 Mar 2027 13:41:57 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:10:07 GMT\r\ncontent-type: font/woff2\r\nage: 137278\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11120,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11120, version 1.0","md5":"1531497cf6c692ba06413e217a6d99c5","sha1":"48877c99dc5d8905275e5cb8e247610db2ba73ef","sha256":"12fe2b174f70b732553c46dae097be6a70b3f4a3d3cf305dbbbf236ac3b182b7","sha512":"b2dde9d5742b221cd57b5e3f4342dbafefccbb059be826baea408ea677970ad8d03e743e019db869cc41e1e27f29f78aa6f871596fc9579b9ea83ab358442fae","ssdeep":"192:cXj9LUDO+y8bTseOTgc1G1KGdYwTzw24r481r3tMrgc5EtNvczYzrQSDuSxuGyj:c2DFyuOa0V84c8FtMrg9QOuS8Fj","tlshash":"1732bfdea2190945eebef7b4253892c8b30bfba78d5c4087a59024511579c1e8c31ee5","first_seen":"2025-09-06T15:11:39.570803Z","last_seen":"2026-06-09T05:44:44.960354Z","times_seen":505,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":53,"dns":1,"connect":7,"send":0,"wait":10,"receive":10,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YRSWQRHPN3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"58:CB:88:A1:C4:55:4E:E5:46:DC:A0:9C:B3:54:25:79:20:1E:E8:09","sha256":"0B:B5:96:A2:57:57:EC:BA:63:14:8A:AF:4C:C2:32:63:18:8B:75:80:8F:78:1D:1F:5B:00:B7:B3:7E:C9:B7:18"}}},"request":{"raw":"GET /gtag/js?id=G-YRSWQRHPN3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\nexpires: Sat, 28 Mar 2026 03:49:53 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 154426\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":466203,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"d455ae70ac5bd3ea1cde9efb7658d8fd","sha1":"53fc682e922b6a8fa61a5a387d007e8dc7b39236","sha256":"58325198eaa229d19135c6339bc79b24bf886cebe4063d7f53e183a768efc46b","sha512":"f87199f5e35b87fc96120aa48bab4ac74f84af59355c59fce400a527c0013cb721202ec09b035e4e232de2d1d8db1932c70eda98a1ca94d364c0197ed8c2cfe3","ssdeep":"6144:RgORjaFCE9VJlQGXHIzs8WVP1W+rwkQdqQtYTc0HdZgi0:cCEfJlbIY8CmOpc","tlshash":"d3a40aceb3d674625296e478903f01cba57b29e2b44cc8a5f189cce02e7465a4277f7c","first_seen":"2026-03-28T03:50:33.113497Z","last_seen":"2026-03-28T03:57:46.500462Z","times_seen":2,"resource_available":true,"data":null}},"time_used":503,"timings":{"blocked":199,"dns":1,"connect":21,"send":0,"wait":41,"receive":32,"ssl":207},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/modules/blocktopmenu/css/superfish-modified.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/modules/blocktopmenu/css/superfish-modified.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:52:25 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:53 GMT\r\netag: W/\"6989d889-168a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":5770,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"121969fcbc19d71e434d14915c339a16","sha1":"0235862d439a7acad58e9f4fc8cd0d84cc424d89","sha256":"2546d1a116deb72161645f689d82efc530c1eff4561e796a8702a9ade64bd95d","sha512":"38a8b7e02ded52ee9346a0577e5b03d7f4c0c8435e19f09355f8af6efeb469073ec7a3403f56a19f9300fb73fe9b60cea8e43e688b74073c4d2d75dffd1ef8f8","ssdeep":"96:rabuxYf1zzQ5TR+g2ZhfvDMwpISLuy/zIKfiSONsNa0:rabqYfNzSwZNvIwpISLuczBtONsNv","tlshash":"18c1fea746eb80047f09b089aa6f666923504247e38dddd87d8ca164ef8d7d44cf278c","first_seen":"2026-03-28T03:50:33.115845Z","last_seen":"2026-03-28T03:57:46.500894Z","times_seen":2,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/settings?fields=common%28country%2Ccurrency%2Ctype%2CisOldAppointments%2Clanguage%29%2Cclient_module%28color%2Cenabled%2Cservices_gender_filter%2Cseveral_services%2Ctheme%2Ctime_step%2Croutes%2Ccalendar%2Cnearest_booking_minutes%2Cgaps_mode%2CgoogleAnalyticsCode%2CshowServicesAndGroupsDescriptions%2Cgaps_positions%2Cconfirm_services%2Clanguage%2Ccan_cancel_in_48_hours%2Clogo%2Cname%2Cskip_professional%2CservicesPriceFromFilteredServices%29%2Cinformation%28description%2Cweb_site%2Cinstagram%2Cfacebook%2Cviber%2Ctelegram%29%2Cstatistics%28default_appointment_duration%29%2Cprepayments%28optionalRewardType%2Cactive%29 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/autoload/10-bootstrap.min.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/autoload/10-bootstrap.min.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:51:18 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d846-6bef\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (27510)","md5":"7ba470f70a0141a75a81d57e85c80d33","sha1":"4939afee748a597e5a06eefc4a5489a538279545","sha256":"650c142505681d7842af8b9eb182c38ec5b117c3326c7ae06b93cbb4be4172a2","sha512":"2466876ac6f2735f93271561b20bb80c999c0908e3dfc8e586cc460155b3ae67397958f0a1f6c4469665df06c23c86477cc0eae17f3a7c259671046458e71d87","ssdeep":"768:h2v6X8Yks6Zzy4PzYtwb4XDLD8agMRXfcAfwI0OCtgez:hN8jo77CCK","tlshash":"3ec26406b2313161079bf2f5115b020b723a7a7ee906907c38b9dae63db9c597127f39","first_seen":"2023-03-07T01:33:08Z","last_seen":"2026-07-01T03:58:23.04796Z","times_seen":838,"resource_available":true,"data":null}},"time_used":861,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/helpers/names/order","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/helpers/names/order HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer undefined\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-135f-bc87-0bab-29a201f714af\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"243e78173a35649de04293642692592a","sha1":"c8774682f9c78ce3f2cdac27c7b3833916f5d3b5","sha256":"c1e400a952bfba952a90af88e98f9a8fa0d9fbca81395eccd45395557e723734","sha512":"598e4c5e74afae40f8210599bbf9b7d3ff437425e2a5d7f17a5dd3a7ba6b82ed6731288bd6873a8ed784d67ea0e352001311b50e0ccca9f8fd77abcce3794919","ssdeep":"","tlshash":"3e70003c00000f000fc030003c00000f3f300003c3030cf0000cc30c0030300000c030","first_seen":"2025-06-25T02:14:14.038628Z","last_seen":"2026-03-28T03:57:46.531897Z","times_seen":3,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/grouplessons?from=2026-03-28T03%3A49%3A55.655\u0026to=2027-03-28T03%3A49%3A55.655\u0026fields=date%2Cduration%2Clocation%2CdescriptionPlaintext%2Cgroup_name%2Cgroup_price%2Cprofessional%2Cfilled_completely\u0026public=true HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 2\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13ac-06bb-2e60-74095823a619\r\nstrict-transport-security: max-age=15768000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d751713988987e9331980363e24189ce","sha1":"97d170e1550eee4afc0af065b78cda302a97674c","sha256":"4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945","sha512":"b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af","ssdeep":"","tlshash":"c7100000000000000000000000000000000003000000c0000000000000000000000000","first_seen":"2023-03-08T00:02:47Z","last_seen":"2026-07-02T09:05:40.636596Z","times_seen":300211,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/media/gender-both-emoji.7eb1dfeb.svg","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:57.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/media/gender-both-emoji.7eb1dfeb.svg HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG2EJC7HltdfRRgqmL_bI9oQJ1QZKfg7og7Om09PzcoySoL5GU8VAnst6UWHmuPEOs6r\r\nx-goog-generation: 1770808117900921\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 40118\r\nx-goog-hash: crc32c=3AjU4Q==, md5=FF6jVkaLWWNUizQleFJuyg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ncontent-length: 29709\r\ndate: Sat, 28 Mar 2026 03:49:57 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:37 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":40118,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"145ea356468b5963548b342578526eca","sha1":"0f33c78f2525f955b69d384eda3c83cdc6c52540","sha256":"a8e4e8e4cd47d7a0f74718d6cbf4a26d91a1d1070f57ce188213093eb976bca6","sha512":"c035a16f8961ae478d6cfbb0c68f13cc5badfc5fe0a691ba15d224adbaa5ce8bf56fbbdbacac52ff4c900ee6341313957a3d38c5cc5ca363b5981c9662025f5d","ssdeep":"768:voB9YLpahvOb9/fy3qoCnVudAeJq1EPz8qB+S8BYKKuCyw5:gB9qadeC66rPYq8jOKKuhw5","tlshash":"9903f1b5c7353e224c6a964c27e9c5b4bc190557832fe907e30e13b28746aa15b34e5b","first_seen":"2026-03-28T03:50:33.125428Z","last_seen":"2026-03-28T03:57:46.541742Z","times_seen":2,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/modules/blocktopmenu/js/blocktopmenu.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/modules/blocktopmenu/js/blocktopmenu.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:52:27 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d88b-eef\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3823,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"dc047d2d0d4751882f47973c7baf1f16","sha1":"3c69ece916202e4a3bdd6ab30e4d5421d9521893","sha256":"2bb35c51eed975a14370279cf7582f7998848602f2c7912f2984f82c7f1f56ab","sha512":"aa2b7864bbbbea25fe29d307b8b03a1596f3bf6a40187680c5a2f4687bb61d3052773b5e951b2538e263cddbe907e238842e8c54867801ddc74360cad4639000","ssdeep":"","tlshash":"6171a67af56e0433a27b746e129b944d3b280496e3cacc55fc7c89b82f8111916f6d2b","first_seen":"2023-03-10T06:24:47Z","last_seen":"2026-06-08T22:23:39.632524Z","times_seen":22,"resource_available":true,"data":null}},"time_used":851,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":851,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/index.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/index.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 185\r\nx-accel-version: 0.01\r\nlast-modified: Mon, 09 Feb 2026 12:51:09 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":230,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"1c579ababb5a3d550e9b02945a5645c9","sha1":"fd92f8984be32ade6d21a7f6b08232e40cdd3224","sha256":"e8725812053471bec5b6612f5bd791cc43a655814ca9cb4132d2d4020ada2371","sha512":"15ca89a669df288a46d3cb8a43c9f7a738712644faa2485edaf93b63cd67200249de6efeddb0f10d84513e47297d59c8f3fab27e55bd6ae2808d2843ff0c953a","ssdeep":"","tlshash":"97d09720a61033289c3601a97c7fc5c0fa81a030364710342268648882a0a853e2b1cb","first_seen":"2026-03-28T03:50:33.130355Z","last_seen":"2026-03-28T03:57:46.538287Z","times_seen":2,"resource_available":true,"data":null}},"time_used":856,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":854,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/main.2c799342.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:54.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/js/main.2c799342.chunk.js HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AMNfjG3TyOj-Dg57aETI-WRyZYBNYTRbdHWrR1epN1qcwKshoO3pK4xdUcHbMLjzkh-GgLWr\r\nx-goog-generation: 1770808112664577\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 1183127\r\nx-goog-hash: crc32c=uQWK4g==, md5=DyL4k+94JGcdE/Z5ZKuDEw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:32 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}],"data":{"size":1183127,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d6209a0524e0b21d97f3194eafe4e403","sha1":"da2e20300c8ed81b351e4ec6052f525fadbeac2b","sha256":"2b1c342aa116bbda518ecbf0fd4acb8581a89553ae3d6ac38621c187f65f6e1d","sha512":"c4505f6ff274691f130b4a64a6978a9be945365162c82f2b398dd7700b3fd284ca76eed1d19f8d648514900946e4d181d1c89c8fe1d727a3fb89f8b82fc7b074","ssdeep":"24576:mXuSN+FDYHjVNr33ElnjL4hRoXmDdTKiDrqXOhOHg9NpBK6ypM/GVwUzpYPelvK1:yuMiE9","tlshash":"b425f9ea9892a3dd2892e291d97b2b1fb1bdd414f108e324fc76c083e94e4d75172b47","first_seen":"2026-03-28T03:50:33.138353Z","last_seen":"2026-03-28T03:57:46.506602Z","times_seen":2,"resource_available":false,"data":null}},"time_used":519,"timings":{"blocked":230,"dns":29,"connect":14,"send":0,"wait":60,"receive":0,"ssl":182},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/auth/client_modules/512817","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/auth/client_modules/512817 HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer undefined\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 1\r\nx-request-id: 88de8c7d-1364-92fe-3502-dcc706edd27d\r\ncache-control: no-store\r\npragma: no-cache\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e8ef182e933100fb4bec6b7fca88a419","sha1":"fd2d82a9e3b900313deb2f29668fc34ae0349670","sha256":"64a67adf14d80f7adb4818b7d39b471246896235dc6ccaed9538fb4a88f6c51c","sha512":"115809229063633897526930bcb643be0a8e7d6b93a13475dfd33cb46b6fdeb4b48aa84c8d72637cb7e10b34fd965af177e08a9e009c27bd185dd555390d7912","ssdeep":"","tlshash":"45a0112a228e0ca8080aaf020a0200a3233800020a80808c08832ae22a0a0aaa2cba03","first_seen":"2026-03-28T03:50:33.059674Z","last_seen":"2026-03-28T03:57:46.495051Z","times_seen":2,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/upload/SlonSpa_edited_25.mp4","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /upload/SlonSpa_edited_25.mp4 HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=26411008-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; _ga_YRSWQRHPN3=GS2.1.s1774669794$o1$g0$t1774669794$j60$l0$h0; _ga=GA1.1.270901070.1774669794\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 130458\r\nlast-modified: Fri, 21 Jun 2024 19:05:23 GMT\r\netag: \"6675cef3-194fd9a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-range: bytes 26411008-26541465/26541466\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":130458,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"0bb743d8aec2dfd5abac13d001812c0d","sha1":"aa1447e6d7f1b1306ae42bd4c6602b37a3d596d5","sha256":"6d811754be80e469aaf0eee77d08dd5462145ba620969d46317770c1acf91ea6","sha512":"b5fda944fefc0c387485f854a445e01f7365dae2744a9286cdda15092a15487f83ba180cce92a98b27dc195af028d9f74b210b17db684901f693434c48e1bd77","ssdeep":"1536:xy0aMWAamvpySjRebrODZnSSNohl4k5grd0UXU7iXVh6J:xyNMWAamxy5rKS0oMk5grto","tlshash":"f7d3816bb36a2409fcb91bb2d44193130be2f7cc5947068f67a5feae0c210625e857f5","first_seen":"2026-03-28T03:50:33.141726Z","last_seen":"2026-03-28T03:57:46.525482Z","times_seen":2,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/css/main.69452279.chunk.css","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:54.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/css/main.69452279.chunk.css HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AMNfjG21hfapAxCHICUgNxBI25-6Gn830CT3XqLHtQQI-kynVxKvlhS69ihkG-XuyPVSKnyT\r\nx-goog-generation: 1770808120861106\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 1998\r\nx-goog-hash: crc32c=QuEq5g==, md5=j4LJgjMyNLNsHD8ab0ALIA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ncontent-length: 275\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:40 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":1998,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1998), with no line terminators","md5":"8f82c982333234b36c1c3f1a6f400b20","sha1":"b9ec5ccf647b43689b7c5f74be3149cf63d6a4b4","sha256":"b0d537bd182c4fa280fa1d39a95e8071f0a5d417f610f9746af38b079e6c374b","sha512":"b2fc08e28af411259540e0370ac5ccf2668b1d415be2b31a0725a4002608efcce82003ebcccf10ba8c5b20b08339911c78848e50aa2656a6bfdb3a53d5ed08b0","ssdeep":"","tlshash":"bc41dc07f52f2c42bc3206d434d6f3a1d63e8d9a35a484a2b56dcd5b99f2a9f071ce14","first_seen":"2025-06-25T02:14:14.032595Z","last_seen":"2026-03-28T03:57:46.477958Z","times_seen":3,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":237,"dns":33,"connect":15,"send":0,"wait":95,"receive":0,"ssl":184},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/services/categories?fields=name","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/services/categories?fields=name HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/positions?fields=name","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/positions?fields=name HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13a4-f184-3c13-7d72422b7f96\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":949,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c0cd72104651b2f7e42c586031b2d44a","sha1":"0c86c2cd9c0e50abad3ebbc5f980e527b993973b","sha256":"431f3f4ef72646bea02e86b94fa1b969699df312c6ee00b632d588fc64c070d0","sha512":"3f876380c78fad30ef6671bf0c27134887f4381dcf782ec705e7ece497a66ad009e5f3d82538927ecfbb5a3f23719e2233e3cfc522da3b43f224eee60cd27d6d","ssdeep":"","tlshash":"f1112bc85b687d3fca80b5b71d832ada3747513794da0dca4134bd6553d1ab0497c3b2","first_seen":"2026-03-28T03:50:33.14775Z","last_seen":"2026-03-28T03:57:46.499494Z","times_seen":2,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/feedbacks?fields=rating%2Cdate%2Cprofessional%2CfirstName%2Ctext\u0026public=true HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13a7-53a1-3c13-7d72504fa9ed\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1447,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"069a93cdb157372e1d5dff6eec4ab48f","sha1":"7d6f2e173196899fa7a6188851026f37b57de8aa","sha256":"28fb8024cb68f8d7e1f252153412ef96b7dda08b4a44a6d628d1c2b241547a48","sha512":"fcf5e36b882296ba97490b4f02263d37ffdfe87034453e6af6c19ec75b46b742c10edeeb3dbaf77390b0328894600729de0efb8ccd0d06333930a1f05872884c","ssdeep":"","tlshash":"f831b921cf3a187fc25031af24e392971a22f124b481d49e6278ff54cbca9220609adb","first_seen":"2026-03-28T03:50:33.150668Z","last_seen":"2026-03-28T03:57:46.48188Z","times_seen":2,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/custom.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/custom.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 13:02:21 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989dadd-e2ec\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":58092,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a5ed1514cb53b095191577018ca9f755","sha1":"058c1c453a141dcf65113a102921dded46ba925e","sha256":"09d728f484374ace51a758f012b769f7c466fb7ec63860d91bffb369ccf6d081","sha512":"81a4547c6516449fbabbe3c5ee4404029cb70cd1562bc7f5e3b4efb7ce2aeb25341314bb10b9c61a523c48bac5651498f3717733997e29131fa388c99bd4bc86","ssdeep":"1536:eTvdIJ6tgalBnG7Jf9okC5E7qmqXpKW/qva3J9jPxMQ:qnTMokHNqIW/qvabjiQ","tlshash":"d743214adfb30468b41b886c7b6ea7a4779d8007924ecd7c7eccb758cf8a1985151b8c","first_seen":"2026-03-28T03:50:33.153536Z","last_seen":"2026-03-28T03:57:46.534967Z","times_seen":2,"resource_available":false,"data":null}},"time_used":838,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":838,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps/api/js?sensor=true\u0026key=AIzaSyDFJgNBgl82GbVZuwkfScgnwD4fYABA2vE","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.142.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"D2:1C:F1:0A:15:56:46:69:23:C8:CB:C9:43:56:AB:F3:49:D9:DC:8C","sha256":"12:10:E8:77:74:7D:E0:EF:96:11:A9:A4:E1:BE:36:B8:ED:01:E2:9A:F2:3E:42:84:96:5F:43:D0:37:C4:03:B9"}}},"request":{"raw":"GET /maps/api/js?sensor=true\u0026key=AIzaSyDFJgNBgl82GbVZuwkfScgnwD4fYABA2vE HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=1800, stale-while-revalidate=12600\r\ncross-origin-resource-policy: cross-origin\r\ncontent-type: text/javascript; charset=UTF-8\r\netag: d5ee5e69\r\nvary: Accept-Language, Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 102482\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=37\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":311503,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11653)","md5":"9ce7f12c11227d6ae5e05817e27f3261","sha1":"426880baea3a4e72d364d4a89bd8985c8b98d911","sha256":"ba1d6903694228e7b586b522615a74257741435c845649c7c5a8bc33bd78fa41","sha512":"3edeba7db2795d40af24af48d052665319168ecb76386c05e8f6fded19986f4ec0646a27582a77cef2864b1a226036c57b46c7279a69d71113417deaca8ba7a4","ssdeep":"6144:D92NoHpKbjhUFhzgFGGzRFkAG6tlr7KMPG+M/aSxpIYQXpe1W7DaD2Sr7Wq0+c2L:D92NoHMbjhUFhzgFGGzRFkAnTrmMPG+i","tlshash":"b1643c9473a2746187b2e4e450370106f27e649af00c8eacb69ccde3adf69464677f78","first_seen":"2026-03-28T03:50:33.158186Z","last_seen":"2026-03-28T03:57:46.53136Z","times_seen":2,"resource_available":true,"data":null}},"time_used":263,"timings":{"blocked":69,"dns":25,"connect":8,"send":0,"wait":45,"receive":24,"ssl":89},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/img/p/6/9/1/691.jpg","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.553Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /img/p/6/9/1/691.jpg HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 214407\r\nlast-modified: Mon, 18 May 2020 21:15:37 GMT\r\ncache-control: max-age=2592000\r\nexpires: Mon, 27 Apr 2026 03:49:54 GMT\r\netag: \"5ec2faf9-34587\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":214407,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 900x600, components 3","md5":"0b2333a50a1ce2aac2f74f3af6de93e1","sha1":"130b30089b3fad9232be1bfe944d2a9de9b8f693","sha256":"fef5c4a48d571c38d83fdee03d0105e85cb71507b8d160f2dc5f37e79154eacc","sha512":"7a68a9a95bb7051bb19b9041ceb94e35e317ecf8acbd4265f9a1966c060603e2f9502b0efd10f12accc1012365e16d609e291930378c25a8dc29b72d867ec0aa","ssdeep":"6144:7KDSuJspof+7JIOF1eIRGZngFNH5Rc7Ri:7HuwoMIOnegG+ZRgRi","tlshash":"a3241272fe9519fe53a9f533c96c999718b5d8d17440a82f07a08fa212557cc2830fbb","first_seen":"2026-03-28T03:50:33.162263Z","last_seen":"2026-03-28T03:57:46.48574Z","times_seen":2,"resource_available":false,"data":null}},"time_used":909,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":841,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"OPTIONS /v1/locations?fields=city%2Cgeo_position%2Cname%2Cphone%2Cstreet%2Ctimezone%2Cactive HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization\r\nReferer: https://beautyprosoftware.com/\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,PUT,DELETE\r\naccess-control-allow-headers: Authorization,Content-Language,Content-Type,Content-Transfer-Encoding,Keep-Alive,User-Agent,X-MWA-Version\r\naccess-control-max-age: 31536000\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/css/component.css","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/css/component.css HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 12:51:03 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d837-62e\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1582,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"c1586fc6b0f7ffc7db8fbd8b1b39e6a5","sha1":"b7029abaa20d405b56707c247322e7a9b3379acd","sha256":"cbdc44df749eecd43fa8ae3a7e8d069dbf12324b25e3fd8e2005f8bb87451f99","sha512":"17377ecada3f8397f8cd853a5a6987bcd78ce0c5cafe5534c50f1cd957fda6d00ede91fdcc2e32a106e2ca093f006c447f0214441dbbda9044afaa8945ee4423","ssdeep":"","tlshash":"cc3116aa67301d64e27389489bcd6be9067de133a9a50caeb242794f57ce24c12d17c3","first_seen":"2026-03-28T03:50:33.16527Z","last_seen":"2026-03-28T03:57:46.506043Z","times_seen":2,"resource_available":false,"data":null}},"time_used":852,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-T8TGT48","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"58:CB:88:A1:C4:55:4E:E5:46:DC:A0:9C:B3:54:25:79:20:1E:E8:09","sha256":"0B:B5:96:A2:57:57:EC:BA:63:14:8A:AF:4C:C2:32:63:18:8B:75:80:8F:78:1D:1F:5B:00:B7:B3:7E:C9:B7:18"}}},"request":{"raw":"GET /gtm.js?id=GTM-T8TGT48 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 28 Mar 2026 03:49:53 GMT\r\nexpires: Sat, 28 Mar 2026 03:49:53 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Sat, 28 Mar 2026 03:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 130371\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":383556,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (5424)","md5":"c43b7ba5e6b3dfda04523bab80dc9676","sha1":"7155c7b50f6dc8174a9254a6e9b7577e4d961836","sha256":"ff2d4b590a8fc2d7fe46a2e83a2e158a2af89b01018780f988253f1fb79fa460","sha512":"267eba2905138cb5d39003af2b456fbf913d3af523dda8fc30bf82c5df1f2add8905ed2041a3e6a7d88f49b9143c80305aadf52068bb84e6f42b8cbc5573ca99","ssdeep":"6144:HORjaFhrVJlQGXms8WVd1W+rwkQd9B3XOT/ZY:FhxJlp8YinAY","tlshash":"7b8419ceb3d674624393a478803f018ba27a79e2f84cd895f185c8d42e7469a5237f7d","first_seen":"2026-03-28T03:50:33.168295Z","last_seen":"2026-03-28T03:50:33.168295Z","times_seen":1,"resource_available":true,"data":null}},"time_used":289,"timings":{"blocked":87,"dns":47,"connect":8,"send":0,"wait":32,"receive":36,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/js/jquery/plugins/bxslider/jquery.bxslider.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /js/jquery/plugins/bxslider/jquery.bxslider.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jul 2025 08:21:07 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"686f77f3-4ba3\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19363,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19043)","md5":"9d4c02bb88328a44f029a8ee48aef328","sha1":"edcabe3e1fadf0d68d6faff6a60c1fe82027fb7a","sha256":"bee78b1fea48191ebb87402c4d68a71ca544734719c35f5b06044923e38e5502","sha512":"f6a6f58ad72d7bc079913348004d8777bfc2c0508fe7d71cb7aecdd48cff4b35ff81b37e4212ffcf89c5234b7e91fcce12d811a1ed4f42367a16494bf6c8c2c6","ssdeep":"192:7RbGoLN83BRKmfL+ClFVPDhjfHGTgiD3VARMWvdO34AgEJrv/T16OsQon05rzIHE:9XZ8WjOVRXy16/kXIHHSCruwe","tlshash":"dc92541b713436fe46b622b5b299cf487276908ac537f8f861b5d85819e8cc4301badb","first_seen":"2026-03-28T03:50:33.170976Z","last_seen":"2026-03-28T03:57:46.507563Z","times_seen":2,"resource_available":true,"data":null}},"time_used":855,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":855,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/upload/SlonSpa_edited_25.mp4","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:54.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /upload/SlonSpa_edited_25.mp4 HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117; _ga_YRSWQRHPN3=GS2.1.s1774669794$o1$g0$t1774669794$j60$l0$h0; _ga=GA1.1.270901070.1774669794\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 26541466\r\nlast-modified: Fri, 21 Jun 2024 19:05:23 GMT\r\netag: \"6675cef3-194fd9a\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-range: bytes 0-26541465/26541466\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1572864,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"eb5e6494d3624cf9f2852ba240702dc3","sha1":"ff24b108042c998269d78a2202e0b3bf4c59434d","sha256":"0f4042a1a62b1274125a168bf3009578de9111c7bb457c0584f1862358593863","sha512":"30c861ec310fdc702b7bdc6b32d703c6a36d4047dd0d2913b0946c5cbb10206fd1e1255c40295c9336f8c88b7dd746ffc86dc1082f265fce6d499ae5803b2b0c","ssdeep":"24576:SjZvtCUPXZlb8ueaPJcMFaz4+PEX35gaKm1Fgk4BIfGJ:SjZvtdXZxUaPJckas+PEZgaKUFgk4Ie","tlshash":"2325336a6881682b5ffecca5b5e100ef475a4b0f9f87f0fed5b08a6456c8488d151f1c","first_seen":"2026-03-28T03:50:33.174632Z","last_seen":"2026-03-28T03:57:46.49166Z","times_seen":2,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.aihelps.com/v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start","fqdn":"api.aihelps.com","domain":"aihelps.com","tld":"com"},"ip":{"addr":"130.211.88.75","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:56.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bp0.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 20:39:12 GMT","end":"Sun, 07 Jun 2026 20:39:11 GMT"},"fingerprint":{"sha1":"71:69:08:11:94:DF:BA:F5:D2:6C:5D:74:46:4F:9F:E3:3E:32:0F:8C","sha256":"19:CB:2B:2B:10:9B:E2:3A:4F:5A:55:95:74:B5:10:D3:9A:6A:A0:7F:F1:B3:EB:B5:1D:61:CE:BD:B6:69:5C:4D"}}},"request":{"raw":"GET /v1/employees/free_time?from=2026-03-28T03%3A49%3A56.284\u0026to=2027-03-28T03%3A49%3A56.284\u0026duration=15\u0026step=30m\u0026location=88de415d-3229-01ad-3ec8-86f61ecd1958\u0026client_gender=female\u0026gaps_mode=none\u0026gaps_positions=day_start HTTP/1.1\r\nHost: api.aihelps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://beautyprosoftware.com/\r\nAuthorization: Bearer 3d9f43c9-1d3d-4686-a8eb-f5f9ae17a029\r\nContent-Language: en\r\nOrigin: https://beautyprosoftware.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Sat, 28 Mar 2026 03:49:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nx-processed-by: 3\r\nx-request-id: 88de8c7d-13ff-8c38-3c13-7d726dbc93b7\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":457908,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f207aaac4d981e02356332f278729a6f","sha1":"4c3ab5cb3da9d280aff126f692ed21510ac5bc02","sha256":"55e2462b4aefcaaab1002d35457ac3ff66ef0d0c1f3b6a0067248782498e817d","sha512":"d5cf0e1e077e9275336d790d13fe6a3bf3ecd6369c3c069b532a9563c2749029e1e3bd05129cc7c0ffa8fcd2324bd677f054b88e89ab8ce3aad49a03f8fe89da","ssdeep":"192:/xFzxF7xFoxFtxFExFpxFAxFQxF1xFMxFxxFCxF4xFyxFrxFoxF/xF8xFDxFbxF1:p+Z8i7w+b+V+h+G3+F+L+g+nGUK+N","tlshash":"baa4f5d78e1aa670abb3056167f86592ec3c70575e456cf02f9a3351cef08236508beb","first_seen":"2026-03-28T03:50:33.178681Z","last_seen":"2026-03-28T03:57:46.545615Z","times_seen":2,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon-spa.com/themes/default-bootstrap/js/global.js","fqdn":"slon-spa.com","domain":"slon-spa.com","tld":"com"},"ip":{"addr":"91.105.200.78","port":443,"asn":199103,"as":"SIA Maklaut","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:53.525Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon-spa.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 15:09:57 GMT","end":"Sun, 31 May 2026 15:09:56 GMT"},"fingerprint":{"sha1":"2E:CB:7B:21:A0:6A:6D:34:5C:47:D9:70:19:99:16:D8:3A:8F:A9:E3","sha256":"99:8A:6A:1F:5C:F7:4C:14:66:8A:D9:0C:AD:B0:0D:82:C9:C8:65:86:36:1A:35:F0:B6:0E:AB:7F:59:19:27:CB"}}},"request":{"raw":"GET /themes/default-bootstrap/js/global.js HTTP/1.1\r\nHost: slon-spa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon-spa.com/\r\nCookie: PrestaShop-23b4efef633b875f0d4d8d1edc10ed46=APZwfvAHxnCACTaMC0uMVYCttc8JGmq%2Bq9gDojbkYb6wV00lD3oMnmLx9qmiSTe0RPSUZBLagytzLhm%2FXXSogh2I%2FH6BFshcO8K9Zd00CGYx6dGNFJ9EYI0CqzDeVDor6%2FY5PIK0TfNEkDWARr%2Bf1mHQM0knc0EQM%2F8tq79RvpU%3D000117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 03:49:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 12:54:29 GMT\r\ncache-control: max-age=604800\r\nexpires: Sat, 04 Apr 2026 03:49:54 GMT\r\netag: W/\"6989d905-5cec\"\r\nx-cache-status: BYPASS\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":23788,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"326b5986737d60ff8fda5078c2ab9933","sha1":"4e69b8eb129aa90402cfb9e5c16a00a338411201","sha256":"5ea6fb3e2ff0965083e43f41321da5e493f6c98293c965df738cc5cee331e937","sha512":"063d7f7723fa6541505583015f26b0234758d4a5941dd5f0295ff6de22ab60dee5c767dcc25785bf4b8cecbc9fe6ccb4817d7c338eac05013df28579f0ad6759","ssdeep":"384:BGujQ7uWyPPCAgq6XnHJzGP7r9/W2lp4Guj4noBS+YdsL5vFBXfvGmN3yJscKKK0:z9GAg7npzGPP9/W+gooQshvGmNcKKK0","tlshash":"6bb2a552e73d153a4037305f985f6188727a4473da4a4c25fcacc8b82bd4e6a33e2e6d","first_seen":"2026-03-28T03:50:33.181753Z","last_seen":"2026-03-28T03:57:46.476361Z","times_seen":2,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/119.b4c7093a.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:55.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/js/119.b4c7093a.chunk.js HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-guploader-uploadid: AMNfjG0CdW40UYhqDB6z9rk5-P1m_cvvB-nI-h-O8ZwYNrO8sdG4QaZhlWlJMZ6PHjX1WiaA6-r8LRQ\r\nx-goog-generation: 1770808114875026\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 18801\r\nx-goog-hash: crc32c=jVQevA==, md5=T9VGl5p9Eh5xsG7fsJ+aVQ==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ncontent-length: 4163\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:34 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}],"data":{"size":18801,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (18801), with no line terminators","md5":"4fd546979a7d121e71b06edfb09f9a55","sha1":"7d91756ec95a80957f0883f9bb92c8c45fa75387","sha256":"a099e4be37ba497f95323863b915055215a60ab4101920839a69eb0d9c66a1ab","sha512":"0592bb52beedf89974617cca02d1b2bbc366459033f533772a7f92eac83dbe05f8be3e0a0d1b85be08887c8f5d6108fe0a5376ec4050430889cf11cec5c0009b","ssdeep":"192:IUGk2Wnhdca/cIdgAGfz27VroUWcJ7QBLsIqaUqMDhRevfvVXdaFwVOJJxK5zjjc:RhOaUwSLsUvVXIpJJOzt0w+RDECBAa","tlshash":"1582b85ef382373635b3336c39df7592735d207812991cbac4ec552823b5e5ea63a488","first_seen":"2026-03-28T03:50:33.184122Z","last_seen":"2026-03-28T03:57:46.551303Z","times_seen":2,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":78,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.beautyprosoftware.com/OM-src/static/js/2.11db13ff.chunk.js","fqdn":"cdn.beautyprosoftware.com","domain":"beautyprosoftware.com","tld":"com"},"ip":{"addr":"34.54.88.127","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://beautyprosoftware.com/b/512817","date":"2026-03-28T03:49:54.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihelps.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Thu, 05 Mar 2026 14:41:46 GMT","end":"Wed, 03 Jun 2026 15:15:44 GMT"},"fingerprint":{"sha1":"88:9F:53:D6:6B:73:33:C6:EC:69:97:5E:01:63:41:75:B0:89:17:ED","sha256":"7F:E8:8A:38:DD:30:E5:88:6E:FA:96:06:75:C4:A5:A7:DC:67:70:C2:8C:91:FF:3F:7E:38:4A:23:EB:0C:FB:A0"}}},"request":{"raw":"GET /OM-src/static/js/2.11db13ff.chunk.js HTTP/1.1\r\nHost: cdn.beautyprosoftware.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beautyprosoftware.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AMNfjG1Jf_ehe2Jdb9HtdRl2e6rjUF5Vuct52Mr5IujVih7fthxWH8E72M5Q3vcZ8k66hONy\r\nx-goog-generation: 1770808108148772\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 1284508\r\nx-goog-hash: crc32c=pMp3Tw==, md5=Xa3qyFZzWBBOkZ2+wqOElA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\nserver: UploadServer\r\nvia: 1.1 google\r\ncontent-encoding: br\r\ndate: Sat, 28 Mar 2026 03:49:55 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:08:28 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\nage: 0\r\ncache-control: public,max-age=3600\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":1284508,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65462)","md5":"1cd75d505c4ab3c48138170434450a97","sha1":"06a16f4db53b26ba392f031c21cdba822d966ae6","sha256":"f8328c701f881a8aff32472903fd843481821001e8ed6f4f52ca776225f8a840","sha512":"57b12e7ede8a5cf04fa0a5fcc7c2c5698f679bafc1a60c230b2bc7bf32a6ba2eb90a6b355657c72937b107549715d5cf03a5c0d8a3c27683ad7af36f60ddc090","ssdeep":"6144:SxR0+jCjRSybMnWsKD7A7aQtxMPDswtTdFFN7tFkjL/cbrvm4T0BgkmMFv+mu2PH:g08UDdQWNbtkydkk2Pb0TLY28","tlshash":"dc2508dab281f32212e33664853f510ff77d9c65a8498058f6e6d4cb6c7891a603bf39","first_seen":"2026-03-28T03:50:33.187028Z","last_seen":"2026-03-28T03:57:46.529687Z","times_seen":2,"resource_available":false,"data":null}},"time_used":594,"timings":{"blocked":262,"dns":31,"connect":28,"send":0,"wait":70,"receive":0,"ssl":201},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-YRSWQRHPN3\u0026gtm=45je63p1v9118938642za200zd9118938642\u0026_p=1774669793434\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=270901070.1774669794\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AEAAAGQ\u0026gaf=2\u0026_s=2\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026sid=1774669794\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fslon-spa.com%2F\u0026dt=SLON%20SPA\u0026en=scroll\u0026epn.percent_scrolled=90\u0026tfd=6487","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.34.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://slon-spa.com/","date":"2026-03-28T03:49:59.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Mar 2026 08:36:15 GMT","end":"Mon, 01 Jun 2026 08:36:14 GMT"},"fingerprint":{"sha1":"58:CB:88:A1:C4:55:4E:E5:46:DC:A0:9C:B3:54:25:79:20:1E:E8:09","sha256":"0B:B5:96:A2:57:57:EC:BA:63:14:8A:AF:4C:C2:32:63:18:8B:75:80:8F:78:1D:1F:5B:00:B7:B3:7E:C9:B7:18"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-YRSWQRHPN3\u0026gtm=45je63p1v9118938642za200zd9118938642\u0026_p=1774669793434\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=270901070.1774669794\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AEAAAGQ\u0026gaf=2\u0026_s=2\u0026tag_exp=0~115616986~115938466~115938468~117266400~117384405~117484252\u0026sid=1774669794\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fslon-spa.com%2F\u0026dt=SLON%20SPA\u0026en=scroll\u0026epn.percent_scrolled=90\u0026tfd=6487 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://slon-spa.com/\r\nOrigin: https://slon-spa.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 No Content\r\naccess-control-allow-origin: https://slon-spa.com\r\ndate: Sat, 28 Mar 2026 03:49:59 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:178:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:178:0\r\nreport-to: {\"group\":\"ascnsrsggc:178:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:178:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T09:08:26.549627Z","times_seen":16907537,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}
