{"report_id":"33ca4bf2-5904-4e1a-ae4a-94a97c558a7f","version":6,"status":"done","tags":[],"date":"2025-08-09T07:15:04Z","url":{"schema":"http","addr":"lustesthd.life/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.life","domain":"lustesthd.life","tld":"life"},"ip":{"addr":"104.21.65.183","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"title":"(1) New Message!"},"submit":{"url":{"schema":"http","addr":"lustesthd.life/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.life","domain":"lustesthd.life","tld":"life"},"ip":{"addr":"104.21.65.183","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-13T07:15:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"curriculumoutcry.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"yp.thebangalapee.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"lustesthd.cv","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-08-09T03:49:45.09073Z","last_seen":"2025-08-09T03:49:45.09073Z","alert_count":0,"request_count":1,"received_data":64552,"sent_data":557,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"yp.thebangalapee.com","ip":{"addr":"23.109.170.209","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-06-18","domain_rank":0,"first_seen":"2025-08-09T03:49:45.101205Z","last_seen":"2025-08-09T03:49:45.101205Z","alert_count":1,"request_count":1,"received_data":1448,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"lustesthd.cfd","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-22","domain_rank":0,"first_seen":"2025-08-09T03:49:45.098177Z","last_seen":"2025-08-09T03:49:45.098177Z","alert_count":0,"request_count":40,"received_data":1369572,"sent_data":21468,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"FitVids.JS","description":"jQuery plugin for fluid width video embeds","website":"https://fitvidsjs.com/","common_platform_enumeration":"","icon":"FitVids.JS.png","categories":["Widgets","Video players"]},{"name":"All in One SEO Pack:4.8.1","description":"All in One SEO plugin optimizes WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Select2","description":"Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.","website":"https://select2.org/","common_platform_enumeration":"","icon":"Select2.png","categories":["JavaScript libraries"]},{"name":"jQuery UI","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"Site Kit:1.149.1","description":"Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.","website":"https://sitekit.withgoogle.com/","common_platform_enumeration":"","icon":"Google.svg","categories":["Analytics","WordPress plugins"]},{"name":"All in One SEO:4.8.1","description":"All in One SEO optimizes a WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"cdn.storageimagedisplay.com","ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2024-09-13","domain_rank":0,"first_seen":"2024-09-13T12:56:32Z","last_seen":"2025-08-08T06:02:20.055218Z","alert_count":0,"request_count":3,"received_data":107785,"sent_data":1426,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-06T15:14:12.503348Z","alert_count":0,"request_count":2,"received_data":23240,"sent_data":880,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"lustesthd.life","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-08-09T07:15:07.232281Z","last_seen":"2025-08-09T07:15:07.232281Z","alert_count":0,"request_count":1,"received_data":64565,"sent_data":559,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"preferencenail.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":0,"first_seen":"2025-07-08T12:55:47.271261Z","last_seen":"2025-08-05T21:38:00.718893Z","alert_count":2,"request_count":2,"received_data":171926,"sent_data":822,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"flushpersist.com","ip":{"addr":"192.243.61.227","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2025-07-01","domain_rank":0,"first_seen":"2025-07-08T10:43:12.76905Z","last_seen":"2025-08-05T21:38:00.60866Z","alert_count":0,"request_count":2,"received_data":992,"sent_data":1528,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.show-sb.com","ip":{"addr":"104.21.95.140","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-08-20","domain_rank":0,"first_seen":"2024-08-31T03:46:04Z","last_seen":"2025-08-09T06:08:59.436853Z","alert_count":0,"request_count":1,"received_data":2517,"sent_data":492,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"rashcolonizeexpand.com","ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2024-09-01","domain_rank":0,"first_seen":"2025-06-27T17:12:36.133274Z","last_seen":"2025-08-02T10:11:50.406535Z","alert_count":8,"request_count":8,"received_data":12130,"sent_data":7458,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"professionaltrafficmonitor.com","ip":{"addr":"3.68.252.134","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2025-01-23","domain_rank":0,"first_seen":"2025-01-25T08:56:07.448138Z","last_seen":"2025-08-08T14:17:29.980479Z","alert_count":0,"request_count":1,"received_data":422,"sent_data":449,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-08-06T15:12:45.48732Z","alert_count":0,"request_count":2,"received_data":599295,"sent_data":1002,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-06T15:10:32.619142Z","alert_count":0,"request_count":2,"received_data":81926,"sent_data":1096,"comment":"","tags":null,"fingerprints":null},{"fqdn":"weirdopt.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":0,"first_seen":"2025-07-08T12:55:47.272157Z","last_seen":"2025-08-06T04:04:35.160651Z","alert_count":1,"request_count":1,"received_data":377,"sent_data":416,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"gyanilinks.com","ip":{"addr":"157.90.145.186","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2022-05-11","domain_rank":0,"first_seen":"2022-05-11T11:12:41Z","last_seen":"2025-08-09T03:49:46.338102Z","alert_count":0,"request_count":1,"received_data":2884,"sent_data":423,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"wayfarerorthodox.com","ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2024-09-03","domain_rank":0,"first_seen":"2025-08-08T11:06:50.216151Z","last_seen":"2025-08-08T11:06:50.216151Z","alert_count":0,"request_count":6,"received_data":194049,"sent_data":7288,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"creative-sb1.com","ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-01","domain_rank":0,"first_seen":"2025-08-08T09:32:32.509707Z","last_seen":"2025-08-08T09:32:32.509708Z","alert_count":0,"request_count":5,"received_data":174697,"sent_data":2300,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"curriculumoutcry.com","ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2025-02-11","domain_rank":0,"first_seen":"2025-08-09T03:49:45.104055Z","last_seen":"2025-08-09T03:49:45.104055Z","alert_count":1,"request_count":1,"received_data":33823,"sent_data":449,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6309619dd77c423d47db990e061475a5","sha1":"1d9e4863bacdb9a8c6c1b5e2a051e80aff391e25","sha256":"778a5bc8d6973ee681063ad90675bb5a818f518ba87baf1a35d4ca928c08a81e","sha512":"1547da98d7b55c437ea70963b2f452a9799603e12f92259c4ae9b9b1c905feb2dbfe33387f120d27ded4da4ac3aef03b4ca6676957025c41d47f2b26e2081052","ssdeep":"","tlshash":"36a002af21a5713f6262244e9d1dad9899b900038d05a4c87a9d42b80f85485145f709","size":62,"data":"","first_seen":"2025-08-09T03:49:51.600615Z","last_seen":"2025-12-04T02:16:35.292652Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ae7b51f897914fb6194ebaa8bd3c38a6","sha1":"94d287574a429fde34e0116092766c8180ef3a34","sha256":"1babc50e5ed90584f2c4497cd5678a9452f8bf5ad5e5caa691b42036f00a0796","sha512":"3f34a5771377ac6e78a73a9f4b53e90245bddadef10ffbfcd7d3be6fba9681ee612401b29a2911483a1162c4548bbecba7ecd61361815d805428b3333b4b52b9","ssdeep":"","tlshash":"f2e0cd6e5772c94d655004e249fc65738bd1912494206c6ab60dd7520f3c12babc7229","size":308,"data":"","first_seen":"2025-08-09T03:49:51.601882Z","last_seen":"2025-08-09T07:15:13.720634Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6326c600df01e3bfb9b40e1aa08176f8","sha1":"6b4fb754d29b297b539bf62ba9b4eaf0f33f314a","sha256":"df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3","sha512":"641aaeecb9b89bcc319cabfef18f76faa9b1ba79f9de30c6d07f22d385fc78ac3f11a718fe9ec96f8a13d82e3dff4ca34944ccb449a4ef8e378ad65dfad581c0","ssdeep":"1536:oP10iSi65U/dXXeyhzeBuG+HYE0mdDuJO1z6Oy4sh3J1x72BjmN7TwpDKba98Hri:f+41hJiz6fhdlTqya98Hri","tlshash":"eb83d6d9b2c67062977734b851bf510bb17a98dab40c8c60f0a4d8e47eb4a8d517bf2c","size":84384,"data":"","first_seen":"2023-03-07T01:10:11Z","last_seen":"2026-04-20T13:38:49.709004Z","times_seen":10900,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/iziModal.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"de56db6b4ed148cca78af68c24bef0d6","sha1":"450cc06629514c51ec0e28ff1cc37beb155d0536","sha256":"1242c61c5fe9b7829ff38b85c11019a5ced91d6c537f324db444cce709a118fb","sha512":"4b4fbfd45fa68a3773aa248913d9e50ea0b213ea97e9c80b629261eae986cdc4de69200dc7feaf2e70de49adf69807a9e6cec06dfe6c3e6a972378c0624e0f63","ssdeep":"768:MzhHKwhc1U+CAC42C4mHJ/3hBHoP7w05O:Oc1U6JMw05O","tlshash":"d5c28559b6b1226051ff85a39017151d713aaf34b507100c3abfcbeb98b4e58b1abe78","size":26264,"data":"","first_seen":"2023-03-09T01:55:44Z","last_seen":"2026-04-20T11:43:54.169923Z","times_seen":226,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f149cedf17aaf1b3e09d7005707d6ea0","sha1":"6f6a00276c9bb71b94d5febf9718cf2e81e58b38","sha256":"2efb4c94c44a3d2411de9a136848f289f02c16341e5d0fd7f83340817cfd4e78","sha512":"bb851b4f6503cc59e9d5e587f1138e6609446e5acce686407e07a3b5775f7ec1b2ebd78d500b7cd0124623161b9a03955c576c87c3ee26717c9ff621b58d7762","ssdeep":"","tlshash":"a801477320c20afbc9bab8025b563ba93b5333eae6b4641049dc050434bfe17e0d4cc8","size":697,"data":"","first_seen":"2025-08-09T03:49:51.603076Z","last_seen":"2025-08-09T07:15:13.721266Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/select2.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5547c5ead0e9fec8ae2c638325ae41e2","sha1":"fadba4bc649d0eb3062e89f62b67182aae4e1722","sha256":"eb98695d0684bb8a16ca46730b98e3d14840a8ea189fd4b30058cb2694d33f04","sha512":"788ab93c7221f4fe63b2080a395ab2cd1a7b3f82c046a3059b402d2b227efee620bc229a3088019393ba45e35faf0945385d9f016734f041a744e589b5938c90","ssdeep":"1536:TzFMMCl8kQ2I/iHkvgc/n0vQTgGvNsTvoqp4O2A3c5ARn23u0g:lClRJGjTDc4O2A3c5ARnZ","tlshash":"9ba3630abbe031369137b376dd7f4808f136553fa14589987c2c90e85f7982096bafad","size":107097,"data":"","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:20.040322Z","times_seen":139,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/jquery.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0e850a69bc7fd0acc2e92ce6eee87959","sha1":"8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c","sha256":"afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a","sha512":"0f8a4fb2ea15a93290778a55c701208c9245193d8c910f47f26bb245b0a3f6d6d91427a1857f98c3632bc3feec5c0b83517b46c1fa1817bc3bb33b5ccb9a11e3","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQv1:IeeIygP3fulzhsz8jlvaDioQ47GKK","tlshash":"9f93f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","size":89815,"data":"","first_seen":"2023-03-29T22:52:25Z","last_seen":"2026-04-20T12:12:58.880959Z","times_seen":29231,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"22266b1ffd932fdbfe39a6d953890d9c","sha1":"e837cc5cc71a7619a25a48bb207a378bc25a5375","sha256":"86473e772e592de709744bb537b73dfc3b4b09c4287b5c831b2359a887272f09","sha512":"7df8a56c5ab69a23d235884cf72cdad0f09cc930f82be02ecd0a099f05557aa9484e2341a72c7e35107b8a735e37009f5b2bc9b2e2650b88e50c5e27d518610b","ssdeep":"","tlshash":"7ad05ea1cc17c7d6bd40a96e766f66459799702f0406ee15a623e0554f02059209f4c9","size":248,"data":"","first_seen":"2025-08-09T03:49:51.605622Z","last_seen":"2025-08-09T07:15:13.721896Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/printThis.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6565840e51963c96c4983e25c7394458","sha1":"7c12e0b6ac680a32660069e5d85438aedef4d7a2","sha256":"2910df39c7d50e1f8e71aa7ccbd058b67653208f5a88b87018e7961b731040a5","sha512":"453c5ab9f7eca40dba8840ca5645d57f8dd0e8c7b8e85d629a42df368e01688cb3620445d522a1a4a330ad79f970784da494db07ea80db14c4753cd546a445bd","ssdeep":"192:bUqfM73/UJq4pFuXK1WW/UP8UHYMv7xP4z:hGOBsW+rv7dI","tlshash":"b422515a782351604972337cdfa63208fb6b01336110e661fdfe06a46fb095992b6fed","size":10125,"data":"","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.963311Z","times_seen":138,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gyanilinks.com/js/full-page-script.js","fqdn":"gyanilinks.com","domain":"gyanilinks.com","tld":"com"},"ip":{"addr":"157.90.145.186","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"10cdef04b47414a545f570f354c55a48","sha1":"9bdae7d1740a336ed66b10b7d061f5b08e79bc1c","sha256":"1c53ca6bf8e492bb0f066298aebb65cb4f00c2ee4af79edbd70939329819f0ae","sha512":"cf64c7f41830d7b8e5175265b2002a32129df40221cd835e011c8f221a70fa7510d3b73c98dbb9286b0dc52a379498d87932e09f92c4fb3372659b4369c7a05c","ssdeep":"","tlshash":"8c41a05458d0c8498edf0cac347fb70ff0b89a778b8a28504a315db46a71714a6ba57e","size":2416,"data":"","first_seen":"2023-03-08T02:26:37Z","last_seen":"2026-04-04T08:59:12.532347Z","times_seen":163,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"276f773bd89b054f4e8676c3a32cba57","sha1":"3ad51edada6bbe3be5a87bbc7364a1fb5f9f0875","sha256":"a31ae5237c0e7b5dfde97573bb5dceca096425a934a102f5dc0502bb64e1bb76","sha512":"6bbcf461a0f3c1ab3f83dad3e630467a2887db3100be47b7582a6e993ea54ced7ae1a46698f4fd0ac42d1659840d5df008f2a1790151eabcaa11c70673e3ebbd","ssdeep":"","tlshash":"a601449fb4a03c71b36910a9fe6ffa8b782310392341809198ccd81c321dac4c0b5adf","size":704,"data":"","first_seen":"2023-03-08T16:44:02Z","last_seen":"2025-12-04T02:16:35.303892Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f27577f0703c84b0ebc3e5dfba5ef74d","sha1":"825b73f12fdc008ece702a12ff143ebf2a83b34d","sha256":"909565159d7251575fc2348ce0f9a00ba179b6e83820d02349eedc7253bc3ba0","sha512":"a619963067f051c21d540823cca31b4cdeb439bc495506fcb89c1123f9aea1ad7586307b87514b8a3d3d3dcddb595075d2136049a45d21ca5dc78dfae7e7a37a","ssdeep":"192:TONBhdRCNa+M/tugwkfF1Wjm9h8LoND2VuerBGjhbu2EMmp:TOzhdRCnxunQd48qBuPp","tlshash":"eb62d6cdf3a25d53e673207c44df059750227d0bcc5b4248b0ad96c56aeac1998e3bfa","size":14772,"data":"","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.940727Z","times_seen":176,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.form.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dfcb1f9242f2b86f8938bd7cc4bbfe45","sha1":"4b6efd79a161a14f883e8b316592ed09a9db4fc8","sha256":"4b05ed417c37a01fba3f2904702ee68f4883409fd79a78e515566a4dc0655967","sha512":"efa98fe0dd49ffdc3f9300d97eec84cb85426d7a0da81b637a5ba312bb40bc4149025c232bababd07585c69a081d7c249f22827a622973d78e20a81b203203f7","ssdeep":"768:ageuCP6yeJr/5t31aPw6MdOGuKeockAty3YQlMOIm8E77VMDz/iVG7tPtEtVaYA3:R+P6yeJr/5t31aodveoc/QIQWOJ7VMDT","tlshash":"9b13954a798a12a2193377b9cfab910dfb7a91370201d1517d9c52d12fb0ca492f6fec","size":45167,"data":"","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-20T07:25:58.386423Z","times_seen":352,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"86ca9fa719c8df498abd714b2162111c","sha1":"fdc1e957ca86428e544ae8c253b5217f07509a34","sha256":"121c2a683c3edbc2b8115c187a00d58c369cae1d7c59854c0f7fd94beff9ecbc","sha512":"beb4bb772b66a996403930ca892978cc7fa7d0df58ac8ba7732863220fbf33084841411e8db43ac9030623f45ead9d5651684f1fd604a078649ef078a9ce9bd3","ssdeep":"","tlshash":"a3218832003693f4d3e7f65b525320f6ea310a79d40763cbb108028e1fd837967b01a6","size":1289,"data":"","first_seen":"2025-08-09T07:15:13.72418Z","last_seen":"2025-08-17T16:47:25.758171Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/71/e6/44/71e644a3ca9fd45df24938c9840773ff.js","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb726a7d6c9ff6ef4791ea97c72111ca","sha1":"cd2f3fd55b2b36c262515f5b1624176f29c0eba3","sha256":"e695af4c16e0cd3364c3323652ef71bf079707a3609e3e04075c8951af2f51f2","sha512":"b14d884e0dfb36b1aea45dd83043aea65e292b387be6819893ab18508b377081515f1a4d423c7c8e993aef9bf920ffbfd143dbf26aa1b3fc7c4e35ef28f06ca0","ssdeep":"768:Y2bnYMm9jTqw648+QhS8u+Jcj/XcdNjN+mOdY08kUbTehzbcepwPf:Y2bnEY4x5O+jvccdY0U3fX","tlshash":"e063d7483f91b27802e6b8fa712fa61af0261c1195d8e0d8f503f4deae66719f035f25","size":72561,"data":"","first_seen":"2025-08-09T07:15:13.692208Z","last_seen":"2025-08-09T07:15:13.692208Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/d7/b7/c9/d7b7c97c13b1c59ade786a4425c5c4d6.js","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fe10639337a4edc4a414bc7424c08149","sha1":"aa54b6ed045c2478607215832b34d07cb9cadacd","sha256":"4c27fd06b8c1fa82f55e9d7c46bcb9737b826dc0f987be3021bcfad949536a9d","sha512":"3c5eacd082ecb8a17a8244eaeddae7831badc86e580faaf67c78d77c5778675b3cb503db6a4bc2fa9e18ef98f7dd49a39de7f56f95e307fe604a765fadf15718","ssdeep":"1536:SO/6hWbSTyJhKkoQhkmyC0E98k0RYqnhNzc/7ksqWPbIKau3l0gaTX6+IPC+:9JhKfEMRbhJIMuV0DxIPT","tlshash":"f6a3c6487f50f15c83aaa17b233f910ae02b4d42618d915ce513e5e8bf6eb0bf63e558","size":104617,"data":"","first_seen":"2025-08-09T07:15:13.711471Z","last_seen":"2025-08-09T07:15:13.711471Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pagead2.googlesyndication.com/pagead/js/adsbygoogle.js","fqdn":"pagead2.googlesyndication.com","domain":"googlesyndication.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"2e9e391ad98fbe1b2de0b7b4fa9ca904","sha1":"21d7771223e8286a06ad878af425094a40de32b5","sha256":"1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69","sha512":"defa1ba5ce4193014a4657fe394734634087d66c9db8024778ea2c3a59be02e38e0077725c7d000ff7046bea23070594f8942446c6068b4032d329d0716532b0","ssdeep":"","tlshash":"7731650e547cd5f601109cd6e52a3e24a036246b6e1930acf248e2246f3e04ff0ffae9","size":1648,"data":"","first_seen":"2023-05-06T01:21:43Z","last_seen":"2026-04-20T13:56:16.218686Z","times_seen":67356,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pagead2.googlesyndication.com/pagead/js/adsbygoogle.js","fqdn":"pagead2.googlesyndication.com","domain":"googlesyndication.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"2e9e391ad98fbe1b2de0b7b4fa9ca904","sha1":"21d7771223e8286a06ad878af425094a40de32b5","sha256":"1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69","sha512":"defa1ba5ce4193014a4657fe394734634087d66c9db8024778ea2c3a59be02e38e0077725c7d000ff7046bea23070594f8942446c6068b4032d329d0716532b0","ssdeep":"","tlshash":"7731650e547cd5f601109cd6e52a3e24a036246b6e1930acf248e2246f3e04ff0ffae9","size":1648,"data":"","first_seen":"2023-05-06T01:21:43Z","last_seen":"2026-04-20T13:56:16.218686Z","times_seen":67356,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=GT-NCLQ3SVX\u0026cx=c\u0026gtm=453e5861za200\u0026tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033766~105033768~105103161~105103163~105135708~105135710","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"eee67f75c13e578ea365ed66da97ed55","sha1":"9303f7018fb57a00443cc67bc6bd06ed99904247","sha256":"241ad90be66765f45a3cd1b7e6d5ce6fcd598403ecd9a2b5228628390a58d507","sha512":"20a0903eed58b1d55d38f4ae7dccff05c664fb5460e0ae2fe6df2ac879e2c7b8a8f1a570235cd4983f639c449ca0164f55f3a6d73192c8c49bc473616f04c18f","ssdeep":"6144:exP2NU1ddLnAyevGtkT2PG6B4xdJSVccEW:QPiMglcmdqzH","tlshash":"ff8419ce73d670669396f078503f018ba57b29a2b45cc899f189cce42e74a9a4137f7c","size":404951,"data":"","first_seen":"2025-08-09T07:15:13.714442Z","last_seen":"2025-08-09T07:15:13.714442Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"19b6c75a4dc95b827b74548759a54d04","sha1":"b1094203dc856274ec6a202603bba9701c47d784","sha256":"9ab9330051a5faf05bd04f6b15ef21a56376dfb77fb0152b41e47219c99ce441","sha512":"e3d4d2873f431c4ba77287457a7560b59571c42e629f1890a3a1e32876f38a80d1dde61b949d85c33d5e2404d67db0ca4268afc1f0d77ec25ea63c951ea51fb2","ssdeep":"","tlshash":"a541f9fb661535259c97f8a343cfb7981e6ec9a20b41c6cd7b1c83101b782fa8232598","size":2042,"data":"","first_seen":"2025-08-09T07:15:13.740761Z","last_seen":"2025-08-09T07:15:13.740761Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/init.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"173d440011fb764b2cd36875e99f7949","sha1":"260f5f35fb2eab64c052dbfc3417ba42f6bff1bd","sha256":"a10180f259209ed9c3525bbd44e666c5c407997b90b79170d14befbd262143f1","sha512":"f4c410d0a4d0a6f570982f4a59721cb4676602bfada116b4e80b0f28d569916e59fe36f3b84fe89c79e0f7ec0848693dc32eb65689a7732c461a6b43be9bf954","ssdeep":"192:3DCM2UKQob1oHXwzKYPeIny6Pv0GTGMHfcoEFaNAf3Ou2:3mJUKQoZWlY5y6MStEFVG3","tlshash":"2b1272983ae3606a5257207b413f5106f2b4896b0d8ce810b49cc5a4bffc97c537afb9","size":9579,"data":"","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.211417Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/ui/datepicker.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5c15bd4af856f6d6b583064ca537a0c1","sha1":"2fa6972cd70e64bd573058de292e4d451995b93b","sha256":"db5ffd916dbeb4938cc236cb3a42e73a56987f28c5deb9f3beccbe2c4af19307","sha512":"9dcd040974e342706a9b9520c21bf76b8d613f799c55ec793c83477797178ee9e97c19ed00b08250f14d4a2ac53b78d3d93e218d2267edaa774e6b382fe0b869","ssdeep":"768:2oWEZXteTlaCaedY5+R5SHf7cQipB72z1EuPLkhDWucxooqx:2OZXteTlaCaedY5+R5AipBqz+cxooqx","tlshash":"0cf2c51e30007d2a927b51a6053a3a179233095fad50c11cbd6ea6ee5b7cc4573befb2","size":36729,"data":"","first_seen":"2023-04-01T10:44:41Z","last_seen":"2026-04-20T08:53:43.686661Z","times_seen":6677,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c80497fd4085b844b8a4f8f4a8a4e756","sha1":"021ed1dd616c953d4218e83719a8285d9d5c0d65","sha256":"7a70022fbe9575c2b2e405143be3a2b7b40a49764479d783e66941fd2f83b172","sha512":"d595f70a4b09205c322258d007b23fa1a4d3960cf8de1b5a7644fe27f72dddf5b47b1a6e2ee33050db243c5c77e59cc455698d14c96d41351261dfcb6d331f55","ssdeep":"","tlshash":"a0a002bb566180292363241d5d1daf9854794447cd65a4c4ba8c52b85f45495501b60d","size":62,"data":"","first_seen":"2025-08-09T03:49:51.610605Z","last_seen":"2025-12-04T02:16:35.307997Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4917f792c39d4a033eff53b035ed6b4c","sha1":"d04b33259220d55070f3240aa384eeae68047edc","sha256":"2be27790ca1ae9cd359d261534581fa462609253075339b429f22138051ea42d","sha512":"48599e4d5afaa20f3b878f21472639519d54a0500536583b438fc3cf8204be9807a09b9f374b3468147d4a16dd1b7c747f7dbdaccadbbe806610a8a7409a42fc","ssdeep":"","tlshash":"87c02bebc144f2484091cc001cfcde41c310cc037c79003b72d04c2602e0971c4e135d","size":140,"data":"","first_seen":"2025-08-09T03:49:51.612349Z","last_seen":"2025-12-04T02:16:35.308938Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f27577f0703c84b0ebc3e5dfba5ef74d","sha1":"825b73f12fdc008ece702a12ff143ebf2a83b34d","sha256":"909565159d7251575fc2348ce0f9a00ba179b6e83820d02349eedc7253bc3ba0","sha512":"a619963067f051c21d540823cca31b4cdeb439bc495506fcb89c1123f9aea1ad7586307b87514b8a3d3d3dcddb595075d2136049a45d21ca5dc78dfae7e7a37a","ssdeep":"192:TONBhdRCNa+M/tugwkfF1Wjm9h8LoND2VuerBGjhbu2EMmp:TOzhdRCnxunQd48qBuPp","tlshash":"eb62d6cdf3a25d53e673207c44df059750227d0bcc5b4248b0ad96c56aeac1998e3bfa","size":14772,"data":"","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.940727Z","times_seen":176,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yp.thebangalapee.com/r4jiQ19Eo0nCLpCIU/81669","fqdn":"yp.thebangalapee.com","domain":"thebangalapee.com","tld":"com"},"ip":{"addr":"23.109.170.209","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-20T08:18:24.616527Z","times_seen":15658,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"2558419d59c321a07a88aa5281b74ec4","sha1":"c3a1b150ccec1e5471494b62576896507608d385","sha256":"e403b5c3bb57535d6e6704ce1ff2400cb1640076d423c90e656f68c94ac6d695","sha512":"2abc813b5e4e7afaad93a18090c0470aa2806d7738ddec841b2590584970f0f12a5e6a19b3e7e6ff969435a5ff5b44d088e5675c15911a3446ef1e295fdb7e73","ssdeep":"192:fXa1n1Fei1GjhPNgTRByxFHSeppo1w721BLjyS9kTw3NYLzpYoyq:fsUp/","tlshash":"9b42409a34b312761ba7b1bd874ba101b33a5457b0889dddfe8c83582f41a3942d67ec","size":12353,"data":"","first_seen":"2025-08-09T07:15:13.745531Z","last_seen":"2025-08-09T07:15:13.745531Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85386,"data":"","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"690c3c75416288056b9cc4a3f10e1682","sha1":"7a1681cf6e6e6e4184f31e4ba29da2f87635913c","sha256":"3dbcb4f88abfda273c7002c501425ea91610ecfdb633de68fadebaa95be614f6","sha512":"1a3d3dcdbc8ef44125dfac5b67d7d100fd049f6fb7a0f0053dd3c7a5c639f36c3b8586b3b28d1b0863b668462014fa45948777ddf3cc26b1897f1f8044671c26","ssdeep":"96:6ozvFynZv8QUs1tiKAf799/3yG8QUhQWW35nk1/DeCfMEDaH:3zvoV/KD9FJsQWW3lcbeCkCaH","tlshash":"d4a11bbf6e55243c9463a46b15ef7b182e2980575741ca8abb4cd7240f707f8cab09ec","size":4838,"data":"","first_seen":"2025-08-09T07:15:13.749567Z","last_seen":"2025-08-09T07:15:13.749567Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/ui/core.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c4e68a0f3463c0bd3c39eab38815e881","sha1":"0ce58644e9f3c5063a11453ff287c5ec096465a7","sha256":"ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f","sha512":"e871f258f625a5c8e8ec3848242352fd75dcb0f0b580333fce07625a6a2f53e83f22e4dd7492f2d12a880709d540de0bcdd9b335d853fe9cccfc0efccf718bce","ssdeep":"384:Sdw5JLVFVS3dufvQNaHCip8fuxNhBGX0CiS+w/pf2229FkFvd:XS36Z5vkO7kv","tlshash":"66a2d74db2053805c6f7a265503f525fb132e29cb106889df4a8d8ea2c7ee995073f79","size":21438,"data":"","first_seen":"2023-04-01T10:26:15Z","last_seen":"2026-04-20T13:00:40.027916Z","times_seen":41206,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"465b287774ce34eb83ead8af520c1149","sha1":"d7981fbda1f395b47c5a615aca55c730634d00d5","sha256":"24a9df5c9124b14e865bc4574068003fc22dd9815889607d6badbdf19d4256b3","sha512":"50731c1bbf08357195dc47e6f7c017fad11936c85fed20c3b0268399456c7a06bef299ae42a96b1adecd48ca032caf7e049ec9e73f7f77e9dcad2d9fb4919c04","ssdeep":"","tlshash":"f9f04c1d14257a3687b3128d9c790f1f6a5c50fa72440417f1f8b3291b6dc4ab06fc04","size":600,"data":"","first_seen":"2023-03-07T01:02:50Z","last_seen":"2026-04-20T10:34:27.682718Z","times_seen":5151,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"2d0c4fc5ed92e904fc976c2819a83226","sha1":"588e9f55329224f98dbb30895530e9046ae895ee","sha256":"e29589e3d187473a8cf259f32edfd867ac538a422ebf63d040e2185b82eee893","sha512":"6c98b6a25ed96e045caed17351f26d3e18c2ed96f095681f551ed6d05074b311845d68305abbe82e066f62c794e70f8ccd33d08b4560b98e740dafbbb14b888e","ssdeep":"","tlshash":"2c310a7fb71a181d91b7892704cb27241f3f49aea3c252c6075e067811601a9c9701f9","size":1564,"data":"","first_seen":"2025-08-09T07:15:13.75422Z","last_seen":"2025-08-09T07:15:13.75422Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9cd47ac5a0389a37b4d8e7d194e17c9a","sha1":"9121da7907e37462c10ce8616f06b5c22f640744","sha256":"ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda","sha512":"f7ff6034b5289ae3f1376f327cd525571d17089a0f6f2c59d57e0cd569fec28cfa316715cb6b8604cd62a07e74ddc14712e72c1aa07026861e6173455ab16154","ssdeep":"","tlshash":"8741b7b87831706899f3a026543f730371792a61a088c090c2b1dbe57cba7c2d3d7e0c","size":2149,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-20T12:57:53.547255Z","times_seen":16632,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/sandbox%20eval%20code","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"23c336606ee3a6d444b305153fa0e2e2","sha1":"473a2111970ae2a94b373e656d20c4bd4184d703","sha256":"305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60","sha512":"ab0470885483545a0306733fa3a067239e299e0b47d35f9769a763f65ba5e9d928ee364a66f9e577499ab0c452f34dc7a3a48a774ce3d09e56fd88d1989e84ba","ssdeep":"","tlshash":"d1b09b13a650156d3f1166b1b951a003a1d977055fb75501f006005b1440ea559dc194","size":128,"data":"","first_seen":"2023-05-06T01:21:43Z","last_seen":"2026-04-20T13:56:16.219611Z","times_seen":69120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/functions.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"feacc31ed4090fe1f91e589a95d84f31","sha1":"02faa66f783201d9e658f6559a26ebc66371a2ea","sha256":"b0a166be5d1e8e42a2bc7dd2b81500002332a68a5d42e75cc245641c0d65dfef","sha512":"d7024b554b9dc48412524912dcd323a9f159262f6c930f9b97038ea260b39afcbfd40c302c3f5c036dd6d0ff0f74de2d1e57f8212a4855c7ae0a9c624559abd1","ssdeep":"384:FhBg9UBfC1gkKIR0/VHZ1GuDdTaoyjpVDkDXH4VlrDA3H0:FhB+UBfCykKS0/VHZ1GuDdTaoyjpVDoS","tlshash":"35a25419e78c54936033086599be136871be4253be049e02beede0f53f98d3d31a7e69","size":22558,"data":"","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.214394Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"178a226cf5728e4ad7e77d5023ba39bd","sha1":"a114b1b69f5cfccaeb563ba3f907940e96796955","sha256":"da03e5070df7c57306da42b86d3f68453287ac0cd8d627184dfd0967b3dbb7da","sha512":"624cc009dcba3091f4f7c91f1a2d2d76617d0836f3d3c1f5db562330abb711da915f57823179e7340dc0fe892c3f7ddd4c815a2d7814a465189efcc0eae1bd59","ssdeep":"","tlshash":"a1f0e2187cb546a1056e286662ffd048788490a35254e9607e9dc91c2fd8bef1962b98","size":544,"data":"","first_seen":"2024-05-21T06:39:36Z","last_seen":"2026-04-18T01:50:01.418876Z","times_seen":524,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/functions.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf05a1eb35746ab75e731b86da902d94","sha1":"00a8a09b7b382d93dd4eb94d63b99af8a9218dd4","sha256":"4ae6443b76f31e9ce7a19aa2d14cdb4957a43d8e79ab0dac7cb34b7d24222038","sha512":"3b36b9968a2d9ea35abdb3bc9a5c9c5f45dad3f5e37c15bfec4e3953e6fb36fbb056970683497d4c418d7b8417abf1ceb8fb0d6a4aece625e66a4ce496ed84c0","ssdeep":"96:YCz1kYdKLfklGTGMHcWcoErtbaNAzQctFjcSjKom22:YCu/D0GTGMHfcoEFaNAf3Ou2","tlshash":"a69112bc6af324585013b16b867fa0046261860b0dc9fc04b8adc2946fdd53da3b8fb9","size":4477,"data":"","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.191064Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/fitvids.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5a210b5759cc3811be0578bf3ac77686","sha1":"92b3986002382a3feb7a31842beddc5dd5828241","sha256":"e7c402af2456c183ae74ccc238b7d49dbc9d87ae4e1245a09b9d68a487796913","sha512":"f66b3ab87ee00de23327a8ccf82ce344459703a2dfc13ee2b2bba44bfa11700a186d0d455ea0ec94601b29b9faeb3c0b07385b50effee177204f5d93898ed2cc","ssdeep":"192:ZBlEPNSJAFmsHQt4MVNcsTVj0GTGMHfcoEFaNAf3Ou2:Z0P3FvGRcsOStEFVG3","tlshash":"bde151bd26e32868551331af4a7f50087261846b0ecbf81c78add5856fcc92c6279efd","size":7112,"data":"","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.120917Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/superfish.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6a7b4aed3bc6412292761a470242b7d","sha1":"58874296ba2689c394301981eb1dcc38ba698f69","sha256":"38d223fe9d39a96ecc8910c092baa9e53dd218d564a9ae758a68b60a704f91f4","sha512":"347b548889cb67601cd8be7d8c685b69bdbaad0ab6ffac00b4ab29dcb76075f15a9c144e2a173818ca7d5044f59c515cc2adcbe8c2deb2a8f4376a1c4753861a","ssdeep":"192:JdVdwCC+fxaOWo0GTGMHfcoEFaNAf3Ou2:NyChfx3WLStEFVG3","tlshash":"adf193dcb7d3a0e25243a16b413f6104b272494f5888e408b47e95952fed92c6236fbd","size":7938,"data":"","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.103562Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7c82b2066168e0a26aec98521dcffa90","sha1":"5f8c11c40cd658eeec56cf0dbc4ae365efe2df72","sha256":"69b8ea5e4db2dedf2a2f729a939d3374f01359f3c8f2fbe722169ae535f96ee4","sha512":"b62f88bd86f418ce136dd795557ea6a8e0c44a15339ea315713c53b2e3c4b091794ba6c9e9bf90b70a6c5d1252e50bd09e7f7a0f24cf6aebaf5e29e96777d836","ssdeep":"","tlshash":"22f0dce236ca0c41400192f6af20ea3befcead08642acd19e14cd2dae40de54e09f536","size":470,"data":"","first_seen":"2025-08-09T03:49:51.616156Z","last_seen":"2025-08-09T07:15:13.758584Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a94b76e45c11675df9f26fd25a8e4359","sha1":"1cd29363bb1b514e6f7ef031f1831008df181f17","sha256":"4569f5c3704a88394335b0fabccd6460ba5e582c3058f9286f42cc589da02899","sha512":"e9d68bcb3111452f3f8680f31541dee265fa9dad9dfd27037b86796a3e6a709a0203e627a8eb13028c9e0db9d160ec5b02c3aa89bc59fe14c265c73d06aee2d8","ssdeep":"","tlshash":"f66197b9714e743b09638735502f720aa27f095864d9c02c7436ece06f74f5c609be2e","size":3403,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-20T12:52:08.24771Z","times_seen":16211,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/jquery-migrate.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5cfa2b481de6e87c2190a0e3538515d8","sha1":"0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68","sha256":"9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3","sha512":"51c4c1dbaf330ea0f6852659cb0fe53434f6ed64460d6039921dd8e82f7a0663eebfb7377dc7e12827d77ff31a5afee964eea91da8c75fa942acf6d596ef430f","ssdeep":"192:arprDN+e3IUefKSfI0bP1CMjt9kdgOFWIa/aC3+sZv9LRM:arprx6PfK2P1CMjt8FWIa2sZVi","tlshash":"9552c86d7566b9714eb732b9f03bd30b71b205cd5a0d8940d19cc8f6247d89e812bf68","size":13424,"data":"","first_seen":"2023-03-07T12:08:52Z","last_seen":"2026-04-20T12:12:58.882727Z","times_seen":18364,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"14da23a97be91346ddfa641e3c273ecb","sha1":"e926f53dbac2e0ff9d1962a2df78d634609f8e09","sha256":"486f5b11b16891252a1a66929dc13f96f015a2f80a42b69ea9b4e2c1fe464f0d","sha512":"9b07390449fb054d2b3b282bc2d46cf9dff4b6ed7ea644d1a80eadb214be0de14c38abb697c55f34fa42414e8f9b2d46068f5abe64e2345b835ce53fd6626af5","ssdeep":"","tlshash":"32c0225129a9048a438430a030b4225c76c3d1019d306410868be0423c56086409bcae","size":179,"data":"","first_seen":"2025-08-09T07:15:13.760216Z","last_seen":"2025-08-09T07:15:13.760216Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85386,"data":"","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4f608a02f678bf651495f96c04e8c2a","sha1":"2713e0cbd791bbd689b7226e7a58af9aad493103","sha256":"e55c778bde27fcace214447cb63c33b9936111ba1097022dafeba94c656661b8","sha512":"9cfb0e431b962eaa265f796b018f64b375305049a47666b845c60a817a12f7c87b456350e1073566acb8a0375f8fca141710660fb8702faba207863005117895","ssdeep":"3072:UqBci+zp3a20FxMXtW57bECM8+WwF/nhzy6MmE9bTBYiDX:yp0vUw6MmE9bTBJD","tlshash":"87142ac9b7da706693a3a978503f004bb17b7d92f80cd890e152d8d42e74aa90277f7d","size":192317,"data":"","first_seen":"2025-08-09T07:15:13.705115Z","last_seen":"2025-08-09T07:15:13.705115Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"curriculumoutcry.com/7580aa1ebe8a07025329f784529c8c07/invoke.js","fqdn":"curriculumoutcry.com","domain":"curriculumoutcry.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"introduction_type":"scriptElement","is_inline":false,"md5":"3492a32a6b88fbb271ce1ebcbce53381","sha1":"a9be9ff1817a4cbf310933e327fda7aa8b8d1599","sha256":"33028458916ffc1ecc558d2ac6c20d052c7eeb9534e9c610e064dfa5227fcb9c","sha512":"25f8f49fc3755eff8b620dc3b975ac5b7087219a77da2720b75bb3be63258b6b7064dc34a93c0e6f14e2d13de2a6c282f2d2ef7c947af0f6b1a6009b5dee7906","ssdeep":"384:lbnDZ2pmKf1BPXm2bBdMLlAwH3KQsjmTOlXqel+rn2NrL0uAfdtiOmuBc8Fg:xZSfhbULz3KQQmTO5qel+qL0PFcWg","tlshash":"cce208883f70b04d1776303b322f856ef9b5cd555488d89cd287ac952ab9b1ee437e0a","size":33011,"data":"","first_seen":"2025-08-09T03:49:51.554824Z","last_seen":"2025-08-17T16:47:25.304917Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9844483e9d08af67e7a81df178294550","sha1":"6a39305c829e8ad905d8ca7f2c3b7fdbbeb635f8","sha256":"9fdbfa00d0b135604e826f31cf40a9f6b802e701e00bc40461ee7b7d7e68b780","sha512":"1bf6a0537f3363fb14250d40af1fd8bdfc7b7772b9dd9afc85a866d1ff8151ab3a88e2ba6ce71b8c51fc3db1da36a5a540d8df19458252106a13446bc5c10a63","ssdeep":"","tlshash":"e9f0d3df74253d727266207af7bf8789702710656716c1519cc9a830201ddc9c0afd9d","size":655,"data":"","first_seen":"2025-08-09T03:49:51.622705Z","last_seen":"2025-09-13T18:24:11.258246Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/jquery.mmenu.min.all.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"70b0aa6e01d7f38befc6b8569779d8e3","sha1":"98870971a15eeadd70901981f1fc27460b7871f1","sha256":"37b13c8f30d908672e140b17346ea528c733b9060e80c967a57fd49d3f1dc0a3","sha512":"6fc957a10042794797d7fc4ec401c10793a62f27ed825c1bd54d6a16fc9d219c2cf712ea0f40aed8b5911b4f3845420dda335f8844ae70a198821fe0ff3fb541","ssdeep":"384:fGmjQfnjZb38KmMqcZ1ULlgAGTptbbPtfGuGZCvW2AGTgaMGxdWykdnStEFVG3:f5kfjV38Kmdch5bPwPZCvf6NykdNVG3","tlshash":"9cc20a9db09131b285a3a1b7a1af9009b533141e850a8d0c71bdd5cd8f7e41c66f2fbe","size":28289,"data":"","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.189599Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"dcc3f1b2ef1bd5142235a941a14f5d03","sha1":"66a02e43c13e4d0e9ae230143787fc0bf8fc84a1","sha256":"373ff3dc8944f5815029ea5c49b7cdd687c5ecbdcc30d8f0331d8cea865568a6","sha512":"0b4ca18aa10f80edab34265a9d50da7b5b3a9499ae8e55ece4d688e9bc4da5c0570b092706912e48895d252733d19ae4eff948b967272dd040b72d18b620cdb3","ssdeep":"","tlshash":"40c08c9bab042012e1443a8e2e832fc18dc54243bc721638f288c88460e043284a000c","size":145,"data":"","first_seen":"2025-08-09T03:49:51.621404Z","last_seen":"2026-02-28T09:52:25.921268Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery-ui.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ab197c5603e74e1b855b8e79e3ab4494","sha1":"440a67827802becb6e323bd57e9bae0c3a0a3fc9","sha256":"17399d3fa5ca20072efd1a9ddc06d010cce8761c6544b3a3f587ce0a6ca7283b","sha512":"453a7d0c02d161a841290eacb599bcd369edb4f3f3252facec4eeebb79fbe11fb46acca4516da1e65463bfb3c33e55294cc787d87444093d7484f287f3d6e1d3","ssdeep":"384:8B27S+bzKfkja1fC2sRJbfzzPUjzwyCl3+BIc:BnefkQkRJbfzzZc","tlshash":"2ea2934a72056e035ad7e270553f6a4bb73252c8a40488dcb578cece583ce59a1bbf7c","size":22224,"data":"","first_seen":"2023-03-07T12:09:19Z","last_seen":"2026-04-19T11:11:19.900523Z","times_seen":188,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/sandbox%20eval%20code","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"23c336606ee3a6d444b305153fa0e2e2","sha1":"473a2111970ae2a94b373e656d20c4bd4184d703","sha256":"305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60","sha512":"ab0470885483545a0306733fa3a067239e299e0b47d35f9769a763f65ba5e9d928ee364a66f9e577499ab0c452f34dc7a3a48a774ce3d09e56fd88d1989e84ba","ssdeep":"","tlshash":"d1b09b13a650156d3f1166b1b951a003a1d977055fb75501f006005b1440ea559dc194","size":128,"data":"","first_seen":"2023-05-06T01:21:43Z","last_seen":"2026-04-20T13:56:16.219611Z","times_seen":69120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/css/dist/block-library/style.min.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.244Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 12736\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6iVGQM8kmviUgr2O%2BiEkaMFcJLUL3cPLyYAoECYJH2cu05G2GrvRHDYVjfH9tB6G%2BamwubtmXXAfxmJoVeePkFWfgcZHflJhMs0P\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1d9b56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97517,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (48325)","md5":"47cdb0e81ea341ad27a1a0b0ba6b02d8","sha1":"6195a67b0b7f7919f07309e2c8ce71f3d4729d03","sha256":"aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4","sha512":"1b2523fcd9a315b111730717c88ef597081bca94601d9b5b7594d693b61293de6c1fe9d91e322daced1bcc611f78fb375d9f7caef603418d4a19769054248caf","ssdeep":"768:Fi44/Jj1eJYfD5n4CTb2u5SOV+UQ3ZoQsFvc7i9bGUg5zyH5Hi/UYvcHLrbuS/KT:AheJYf6W2u5SOV+UQ3Zo/xHHgf1E0Qz+","tlshash":"f993305417b0dcf939ffa73a5e5ee248a513aa41c24a9be7e076d190614ca490cf3b0f","first_seen":"2023-04-05T02:48:12Z","last_seen":"2026-04-20T12:38:40.809035Z","times_seen":13158,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/printThis.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/printThis.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 2864\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3%2FtuD9vmOQMwc3RuXDFd4P%2Fynvh0HCT2d0Ij5CGGdmhg83B%2F%2BMK2cbGjuh%2F%2FCplytjKmuzKFygSoMyMu1luQZYUPfsa%2FrbplbqBI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3dd456bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10125,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"6565840e51963c96c4983e25c7394458","sha1":"7c12e0b6ac680a32660069e5d85438aedef4d7a2","sha256":"2910df39c7d50e1f8e71aa7ccbd058b67653208f5a88b87018e7961b731040a5","sha512":"453c5ab9f7eca40dba8840ca5645d57f8dd0e8c7b8e85d629a42df368e01688cb3620445d522a1a4a330ad79f970784da494db07ea80db14c4753cd546a445bd","ssdeep":"192:bUqfM73/UJq4pFuXK1WW/UP8UHYMv7xP4z:hGOBsW+rv7dI","tlshash":"b422515a782351604972337cdfa63208fb6b01336110e661fdfe06a46fb095992b6fed","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.963311Z","times_seen":138,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/watch.457464494735.js?dev=e\u0026key=7580aa1ebe8a07025329f784529c8c07\u0026kw=%5B%22page%22%2C%22not%22%2C%22found%22%2C%22%E2%80%93%22%2C%22lustesthd%22%5D\u0026pst=1754723744\u0026rb=\u0026refer=https%3A%2F%2Flustesthd.cfd%2Fwp-content%2Fcache%2Fmin%2F1%2Fwp-content%2Fthemes%2Fbonsaihd%2Fjs%2Finit.js%3Fver%3D1746698883%2F\u0026res=14.3095\u0026rmtc=t\u0026shu=75afbcb3db87bc52852339543d008dee88984e144f2e95fb7d1bcf6ec673cf195f4d4ebdb83e54960a225418f6266a4a49d1d186782ddc3db7dd260f96878be8b2c48ce2f4600b240da93ce5deb380a6836eaf6e92a47693a484\u0026tz=0\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /watch.457464494735.js?dev=e\u0026key=7580aa1ebe8a07025329f784529c8c07\u0026kw=%5B%22page%22%2C%22not%22%2C%22found%22%2C%22%E2%80%93%22%2C%22lustesthd%22%5D\u0026pst=1754723744\u0026rb=\u0026refer=https%3A%2F%2Flustesthd.cfd%2Fwp-content%2Fcache%2Fmin%2F1%2Fwp-content%2Fthemes%2Fbonsaihd%2Fjs%2Finit.js%3Fver%3D1746698883%2F\u0026res=14.3095\u0026rmtc=t\u0026shu=75afbcb3db87bc52852339543d008dee88984e144f2e95fb7d1bcf6ec673cf195f4d4ebdb83e54960a225418f6266a4a49d1d186782ddc3db7dd260f96878be8b2c48ce2f4600b240da93ce5deb380a6836eaf6e92a47693a484\u0026tz=0\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1 HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nReferer: https://lustesthd.cfd/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Y6mOTd5ZmpcDMNCqGObIiJcy6Posw9wkHd6f6dtoFPI\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\naccess-control-allow-origin: https://lustesthd.cfd\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; expires=Sat, 16 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\npdhtkv=true; expires=Sun, 10 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\nuncs=1; expires=Sun, 10 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\npdhtkv5=true; expires=Sun, 10 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\nuncs5=1; expires=Sun, 10 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\nu_pl18882734=1; expires=Sun, 10 Aug 2025 07:14:44 GMT; path=/; secure; SameSite=None\r\nx-envoy-upstream-service-time: 22\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 9002383bbaca5c49c75298de74c44632\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4871,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (3995)","md5":"caaa80299ebdbbf4cb07ed9b0913e797","sha1":"84370872d5d75a01f7018654f563a46da6c6d4c5","sha256":"6be05e4e5a2d65c152c323e7a150d5d082e9faaca02b8d09f6adef937ac86f6b","sha512":"ddc22305c64ef8e8842445f9054c1590d60663c75fb493c1161acca183cae46230b1f6a15692f69675a7af4f52ccb9cda6648c82e130b2504ead7df175c15f9d","ssdeep":"96:zozvFynZv8QUs1tiKAf799/3yG8QUhQWW35nk1/DeCfMEDaH:kzvoV/KD9FJsQWW3lcbeCkCaH","tlshash":"30a12abf6f55203c9463646b15eb7b182e29c1571701ca8abb4cd7240f707b8cab09ec","first_seen":"2025-08-09T07:15:13.655288Z","last_seen":"2025-08-09T07:15:13.655288Z","times_seen":1,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/img/close.svg","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/ssp/interstitial/center_banner/2/img/close.svg HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:19:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xpYnCpksgiXcvbLcVMmto5spoGlbrwSYf7SPyD3tSO2WmkiFv0uZPKK%2FuzjOuB0l2j3qvOJIIXvBl3q8gO68Y%2FoVvrhCsQpNvSx0%2FdbV\"}]}\r\nage: 80215\r\ncf-cache-status: HIT\r\netag: W/\"65aa8501-9c7\"\r\ncontent-encoding: br\r\ncf-ray: 96c5755e6fb656af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2503,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1b6231336753101ab916ff3bc2644225","sha1":"9e0ebaf400b0cdc45a1d40523ea5479205fdd2b2","sha256":"4d6367626004a96e47e82fddaf52a5ee39c7ec20e34d493d6e01c275bb9e3772","sha512":"6ec24bc79813a6de3e5d6f65d9d34960d3ab64f2befdcb0475ebc2f81a5ed32d9430abf4c464db1bf31e9d90e3a2b9f857890138fb5a41ac8a58e0099311d42d","ssdeep":"","tlshash":"4951e93482f6185c9ccd8eace6d418191c60a46b824dc1def5cc7951ef4a502bc7a298","first_seen":"2023-12-05T16:53:58Z","last_seen":"2026-02-03T01:05:39.198036Z","times_seen":1301,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/pixel/sbs?c=1","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:47.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /pixel/sbs?c=1 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:47 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/css/iziModal.min.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/css/iziModal.min.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 16197\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aRy8SyMbpcg9PaiWspC%2B9co9Q5OhW1ZgucJTiLWaS25POqx63u0QD8TGDC1Wsashgk9fby1qPMcDMIm43BTGeHT2a%2BjSPFpHO%2Bjm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1dab56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":85897,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65472)","md5":"c26ddc5863b4ea7a6675a2f31ebd5941","sha1":"1de3f32bd75786589f1e36b980e54edab72bdc60","sha256":"76983002cc75af5ea1cfd215dd22baa1b1bb27a6c5b08a5dd3129f7ce12ca9e0","sha512":"490e950692916e730291797047ce39f61119c5115d7cf070f0f0f7fe191428db3429003a4c44f27c0b0ee9ea06735e4bc357ed02c5cfc9f0d72b5998e5d9afaf","ssdeep":"1536:4LaDvZTsJrv5S0nFefFyG6MnutZASLhZSCENUK5Zxyw1tGGj1+l3xi9G:6FAeHKUK5ZxywOG47i4","tlshash":"8983291e5d9f2e0c53928a9282ce7ddc2d2e8f5a19520cde33c53d0f8a4671992d729f","first_seen":"2023-05-10T09:20:42Z","last_seen":"2026-04-05T08:58:32.45378Z","times_seen":48,"resource_available":false,"data":null}},"time_used":202,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":201,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery-ui.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/jquery-ui.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 6769\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lQQnBEFkZLPV%2F2LHAfCM5kl5ckoHLX68KBIiuo645rnr7uuZF6hEs4P%2FocVdI3PhKGNfnUv08T69gJrwrzTyTFsQxEb8bEd6zr3M\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dcb56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22224,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (22023)","md5":"ab197c5603e74e1b855b8e79e3ab4494","sha1":"440a67827802becb6e323bd57e9bae0c3a0a3fc9","sha256":"17399d3fa5ca20072efd1a9ddc06d010cce8761c6544b3a3f587ce0a6ca7283b","sha512":"453a7d0c02d161a841290eacb599bcd369edb4f3f3252facec4eeebb79fbe11fb46acca4516da1e65463bfb3c33e55294cc787d87444093d7484f287f3d6e1d3","ssdeep":"384:8B27S+bzKfkja1fC2sRJbfzzPUjzwyCl3+BIc:BnefkQkRJbfzzZc","tlshash":"2ea2934a72056e035ad7e270553f6a4bb73252c8a40488dcb578cece583ce59a1bbf7c","first_seen":"2023-03-07T12:09:19Z","last_seen":"2026-04-19T11:11:19.900523Z","times_seen":188,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/uploads/2024/02/cropped-lustesthd.png","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/uploads/2024/02/cropped-lustesthd.png HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: image/png\r\ncontent-length: 33726\r\nlast-modified: Sun, 11 May 2025 08:09:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IfLcOjIa7O8TKu7SF5l8fiIO4y0PdNz1HtfIMPDd76C4M5V5P8%2F2%2BnBq3gucLcuSHcQu9KMvCdNeBvtgFgNarxbeLcM%2FOkavcFjh\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3ddf56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33779,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 502 x 115, 8-bit/color RGBA, non-interlaced","md5":"107aeec141e892ef7c26066b7d37ba4d","sha1":"73a79804c34bdb2f54f02b68a0b39c70711cb687","sha256":"c127782b7512a324b3448ff16f4b85df5322a4f29626f47ca71d776b7ee0c41b","sha512":"9ca0536433289ba6c919f1d26c9a825c85cf66b474f74f77c575c021e3ad09671e2b4c09b2110df9b371fbeec3ad1f051b19bbe59825633ff3b136d189eebf84","ssdeep":"768:ZvrvT+I0UKV/Sn+TueVXnAk2je3gq9tqqDxe0eLWL/Ifxdo:1v70UK1Sfedn728EqDPeLWM5S","tlshash":"c3e2e1dbe75d3ca2da5289bd84c8f503cb762c1a8239334bfb7523c950d72f54248945","first_seen":"2024-06-18T06:14:41Z","last_seen":"2025-12-04T02:16:35.13456Z","times_seen":12,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/ui/core.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 7099\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=29oZV6ssiAMGMiPGJGeMM1U6zVJPsjJTNJsCX%2BpOLRSVJxNuZzsBhQBDauXAlhwTOlpC5YjDHGFCnft0jdmcrfL9sKr6E6Z5xOJY\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3de356bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21438,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8189)","md5":"c4e68a0f3463c0bd3c39eab38815e881","sha1":"0ce58644e9f3c5063a11453ff287c5ec096465a7","sha256":"ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f","sha512":"e871f258f625a5c8e8ec3848242352fd75dcb0f0b580333fce07625a6a2f53e83f22e4dd7492f2d12a880709d540de0bcdd9b335d853fe9cccfc0efccf718bce","ssdeep":"384:Sdw5JLVFVS3dufvQNaHCip8fuxNhBGX0CiS+w/pf2229FkFvd:XS36Z5vkO7kv","tlshash":"66a2d74db2053805c6f7a265503f525fb132e29cb106889df4a8d8ea2c7ee995073f79","first_seen":"2023-04-01T10:26:15Z","last_seen":"2026-04-20T13:00:40.027916Z","times_seen":41206,"resource_available":true,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":132,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.storageimagedisplay.com/si/26/b1/b4/26b1b42b2bc32fe34cfed00feb455205b13d7bce36c6a14e495eedb149e20eb0.png","fqdn":"cdn.storageimagedisplay.com","domain":"storageimagedisplay.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.storageimagedisplay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 10 Jul 2025 02:33:11 GMT","end":"Wed, 08 Oct 2025 02:33:10 GMT"},"fingerprint":{"sha1":"06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9","sha256":"CF:05:58:46:C3:07:3F:B6:A6:8D:42:F2:3B:3D:91:36:93:10:CB:D5:89:47:A3:62:26:D2:F3:BA:AC:51:0E:B7"}}},"request":{"raw":"GET /si/26/b1/b4/26b1b42b2bc32fe34cfed00feb455205b13d7bce36c6a14e495eedb149e20eb0.png HTTP/1.1\r\nHost: cdn.storageimagedisplay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: image/png\r\ncontent-length: 35770\r\nserver: nginx/1.21.6\r\nlast-modified: Wed, 16 Jul 2025 01:28:27 GMT\r\netag: \"6877003b-8bba\"\r\nexpires: Mon, 11 Aug 2025 07:14:46 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: ah0543\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35770,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x400, components 3","md5":"cc2e506b088dc9352f777cc2f9b6ab52","sha1":"7501a789652103e6a061254b98988eb1fc4604a9","sha256":"4a4c5124fb64a8b54bf86805dadaa5dae029c4fa23215bf684e1dd458a1827e8","sha512":"f332c491c2f146413124a8377a75ea12e8c70c5e14daba9315c931a492f188bf67fba828cd2b9a9b98807808d20c935e6ebf829e7160aec28e7c2da5b6fff71f","ssdeep":"768:CRLEU27zHJVOa6G4m3zoq/qR+7W7yA0IwLUJs0cRYIEy:sglHvOtAcq/qwW7yA1wkLIEy","tlshash":"25f2e1469102865be5348a3ab9e213e9f32d156d4bcd1b1e889d1fe20b63f12c8ad3c5","first_seen":"2025-08-02T11:30:48.476089Z","last_seen":"2025-09-13T01:15:08.252313Z","times_seen":28,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/ui/datepicker.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/js/jquery/ui/datepicker.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 10893\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rKg2nko3bXkpEukrtOGUAM8QoO1KZ0HyNsNxG9L4mqGWKY6TB8TLVL3buvGQF3boVY9CE85sOdKN0Jglk7l8SDENDxXh3El8fAEv\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4de956bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36729,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36546)","md5":"5c15bd4af856f6d6b583064ca537a0c1","sha1":"2fa6972cd70e64bd573058de292e4d451995b93b","sha256":"db5ffd916dbeb4938cc236cb3a42e73a56987f28c5deb9f3beccbe2c4af19307","sha512":"9dcd040974e342706a9b9520c21bf76b8d613f799c55ec793c83477797178ee9e97c19ed00b08250f14d4a2ac53b78d3d93e218d2267edaa774e6b382fe0b869","ssdeep":"768:2oWEZXteTlaCaedY5+R5SHf7cQipB72z1EuPLkhDWucxooqx:2OZXteTlaCaedY5+R5AipBqz+cxooqx","tlshash":"0cf2c51e30007d2a927b51a6053a3a179233095fad50c11cbd6ea6ee5b7cc4573befb2","first_seen":"2023-04-01T10:44:41Z","last_seen":"2026-04-20T08:53:43.686661Z","times_seen":6677,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/images/search-icon.png","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/images/search-icon.png HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/themes/BonsaiHD/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: image/png\r\ncontent-length: 258\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ipiv9p5BekCkLWbPM9lQJc3nAj%2BklB3MmOwR2%2F9DOsNX%2FwPMz%2FYJWZNEUQ5%2F%2FZcSD%2F1ngYqJzAGN64tIxSm8nirOHbGujZxCG%2FI0\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754fa9b156bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":285,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 19 x 19, 4-bit colormap, non-interlaced","md5":"5b7871c9bfddd904436b4d45f3f17c5f","sha1":"71c7efe61f4ad9c5f16778c4e2def1f062049d15","sha256":"1c55d8352d1e8621e0671fdbcaf219091290fba8d17e129a798c90a58bef181f","sha512":"620655a056f6989331151658eeac4113580d915a755e24bd271243003bfb2ae27a177216674d8fcc974c10b751428592c43291c64def06d36a2699e2bbfab00a","ssdeep":"","tlshash":"a6d097daa41a3d82c38d2823d1002aa2cc360d087811970215c337b324b028af3ea2d3","first_seen":"2023-05-09T23:28:06Z","last_seen":"2026-04-13T21:53:02.105323Z","times_seen":345,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 4712\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y4N5tzJnTaZkgVD%2FUgCTPvy3gZtRbxNjEdjfttHAS7XwDeOJXYXuFlXoDwov%2Bd9LBgjEk6tWXW0xuM4phSvxTQT0nUHQ9k%2FxLiFZ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754ffa0f56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14772,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (14604)","md5":"f27577f0703c84b0ebc3e5dfba5ef74d","sha1":"825b73f12fdc008ece702a12ff143ebf2a83b34d","sha256":"909565159d7251575fc2348ce0f9a00ba179b6e83820d02349eedc7253bc3ba0","sha512":"a619963067f051c21d540823cca31b4cdeb439bc495506fcb89c1123f9aea1ad7586307b87514b8a3d3d3dcddb595075d2136049a45d21ca5dc78dfae7e7a37a","ssdeep":"192:TONBhdRCNa+M/tugwkfF1Wjm9h8LoND2VuerBGjhbu2EMmp:TOzhdRCnxunQd48qBuPp","tlshash":"eb62d6cdf3a25d53e673207c44df059750227d0bcc5b4248b0ad96c56aeac1998e3bfa","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.940727Z","times_seen":176,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/css/style.css","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.033Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/ssp/interstitial/center_banner/2/css/style.css HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:19:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"65aa8501-10a0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qbbdWNan5pL9zuTCzG3bRwsKP%2Bt3jQdEkxx%2Bp%2B%2FWIlamOCfl5YNAE755gcpKr%2FKLBpiwyPaTl5oTYppCWvJ0z1Tyb6iZTK3onmiqUP0T\"}]}\r\ncf-ray: 96c5755dfefe56af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4256,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"082401cb43723850f7fb48dc7f8d4af6","sha1":"d7a312aee231235ac7ee7a5f4497d919009f747b","sha256":"aac90d87fe360b313922abbb3baa5ce9b67edf5c468764f7e165485af508bc5c","sha512":"a6f61ea1079c506b732c9e4e5521bd9536f2e39d58cc6a11a55086dd8bbc2252987b611cb62f79fec462cc086c2242ce14d5db43ac10dfa88a00d1f33266ed98","ssdeep":"96:iTMXkG4oLrBhAXHbfylUMXHbfyMfSxzcjhUmBCmS+AJx3:IMX3JGXHTydXHTyG6zOhjBCmS+AJx3","tlshash":"4991ad9726231604b807e8542fa52b4353688013d64fe4b53ec26b8c8fcb6ccd9e739e","first_seen":"2024-03-12T11:20:16Z","last_seen":"2026-01-27T09:02:28.976088Z","times_seen":913,"resource_available":false,"data":null}},"time_used":523,"timings":{"blocked":43,"dns":19,"connect":3,"send":0,"wait":437,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/js/script.js","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/ssp/interstitial/center_banner/2/js/script.js HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:19:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8KNNeQ%2BehbS%2BymZcs1yeWm7ueMflwoYZlrdAbu1yvrTStq%2BGbOr4xZJqisxH2Y%2F1e1UdJFAWVA50AoG%2F1Dy0e3ODyxGqwd67wZNQQpox\"}]}\r\ncf-cache-status: MISS\r\netag: W/\"65aa8501-3cf\"\r\ncontent-encoding: br\r\ncf-ray: 96c5755ee85456af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":975,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"bfd47b5dfff6e6feac7624980fe9f680","sha1":"b437c81b3addc9d7154b96f495b2eb82148e5101","sha256":"b53d941e5ec9ce3482ce722008c8dfdae35f630aa4a7cb7c4bdd0e7342fc63fb","sha512":"edbc2509ebf5b53042d1219d29ae84b0c5c8556a9aa8b34d1f3f943dd6cf8e424287bfb29ca98fe7d4776cd3a5efeae11ca77833892030ab67a156a1393d6f8d","ssdeep":"","tlshash":"61115b37116982f46357f027a21725daea32029be81b9717721c05cd0fd47b913f96e7","first_seen":"2023-12-05T16:53:58Z","last_seen":"2026-02-03T01:05:39.247335Z","times_seen":1197,"resource_available":false,"data":null}},"time_used":422,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":421,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-09T07:14:42.116Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/ HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 09 Aug 2025 07:14:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLocation: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=abl8dqm3fl%2FeXaNyp5xNztQswUF7GotTA7VeQhSZnt%2B%2FReZAaeosGqcbXgz8ik%2Bs7dXsi8xEQd6TAX8xX%2FHl%2BxuMc%2B5n7lfuGumj\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 96c575453b610b45-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63961,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/css/classic-themes.min.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/css/classic-themes.min.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 210\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=18ACkqsNPx9xJoI%2B7N9i4AgJD%2FVCmz3s6kPGt06CYSxLiJb91y5ocIJVmtesmdqOqFo2snhUDYq%2Ftp8PLKoEHkkS1yC10TUkJw90\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1da156bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":291,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"1a0804b1a9d09705657f91fe7cad4c5a","sha1":"feeece6f0b3e0bcf090547c475329a2772f6b26b","sha256":"dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48","sha512":"9bc7a9fe6cb51765537f21a79f015d1de49aa8b1de2613e072c5e108d88ca1877df320c80842ee7c512bfcd29b9166bdc3c73919b267dd8a20c1962275fa1738","ssdeep":"","tlshash":"9bd02bd1769f04e1701fe25c4515458990b40180ccb39fb1d4dbf0dee5e90f936ea68b","first_seen":"2023-04-05T02:48:12Z","last_seen":"2026-04-20T12:38:40.789958Z","times_seen":19272,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":134,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"curriculumoutcry.com/7580aa1ebe8a07025329f784529c8c07/invoke.js","fqdn":"curriculumoutcry.com","domain":"curriculumoutcry.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"curriculumoutcry.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Jun 2025 21:30:31 GMT","end":"Tue, 09 Sep 2025 21:30:30 GMT"},"fingerprint":{"sha1":"E7:31:C1:13:C4:78:79:29:2C:87:74:61:93:E6:69:99:81:D8:40:0D","sha256":"A3:E8:76:DA:14:43:EC:4C:0E:E9:29:CF:52:78:80:88:34:BB:87:87:6F:FD:A9:A6:E0:5F:A3:A6:91:B4:D3:D9"}}},"request":{"raw":"GET /7580aa1ebe8a07025329f784529c8c07/invoke.js HTTP/1.1\r\nHost: curriculumoutcry.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:43 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 13033\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nHost: curriculumoutcry.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: a8c6d8a607b1f82077d2fe5df6eddaa3\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33011,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (33011), with no line terminators","md5":"3492a32a6b88fbb271ce1ebcbce53381","sha1":"a9be9ff1817a4cbf310933e327fda7aa8b8d1599","sha256":"33028458916ffc1ecc558d2ac6c20d052c7eeb9534e9c610e064dfa5227fcb9c","sha512":"25f8f49fc3755eff8b620dc3b975ac5b7087219a77da2720b75bb3be63258b6b7064dc34a93c0e6f14e2d13de2a6c282f2d2ef7c947af0f6b1a6009b5dee7906","ssdeep":"384:lbnDZ2pmKf1BPXm2bBdMLlAwH3KQsjmTOlXqel+rn2NrL0uAfdtiOmuBc8Fg:xZSfhbULz3KQQmTO5qel+qL0PFcWg","tlshash":"cce208883f70b04d1776303b322f856ef9b5cd555488d89cd287ac952ab9b1ee437e0a","first_seen":"2025-08-09T03:49:51.554824Z","last_seen":"2025-08-17T16:47:25.304917Z","times_seen":3,"resource_available":true,"data":null}},"time_used":801,"timings":{"blocked":332,"dns":82,"connect":92,"send":0,"wait":98,"receive":1,"ssl":193},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"curriculumoutcry.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.368Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:11:38 GMT","end":"Mon, 29 Sep 2025 15:11:37 GMT"},"fingerprint":{"sha1":"F9:52:70:4B:81:A8:F8:39:E6:E7:96:8F:EA:FE:17:FD:96:C5:32:E3","sha256":"D8:C9:87:B5:89:5E:D4:F4:8D:FD:98:3C:31:39:42:67:D3:20:27:14:A9:AD:F2:AB:97:A4:48:0F:94:F0:FF:A2"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 28254\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: bb1f0a2386d56dba3191a4383a5f8331\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85386,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"resource_available":true,"data":null}},"time_used":158,"timings":{"blocked":59,"dns":0,"connect":17,"send":0,"wait":21,"receive":19,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/impr.gif?sid=H4sIAAAAAAAC_1RTzYscxRuu3uQXfujBj4gHTyOIKGRnq7uqu6uTgxhjJBiTkERy0Et99Wy5PV2dqu7p2cFDSEByksWDeOx9Z5NFDYuCV0FmvUWEjKc9ZC_-CWLwKLNZ2Pge3vd5-umC5y2e-mKz2UcEGr535SM7MUXBV-I-7r11w5TKtr536XovxH18pnfDlAk90xsvmhudDgnt47d7H2i5ZlciHGIc4rB33jid2_HKgQqmepCF_Qz3adQPYwpj91_umwA8D0CN9tHLYNT8hT_zT8DIGZTDH85pv1bb6tT7w6bgtXUwUtsfl2ulbUsYHsHcBZCX24d_g_VzhL5ZAltuH24AdrS12ACEmaOlVx-DKLcPbYIY3XvqVBSgSxDqeWhHM9DFLhg-A2nvgFGPEIBUcOkylMP7l6xr-fpTlS_UOTr-5C8w7Rwdf_wKlMOds4UZ967ZoqmNLT2M8w7MeAZmMIOq2YV6sgSm3QVZ3wajfkcrTy5COdy67AsLRu29ETHCE6L0chZGYpkyQZdZxsNlTHgoI62VYOHBFZl8BtwvQeMDaEwATR5AUwUwVHs9ihmVISdJnimZYsopVVrgjEUY80ym0MiF9w2oqw2QxQZIdwsqdwvWzFdzFPz_9KN4Aq75Bfzq3k9pzHMhBVGCpULGEYsjQrKYEoUxU1ozljGqQ0rzSGdxLlIVCpknWiYpkXmYxTlVVAslGNExzRLMoyimIcuTKEk45TRToQpZkrJIKUmUSJWKEpxnCUuZ0ExEkjKpo5wmGIuIYsUzInWstCAM84SRRPM80VnEaZpkhFNGwasAfI1gpDpoNYLWI2g5gtYgaGsE7ai7pwof-e6-KnwjwsMZHU7STW092OT3bD3QJQLuNsCpbstUN_0dkPWx6ST3amoXjYu6m3Khus1qH720yETQ6-3Amt7rpTHDnIdaaMZxiqOYRFmeMhpHmWQSp-BNB8YvAfcBTMwcvf7mSajMHJ34h4Hgu-CLXZDmReDN_4C3U4Ix8NVpFGOYlDshG9qR0eP1Sd-6ASjbQVUfh3o92Cz20WsH6fz0ty9By4fosEC6DirXwWfmVwSD4u70qm3R1lXbevTj5ao2QzPhi-Req3mtT3z3oV5vrVMXzvmNb9-VC2EBH1zXvr7IS2XKgUffnzVKaXfeOqnRzxf8DS2uNH71bOPKprp45b3zF4aV094bW86Amzl6bv8USDNHJ2_uHrxKevtzMG4Grulg2DzjtboFvjri3iJwxREXFYK26aYuEkcfC4Og0Eeciw78M1wc4anji9PcdJv-LgxcALy-A-Wwg5HrYFR0wIsN8M2xaV25h-_8QQ4KRBFMReHQlijcQjd7vZzoSGLM0iQkLNchoUrmMaOZSjgmREPt56tf_63-DQAA__9zaADJbgUAAA==","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /impr.gif?sid=H4sIAAAAAAAC_1RTzYscxRuu3uQXfujBj4gHTyOIKGRnq7uqu6uTgxhjJBiTkERy0Et99Wy5PV2dqu7p2cFDSEByksWDeOx9Z5NFDYuCV0FmvUWEjKc9ZC_-CWLwKLNZ2Pge3vd5-umC5y2e-mKz2UcEGr535SM7MUXBV-I-7r11w5TKtr536XovxH18pnfDlAk90xsvmhudDgnt47d7H2i5ZlciHGIc4rB33jid2_HKgQqmepCF_Qz3adQPYwpj91_umwA8D0CN9tHLYNT8hT_zT8DIGZTDH85pv1bb6tT7w6bgtXUwUtsfl2ulbUsYHsHcBZCX24d_g_VzhL5ZAltuH24AdrS12ACEmaOlVx-DKLcPbYIY3XvqVBSgSxDqeWhHM9DFLhg-A2nvgFGPEIBUcOkylMP7l6xr-fpTlS_UOTr-5C8w7Rwdf_wKlMOds4UZ967ZoqmNLT2M8w7MeAZmMIOq2YV6sgSm3QVZ3wajfkcrTy5COdy67AsLRu29ETHCE6L0chZGYpkyQZdZxsNlTHgoI62VYOHBFZl8BtwvQeMDaEwATR5AUwUwVHs9ihmVISdJnimZYsopVVrgjEUY80ym0MiF9w2oqw2QxQZIdwsqdwvWzFdzFPz_9KN4Aq75Bfzq3k9pzHMhBVGCpULGEYsjQrKYEoUxU1ozljGqQ0rzSGdxLlIVCpknWiYpkXmYxTlVVAslGNExzRLMoyimIcuTKEk45TRToQpZkrJIKUmUSJWKEpxnCUuZ0ExEkjKpo5wmGIuIYsUzInWstCAM84SRRPM80VnEaZpkhFNGwasAfI1gpDpoNYLWI2g5gtYgaGsE7ai7pwof-e6-KnwjwsMZHU7STW092OT3bD3QJQLuNsCpbstUN_0dkPWx6ST3amoXjYu6m3Khus1qH720yETQ6-3Amt7rpTHDnIdaaMZxiqOYRFmeMhpHmWQSp-BNB8YvAfcBTMwcvf7mSajMHJ34h4Hgu-CLXZDmReDN_4C3U4Ix8NVpFGOYlDshG9qR0eP1Sd-6ASjbQVUfh3o92Cz20WsH6fz0ty9By4fosEC6DirXwWfmVwSD4u70qm3R1lXbevTj5ao2QzPhi-Req3mtT3z3oV5vrVMXzvmNb9-VC2EBH1zXvr7IS2XKgUffnzVKaXfeOqnRzxf8DS2uNH71bOPKprp45b3zF4aV094bW86Amzl6bv8USDNHJ2_uHrxKevtzMG4Grulg2DzjtboFvjri3iJwxREXFYK26aYuEkcfC4Og0Eeciw78M1wc4anji9PcdJv-LgxcALy-A-Wwg5HrYFR0wIsN8M2xaV25h-_8QQ4KRBFMReHQlijcQjd7vZzoSGLM0iQkLNchoUrmMaOZSjgmREPt56tf_63-DQAA__9zaADJbgUAAA== HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Y6mOTd5ZmpcDMNCqGObIiJcy6Posw9wkHd6f6dtoFPI; uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl18882734=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: image/gif\r\nContent-Length: 7\r\nConnection: keep-alive\r\naccess-control-allow-origin: *\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 2\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 19e0d1de9b7a589aae9d89f9fdeebfe7\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:300,400,700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css?family=Roboto:300,400,700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 09 Aug 2025 07:14:46 GMT\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16755,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"e9d2e14beb088f37fae98294940a9dcd","sha1":"1dafc3c55550249c8c2d782d5616c7b445c8e005","sha256":"f2e491cc46d3fcba81f729065d622bd722751d4a2e7f80b479aa64a92c17b5c7","sha512":"64025ea9b660d5e1d45a593a27345e152ba6b5ef95daceee5e43201319a555eb5457cfe1ecdcc725202063a22c5f406f3ba4607863d5b714c378f144bcdea5f7","ssdeep":"384:pjf5jgjPjrjyUj/qY4+j4jYjpjfMj1jWj6jyhj/qY4XjNjtj4jfdjkjDj3jyQj/E:p90DXOU/R08toBy+Oh/EBpcZwPLOQ/VK","tlshash":"e5722291041740009b835ce223cebf35fe1f92117152d0b5abfd9b6badcbc66526939d","first_seen":"2025-06-02T17:27:24.212334Z","last_seen":"2026-01-19T16:22:17.33804Z","times_seen":5482,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/fitvids.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/js/fitvids.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 2666\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B0FA81vgyAA41iOWAaYMm4Kmq9vjOsraQ3vrxAQtRQjsEWJHyjm6ZgkE216nwHx4BhGvD%2BAlVFxJ4QqHdysUnMAeua%2Bn%2F3HaqlQz\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4df756bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7112,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"5a210b5759cc3811be0578bf3ac77686","sha1":"92b3986002382a3feb7a31842beddc5dd5828241","sha256":"e7c402af2456c183ae74ccc238b7d49dbc9d87ae4e1245a09b9d68a487796913","sha512":"f66b3ab87ee00de23327a8ccf82ce344459703a2dfc13ee2b2bba44bfa11700a186d0d455ea0ec94601b29b9faeb3c0b07385b50effee177204f5d93898ed2cc","ssdeep":"192:ZBlEPNSJAFmsHQt4MVNcsTVj0GTGMHfcoEFaNAf3Ou2:Z0P3FvGRcsOStEFVG3","tlshash":"bde151bd26e32868551331af4a7f50087261846b0ecbf81c78add5856fcc92c6279efd","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.120917Z","times_seen":12,"resource_available":true,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"3.68.252.134","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://lustesthd.cfd\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; expires=Tue, 07 Aug 2035 07:14:43 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"499d5a3a14ff2539e288e9cb7136c3e3","sha1":"483dfd9f3dcbc449f167d33f4ed48419cf04ae09","sha256":"1fefb5a9e9633dda3bdc49a31d1e993498467aea318c7aea2046495dd8032d44","sha512":"c30d150623e9b01b166b891ead0b1c99379495d4b312a4f0319d03ec2a4e18b31377156f046d59b23c09b572caea55d0177aaf12c637630b9589541ce54ca346","ssdeep":"","tlshash":"9190020669294815198161061000008901148105c80690141a199092a1756048740a3a","first_seen":"2025-08-09T07:15:13.678864Z","last_seen":"2025-08-09T07:15:13.678864Z","times_seen":1,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":152,"dns":56,"connect":21,"send":0,"wait":25,"receive":0,"ssl":73},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/uploads/2024/02/cropped-cropped-lustesthd-32x32.png","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/uploads/2024/02/cropped-cropped-lustesthd-32x32.png HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 2465\r\nlast-modified: Sun, 11 May 2025 08:09:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=suRKP9P%2BBpndHESIZRndFNz9REsOB62ZKKvNpdtz31ahYxyuySfv3KyvAST6MFJY7NNEwuwiaLkIu03NcB5Xc%2BzsXRe7zidv%2Bd5v\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c57552ccf556bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2442,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"595982de2dd52d9f31f1373e8acaebb1","sha1":"6f31fa5bfc6c7f75a2b7b80f73e1395e932ec162","sha256":"ad0b5b74e7717da1ae5bbf1cd20f4d3281f6e690040215a293fb32020986f9e5","sha512":"7e8ab8d9b7fb566740e4de3fcce03b577e334d5f4744d7798b428404455da88f706bd26114f1a15986655fe02730a9e2a4b4c2de11026e6c95da0ffc8afaa2e0","ssdeep":"","tlshash":"39513b39d3731d504f4dd11229632951a9d2b5c7e3ec4b4a437e18acdb692b32dc0375","first_seen":"2024-06-18T06:14:41Z","last_seen":"2025-11-05T11:11:30.506266Z","times_seen":14,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flushpersist.com/pxf.gif?uuid=283a63de-912b-48b4-89a1-03a1c2eedb81\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=71e644a3ca9fd45df24938c9840773ff\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=7","fqdn":"flushpersist.com","domain":"flushpersist.com","tld":"com"},"ip":{"addr":"192.243.61.227","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"flushpersist.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:12:33 GMT","end":"Mon, 29 Sep 2025 15:12:32 GMT"},"fingerprint":{"sha1":"9E:08:20:A0:75:ED:21:51:E0:3D:DE:29:CD:B0:11:01:4D:04:77:0A","sha256":"FB:D4:A2:1D:0F:F1:FB:A8:D9:5E:88:03:1F:BB:94:D2:32:5C:CC:49:11:11:FC:04:7B:C6:43:40:CF:1E:A2:BA"}}},"request":{"raw":"GET /pxf.gif?uuid=283a63de-912b-48b4-89a1-03a1c2eedb81\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=71e644a3ca9fd45df24938c9840773ff\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=7 HTTP/1.1\r\nHost: flushpersist.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:45 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nHost: flushpersist.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 99a89d26a50e2003dec25be082acdf60\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":675,"timings":{"blocked":290,"dns":3,"connect":95,"send":0,"wait":94,"receive":0,"ssl":188},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/css/animate.css","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/ssp/interstitial/center_banner/2/css/animate.css HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:19:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"65aa8501-13365\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B7YWesTouGs%2F8%2Be3NeP7u463NaTHKSdzd2XENv%2FZFOe7z%2FjXD9bdvnyaliaCabMa4I66NInf1yTjno%2FD4UG1ifDjSTcj2TvFJq%2Bhq5xr\"}]}\r\ncf-ray: 96c5755dfef956af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78693,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"5982c5377696d20476871062646b253f","sha1":"8bf2c93fa9ccc908f7df0fb7abb911bbac3e4242","sha256":"4e23a6449e6ef4614f0107cecf5c9eda75d2041c7c71f4a55d45f2a7e75450f4","sha512":"92592dac2a817293e8ec1d94bf99df639626a90d524420b01a12210398927c0650cc26fa8e730300096b29961563aa02efb707478c6d51ac8616bb1bde5a0cb2","ssdeep":"384:jvuAuF81dghu3uFlZlX/m/Gu7uNUtrL4VrbZJgBhLYNKwZiMUL6Vpaj7F:jvuAu21dghu3uhu7uNKwZiMUL6Vpaj7F","tlshash":"1d731bad399115845263861d83df9e68273ce5731826acef73c2488bcf8bf9867c9147","first_seen":"2024-02-12T20:28:38Z","last_seen":"2026-04-20T13:38:49.710124Z","times_seen":6635,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":43,"dns":21,"connect":1,"send":0,"wait":440,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:47.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Aug 2025 10:09:08 GMT\r\nexpires: Fri, 07 Aug 2026 10:09:08 GMT\r\ncache-control: public, max-age=31536000\r\nage: 162339\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-20T13:59:38.920906Z","times_seen":751132,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":58,"dns":0,"connect":20,"send":0,"wait":12,"receive":5,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/css/media-queries.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/css/media-queries.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1405\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TVk4exMg5MvSxrM3zHiLpF6knBM%2BdhE6D3chSO6CYjccHpQM8lhn5Hz4TxYCCihZUKCqdyu6QQullDUOtPPZ7OyZVc48Sa5lPfNg\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dba56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5131,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"4f409acd808dac57c5b4f545e5d2a497","sha1":"9a7975e1ddbadbfe5207ace28842dc95d2613b3a","sha256":"2120dca19ec5d192fd8232e4b481703a851b3aa166c67ffad27a3ce3683bc7c3","sha512":"cf9b72cdd784878865550a728c8b7ea4818e67076ae67e8271ac815f17a181b55c832310031e72ed57864a6da59142307a9abdda084b76e9353abaa7fa0b343b","ssdeep":"96:tG6pcYPLEZdephwgxdCduQzCQbvBJqRZVYOh3dXU8NcXGcEqqkmpW/rQJaO2yJFw:tGicYPIfeL1HWdRvBQuOh3dXU8NcXGcz","tlshash":"30b1ef9326b12e0cfd16516aa9e6d2ed5b344103f38e8ce8bc9d7610cf4f2c654a1bc4","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.137251Z","times_seen":12,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/iziModal.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/iziModal.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 6578\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IsiGeA7xaLVwVEV6Aazbx5Zd%2BgZ2UMv%2FxVwzN8yv1HiXrPE%2BPgT1orMO1cYoow5maXJWQiK4OegiUkV2RVjNLLM5XhWVV7JDK59C\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3dd856bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26264,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (26183)","md5":"de56db6b4ed148cca78af68c24bef0d6","sha1":"450cc06629514c51ec0e28ff1cc37beb155d0536","sha256":"1242c61c5fe9b7829ff38b85c11019a5ced91d6c537f324db444cce709a118fb","sha512":"4b4fbfd45fa68a3773aa248913d9e50ea0b213ea97e9c80b629261eae986cdc4de69200dc7feaf2e70de49adf69807a9e6cec06dfe6c3e6a972378c0624e0f63","ssdeep":"768:MzhHKwhc1U+CAC42C4mHJ/3hBHoP7w05O:Oc1U6JMw05O","tlshash":"d5c28559b6b1226051ff85a39017151d713aaf34b507100c3abfcbeb98b4e58b1abe78","first_seen":"2023-03-09T01:55:44Z","last_seen":"2026-04-20T11:43:54.169923Z","times_seen":226,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/functions.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/js/functions.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 1621\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KOcDz2hIwofq7b7gtutlHTuQTLCQmQghzFEPnFSuvUpxXlkSIWbgKFzeWn4JYBeIfHw4rRpLcgvRsfIeEnvIKiMbaYPb8WLyrWpn\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4dfc56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4477,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"cf05a1eb35746ab75e731b86da902d94","sha1":"00a8a09b7b382d93dd4eb94d63b99af8a9218dd4","sha256":"4ae6443b76f31e9ce7a19aa2d14cdb4957a43d8e79ab0dac7cb34b7d24222038","sha512":"3b36b9968a2d9ea35abdb3bc9a5c9c5f45dad3f5e37c15bfec4e3953e6fb36fbb056970683497d4c418d7b8417abf1ceb8fb0d6a4aece625e66a4ce496ed84c0","ssdeep":"96:YCz1kYdKLfklGTGMHcWcoErtbaNAzQctFjcSjKom22:YCu/D0GTGMHfcoEFaNAf3Ou2","tlshash":"a69112bc6af324585013b16b867fa0046261860b0dc9fc04b8adc2946fdd53da3b8fb9","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.191064Z","times_seen":12,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flushpersist.com/pxf.gif?uuid=283a63de-912b-48b4-89a1-03a1c2eedb81\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=d7b7c97c13b1c59ade786a4425c5c4d6\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=7","fqdn":"flushpersist.com","domain":"flushpersist.com","tld":"com"},"ip":{"addr":"192.243.61.227","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"flushpersist.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:12:33 GMT","end":"Mon, 29 Sep 2025 15:12:32 GMT"},"fingerprint":{"sha1":"9E:08:20:A0:75:ED:21:51:E0:3D:DE:29:CD:B0:11:01:4D:04:77:0A","sha256":"FB:D4:A2:1D:0F:F1:FB:A8:D9:5E:88:03:1F:BB:94:D2:32:5C:CC:49:11:11:FC:04:7B:C6:43:40:CF:1E:A2:BA"}}},"request":{"raw":"GET /pxf.gif?uuid=283a63de-912b-48b4-89a1-03a1c2eedb81\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=d7b7c97c13b1c59ade786a4425c5c4d6\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=7 HTTP/1.1\r\nHost: flushpersist.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:45 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nHost: flushpersist.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 99605090cad4ed00805505fb354b4bab\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":661,"timings":{"blocked":281,"dns":1,"connect":92,"send":0,"wait":96,"receive":0,"ssl":186},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-09T07:14:42.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/ HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncf-edge-cache: cache,platform=wordpress\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: max-age=14400, must-revalidate\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-cache-status: EXPIRED\r\npriority: u=1,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G9RULUtkZWS9NLU68cbIMRKQe9FnbqvZQrm0Yvrm3mKqoceIpkmk3S%2FhAVUdwE6Mzq8l3H4EyBkqOp0GVUi0wPKJetqkgN89AHrS\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96c575455d8056bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"FitVids.JS","description":"jQuery plugin for fluid width video embeds","website":"https://fitvidsjs.com/","common_platform_enumeration":"","icon":"FitVids.JS.png","categories":["Widgets","Video players"]},{"name":"All in One SEO Pack:4.8.1","description":"All in One SEO plugin optimizes WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Select2","description":"Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.","website":"https://select2.org/","common_platform_enumeration":"","icon":"Select2.png","categories":["JavaScript libraries"]},{"name":"jQuery UI","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"Site Kit:1.149.1","description":"Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.","website":"https://sitekit.withgoogle.com/","common_platform_enumeration":"","icon":"Google.svg","categories":["Analytics","WordPress plugins"]},{"name":"All in One SEO:4.8.1","description":"All in One SEO optimizes a WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63961,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (9721)","md5":"7bf3622c33ef2ae611255e28625a81e8","sha1":"95bb791937ee7f67f4f27955d174de6e494ec089","sha256":"f1ad0422e4046f825c1dd741b32046242e582afd7e6bc795a50296c4a846a9cb","sha512":"4e22abf4c266aa7b89eed46ef41048a31beabbe5e1b512c72a5b2d3b2bf0fd945e7d4ae8fb84e2337f2542e5552a14c4c8d34ae0b86c62078d8bb4f921122700","ssdeep":"1536:KVapQOAiKucmNw8x6yZxDcpI6e3gujyKfv3ms/mjiJGpg69zM:KEBAiKucF8x6yLD96e3gujjfPm+muJGQ","tlshash":"9353e8b6185f603e6647629dc19bb228b3969403df088d65b3fce168df98fa450f760c","first_seen":"2025-08-09T07:15:13.689805Z","last_seen":"2025-08-09T07:15:13.689805Z","times_seen":1,"resource_available":false,"data":null}},"time_used":969,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":968,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.form.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/jquery.form.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 12295\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7yEZdg2LRXGAizSHSBaP22hhyLKOAKNZNPk%2B%2BB5GB5JbKTVlDzbDTiBMB%2FWTNBrrszcWeU%2FLFRVlIH9lrdW%2FzYUHdX5g6RfSoz4a\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dce56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45167,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"dfcb1f9242f2b86f8938bd7cc4bbfe45","sha1":"4b6efd79a161a14f883e8b316592ed09a9db4fc8","sha256":"4b05ed417c37a01fba3f2904702ee68f4883409fd79a78e515566a4dc0655967","sha512":"efa98fe0dd49ffdc3f9300d97eec84cb85426d7a0da81b637a5ba312bb40bc4149025c232bababd07585c69a081d7c249f22827a622973d78e20a81b203203f7","ssdeep":"768:ageuCP6yeJr/5t31aPw6MdOGuKeockAty3YQlMOIm8E77VMDz/iVG7tPtEtVaYA3:R+P6yeJr/5t31aodveoc/QIQWOJ7VMDT","tlshash":"9b13954a798a12a2193377b9cfab910dfb7a91370201d1517d9c52d12fb0ca492f6fec","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-20T07:25:58.386423Z","times_seen":352,"resource_available":true,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":131,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/71/e6/44/71e644a3ca9fd45df24938c9840773ff.js","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /71/e6/44/71e644a3ca9fd45df24938c9840773ff.js HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 25561\r\nConnection: keep-alive\r\ncontent-encoding: gzip\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccess-control-allow-origin: *\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 3\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: cb43a31ba7f3aace1048203438c073ff\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72561,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"fb726a7d6c9ff6ef4791ea97c72111ca","sha1":"cd2f3fd55b2b36c262515f5b1624176f29c0eba3","sha256":"e695af4c16e0cd3364c3323652ef71bf079707a3609e3e04075c8951af2f51f2","sha512":"b14d884e0dfb36b1aea45dd83043aea65e292b387be6819893ab18508b377081515f1a4d423c7c8e993aef9bf920ffbfd143dbf26aa1b3fc7c4e35ef28f06ca0","ssdeep":"768:Y2bnYMm9jTqw648+QhS8u+Jcj/XcdNjN+mOdY08kUbTehzbcepwPf:Y2bnEY4x5O+jvccdY0U3fX","tlshash":"e063d7483f91b27802e6b8fa712fa61af0261c1195d8e0d8f503f4deae66719f035f25","first_seen":"2025-08-09T07:15:13.692208Z","last_seen":"2025-08-09T07:15:13.692208Z","times_seen":1,"resource_available":true,"data":null}},"time_used":856,"timings":{"blocked":331,"dns":48,"connect":95,"send":0,"wait":99,"receive":93,"ssl":187},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/watch.457464494735.js?key=7580aa1ebe8a07025329f784529c8c07\u0026kw=%5B%22page%22%2C%22not%22%2C%22found%22%2C%22%E2%80%93%22%2C%22lustesthd%22%5D\u0026refer=https%3A%2F%2Flustesthd.cfd%2Fwp-content%2Fcache%2Fmin%2F1%2Fwp-content%2Fthemes%2Fbonsaihd%2Fjs%2Finit.js%3Fver%3D1746698883%2F\u0026tz=0\u0026dev=e\u0026res=14.3095\u0026rb=\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /watch.457464494735.js?key=7580aa1ebe8a07025329f784529c8c07\u0026kw=%5B%22page%22%2C%22not%22%2C%22found%22%2C%22%E2%80%93%22%2C%22lustesthd%22%5D\u0026refer=https%3A%2F%2Flustesthd.cfd%2Fwp-content%2Fcache%2Fmin%2F1%2Fwp-content%2Fthemes%2Fbonsaihd%2Fjs%2Finit.js%3Fver%3D1746698883%2F\u0026tz=0\u0026dev=e\u0026res=14.3095\u0026rb=\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1 HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 307 Temporary Redirect\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: text/html\r\nContent-Length: 0\r\nConnection: keep-alive\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\naccess-control-allow-origin: https://lustesthd.cfd\r\naccess-control-allow-credentials: true\r\nlocation: https://wayfarerorthodox.com/watch.457464494735.js?dev=e\u0026key=7580aa1ebe8a07025329f784529c8c07\u0026kw=%5B%22page%22%2C%22not%22%2C%22found%22%2C%22%E2%80%93%22%2C%22lustesthd%22%5D\u0026pst=1754723744\u0026rb=\u0026refer=https%3A%2F%2Flustesthd.cfd%2Fwp-content%2Fcache%2Fmin%2F1%2Fwp-content%2Fthemes%2Fbonsaihd%2Fjs%2Finit.js%3Fver%3D1746698883%2F\u0026res=14.3095\u0026rmtc=t\u0026shu=75afbcb3db87bc52852339543d008dee88984e144f2e95fb7d1bcf6ec673cf195f4d4ebdb83e54960a225418f6266a4a49d1d186782ddc3db7dd260f96878be8b2c48ce2f4600b240da93ce5deb380a6836eaf6e92a47693a484\u0026tz=0\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1\r\nset-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxODg4MjczNCwiayI6Ijc1ODBhYTFlYmU4YTA3MDI1MzI5Zjc4NDUyOWM4YzA3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyMTcyNDM1LCJwaWQiOjQ1Njc2MCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJjbTByZHNlY3MiLCJjcGtzIjp7IjI4IjoiZDdiN2M5N2MxM2IxYzU5YWRlNzg2YTQ0MjVjNWM0ZDYiLCIyOSI6IjcxZTY0NGEzY2E5ZmQ0NWRmMjQ5MzhjOTg0MDc3M2ZmIn0sInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoyNjY1NjExMTUsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMzY5MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTM0LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9sdXN0ZXN0aGQuY2ZkL3dwLWNvbnRlbnQvY2FjaGUvbWluLzEvd3AtY29udGVudC90aGVtZXMvYm9uc2FpaGQvanMvaW5pdC5qcz92ZXI9MTc0NjY5ODg4My8iLCJhciI6W119fQ.Y6mOTd5ZmpcDMNCqGObIiJcy6Posw9wkHd6f6dtoFPI; expires=Sat, 09 Aug 2025 07:15:44 GMT; path=/; secure; SameSite=None\r\nx-envoy-upstream-service-time: 1\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 4ac669e388237ad96ffc794d1bdcfd82\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4871,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"weirdopt.com/ad/advertisers.js","fqdn":"weirdopt.com","domain":"weirdopt.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.412Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"weirdopt.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:18:37 GMT","end":"Mon, 29 Sep 2025 15:18:36 GMT"},"fingerprint":{"sha1":"1A:27:71:C0:8E:44:D4:6B:F5:AA:49:F0:F1:AF:E5:5F:30:23:A4:D4","sha256":"84:6C:2E:D6:ED:8A:2F:33:05:CC:E9:F2:24:E5:5C:E0:80:C2:04:2D:C3:21:06:64:E1:0D:14:81:A1:9A:00:1B"}}},"request":{"raw":"GET /ad/advertisers.js HTTP/1.1\r\nHost: weirdopt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 8f3bdaefc78e18fd8a7d2857499ae07f\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":134,"timings":{"blocked":58,"dns":0,"connect":17,"send":0,"wait":17,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.153Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/ssp/interstitial/center_banner/2/js/jquery.min.js HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:19:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jibRchVQJLwNfR%2B1L5GZhmjTEPD1%2FwmeMIyXSVIsgBCZ%2FDFnpc8I9uzw0pYKCQkfTbg%2FxjR6%2FkUQQA%2BS%2BEXP1p97G1XsnQ9Q1ZzOu7rx\"}]}\r\nage: 80215\r\ncf-cache-status: HIT\r\netag: W/\"65aa8501-149a0\"\r\ncontent-encoding: br\r\ncf-ray: 96c5755e6fbe56af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84384,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators","md5":"6326c600df01e3bfb9b40e1aa08176f8","sha1":"6b4fb754d29b297b539bf62ba9b4eaf0f33f314a","sha256":"df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3","sha512":"641aaeecb9b89bcc319cabfef18f76faa9b1ba79f9de30c6d07f22d385fc78ac3f11a718fe9ec96f8a13d82e3dff4ca34944ccb449a4ef8e378ad65dfad581c0","ssdeep":"1536:oP10iSi65U/dXXeyhzeBuG+HYE0mdDuJO1z6Oy4sh3J1x72BjmN7TwpDKba98Hri:f+41hJiz6fhdlTqya98Hri","tlshash":"eb83d6d9b2c67062977734b851bf510bb17a98dab40c8c60f0a4d8e47eb4a8d517bf2c","first_seen":"2023-03-07T01:10:11Z","last_seen":"2026-04-20T13:38:49.709004Z","times_seen":10900,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/init.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/js/init.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 3972\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WIpGJYOA0P%2BAmx0CeLQkPJ2AAB%2FygUWXu0xn8%2BII6yTTHli341fWrTDmRbYBtybQZ8Z2ZNcpKBWR0F1bLIvICeYVtAU58t3tfgXD\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3dda56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9579,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5478)","md5":"173d440011fb764b2cd36875e99f7949","sha1":"260f5f35fb2eab64c052dbfc3417ba42f6bff1bd","sha256":"a10180f259209ed9c3525bbd44e666c5c407997b90b79170d14befbd262143f1","sha512":"f4c410d0a4d0a6f570982f4a59721cb4676602bfada116b4e80b0f28d569916e59fe36f3b84fe89c79e0f7ec0848693dc32eb65689a7732c461a6b43be9bf954","ssdeep":"192:3DCM2UKQob1oHXwzKYPeIny6Pv0GTGMHfcoEFaNAf3Ou2:3mJUKQoZWlY5y6MStEFVG3","tlshash":"2b1272983ae3606a5257207b413f5106f2b4896b0d8ce810b49cc5a4bffc97c537afb9","first_seen":"2024-06-18T06:14:39Z","last_seen":"2025-12-04T02:16:35.211417Z","times_seen":12,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.413Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:11:38 GMT","end":"Mon, 29 Sep 2025 15:11:37 GMT"},"fingerprint":{"sha1":"F9:52:70:4B:81:A8:F8:39:E6:E7:96:8F:EA:FE:17:FD:96:C5:32:E3","sha256":"D8:C9:87:B5:89:5E:D4:F4:8D:FD:98:3C:31:39:42:67:D3:20:27:14:A9:AD:F2:AB:97:A4:48:0F:94:F0:FF:A2"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 28254\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 9a9e0cfc0ddb7e82388788435c60c904\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85386,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"resource_available":true,"data":null}},"time_used":165,"timings":{"blocked":60,"dns":1,"connect":18,"send":0,"wait":25,"receive":18,"ssl":40},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.show-sb.com/sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html","fqdn":"cdn.show-sb.com","domain":"show-sb.com","tld":"com"},"ip":{"addr":"104.21.95.140","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:45.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"show-sb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 12 Jun 2025 07:26:41 GMT","end":"Wed, 10 Sep 2025 08:25:04 GMT"},"fingerprint":{"sha1":"DF:A8:5A:11:E9:7E:8B:0E:2E:08:20:FB:02:FE:C4:E3:E7:97:E8:3A","sha256":"1F:EA:3C:20:D2:16:8F:45:C1:E9:D4:1E:4C:18:5C:5C:E6:CB:68:EF:56:95:C6:A7:6F:08:B3:59:CC:5B:91:FC"}}},"request":{"raw":"GET /sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html HTTP/1.1\r\nHost: cdn.show-sb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:45 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Oct 2023 10:17:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BI7nEdScMyVUGE6umSvzIB54H9p148IaYvIMJCMEhKms5eI%2FN9kokWrbRAKZAJ0u1ilB0VdNJ%2B2OOLEf0SFIdoJy2gG2lZ3dn44e3Dw%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 96c5755aeeb456bd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1777,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"072e8db4074dbdb5f907708ecde5b3cd","sha1":"9cff59558d4a4b945754478a04738e744b7ffc2a","sha256":"5b5f0e9d8303aec59181cdf6f6b9de9c2e0001007349840246b9f8ab286b82a0","sha512":"4d5b8b73d3b1ba9054fabe455e6216e74e015d64ef3abf86f9db14c5412b5c8d71195ba3722ecd2d15c61980e2b1c7ea73acae8a48cb3e7785d028076f210fec","ssdeep":"","tlshash":"1831e6662cf9c57300829094bb312f5bed91e687894f550073bc4a918fd7ed9cca7207","first_seen":"2023-12-11T08:15:45Z","last_seen":"2026-01-27T09:50:20.218558Z","times_seen":1010,"resource_available":false,"data":null}},"time_used":516,"timings":{"blocked":50,"dns":34,"connect":1,"send":0,"wait":414,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/ren.gif?sid=H4sIAAAAAAAC_1RSTWgkRRSunl28ePBnRURYGEFEwUz6bybd7mFxXVcW1yTuruQgHqq7qidlqrvaqu7pyVwMBmS9yHgR9SCdb5IN6rK4B4-CTLxIQHA85bC5ePIsBo8yycDoO7z3vvqq4Hvfq493ymPioaRHq2-pgZCSLrZbdvPFNZExVZnm8u2mY7fsS801kXX8S83-NOneK47nt-yXmm_weEMturZj247tNK8JzRPVXzxlIfJ7odMK7Zbvtpy2j77-PzalBUMtsN4xeRKCTR77I3kXIh4jS7-_ys1GofKXX09LSQul0WP772QbmaoypPM20RaSbH92G8pMCPmiAZXtzyaA6u1OJ0AkJqTx9ENE2f5MJqLe3pnSSIJniNijqHpjcDmGoGPEahuC_UaAmGF5BVl6d1npim6esXTKTsj5k78gqgk5__ApZOn9K1L0m7eULAuhMoN-UkP0xxDdMfLyAMWgAVEdIC4-gmC_ksWTG8jS3RUjFQQ7et4NPNrxGF8IHTda8IPIXwhC6izYHnVil3MWBc6pRSIZg5oGSmOhFBbKxEKZW0jZUdO3Az92qNdJQhYv2T71fcYjOwxc26ZhvIQynmofosiHiOUQsd5CrrewIYbQ5U8w6zUMa8AUE2K9_SF6rEbFCSpDUFGCShBUBUHVq_eYNK6p7zJpysiZVXdWvXqkiu4O3VNFl2cEVA-hWb0r8g_MNuLi3GiQGDZS00Sjoh7RiNU7-TF5Ymqt9fXBIjb4UXPJ4R3fp15Mw4T5bZa4fugFcRj49tKSlyQwooYwDVBjYSAm5LkXLiAXE_LIPwEiegAjDxCLx0HLi6BVDbpeY5Ddd4JU9QTvbw5aSnfBVI28OI9i09qRx-TZ0_W-d_EZ8Pjw8i9fTuMrxLpGrmu8L34m6Mo7o5uqIrs3VWXIg5W8EKkY0OnqbxW04Oe-fZNvVkqz61fN8JtX4ykxbe_d5qa4QTMmsq4h310RjHF9TemYkx-vmzUerZZm_UqpszK_sfratetprrkxQmVjUDEh5NM_EYsJufDJD6ff2n9wAqHH0GWNtDwks0Ccb8Hkc-1GEWg556PcQlXWI-1G80MpCCSfYxrVMP_B0bwfaTp9TUW9Y-6gqy3QYhtZWqOna_RkDSqHMOW5UZHrw8u_e6eBSFqjSGprN5JafnZmsRFHzbYbeZ0g6PCkwxKPea7HwrbNQ5-GHT_02yjMZP3zv_m_AQAA__-ykmCvtAQAAA==","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:45.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /ren.gif?sid=H4sIAAAAAAAC_1RSTWgkRRSunl28ePBnRURYGEFEwUz6bybd7mFxXVcW1yTuruQgHqq7qidlqrvaqu7pyVwMBmS9yHgR9SCdb5IN6rK4B4-CTLxIQHA85bC5ePIsBo8yycDoO7z3vvqq4Hvfq493ymPioaRHq2-pgZCSLrZbdvPFNZExVZnm8u2mY7fsS801kXX8S83-NOneK47nt-yXmm_weEMturZj247tNK8JzRPVXzxlIfJ7odMK7Zbvtpy2j77-PzalBUMtsN4xeRKCTR77I3kXIh4jS7-_ys1GofKXX09LSQul0WP772QbmaoypPM20RaSbH92G8pMCPmiAZXtzyaA6u1OJ0AkJqTx9ENE2f5MJqLe3pnSSIJniNijqHpjcDmGoGPEahuC_UaAmGF5BVl6d1npim6esXTKTsj5k78gqgk5__ApZOn9K1L0m7eULAuhMoN-UkP0xxDdMfLyAMWgAVEdIC4-gmC_ksWTG8jS3RUjFQQ7et4NPNrxGF8IHTda8IPIXwhC6izYHnVil3MWBc6pRSIZg5oGSmOhFBbKxEKZW0jZUdO3Az92qNdJQhYv2T71fcYjOwxc26ZhvIQynmofosiHiOUQsd5CrrewIYbQ5U8w6zUMa8AUE2K9_SF6rEbFCSpDUFGCShBUBUHVq_eYNK6p7zJpysiZVXdWvXqkiu4O3VNFl2cEVA-hWb0r8g_MNuLi3GiQGDZS00Sjoh7RiNU7-TF5Ymqt9fXBIjb4UXPJ4R3fp15Mw4T5bZa4fugFcRj49tKSlyQwooYwDVBjYSAm5LkXLiAXE_LIPwEiegAjDxCLx0HLi6BVDbpeY5Ddd4JU9QTvbw5aSnfBVI28OI9i09qRx-TZ0_W-d_EZ8Pjw8i9fTuMrxLpGrmu8L34m6Mo7o5uqIrs3VWXIg5W8EKkY0OnqbxW04Oe-fZNvVkqz61fN8JtX4ykxbe_d5qa4QTMmsq4h310RjHF9TemYkx-vmzUerZZm_UqpszK_sfratetprrkxQmVjUDEh5NM_EYsJufDJD6ff2n9wAqHH0GWNtDwks0Ccb8Hkc-1GEWg556PcQlXWI-1G80MpCCSfYxrVMP_B0bwfaTp9TUW9Y-6gqy3QYhtZWqOna_RkDSqHMOW5UZHrw8u_e6eBSFqjSGprN5JafnZmsRFHzbYbeZ0g6PCkwxKPea7HwrbNQ5-GHT_02yjMZP3zv_m_AQAA__-ykmCvtAQAAA== HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:45 GMT\r\nContent-Type: image/gif\r\nContent-Length: 7\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Credentials: true\r\nVary: Origin\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: debdb6881bd4e7587a773032215ba9aa\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cv/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cv","domain":"lustesthd.cv","tld":"cv"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-09T07:14:40.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cv","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Jun 2025 14:48:39 GMT","end":"Mon, 15 Sep 2025 15:47:12 GMT"},"fingerprint":{"sha1":"F9:A9:01:9B:A5:0E:99:09:AD:75:47:B9:0E:28:0A:D4:B5:E0:B0:15","sha256":"DF:1B:39:51:72:85:66:47:EA:95:D2:FB:B2:8E:82:D7:70:A0:91:B2:6C:87:5F:09:D5:22:FF:00:A3:9C:4D:0B"}}},"request":{"raw":"GET /wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/ HTTP/1.1\r\nHost: lustesthd.cv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sat, 09 Aug 2025 07:14:40 GMT\r\nlocation: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F8cCJmJyCr9HfEJsFwvSPEf8C9KpcA2NV8%2FiTPA4C1T8Oj9fQbvSXVYfeO7YknlhKrnKeGyZm788dr2sGbuMe1zZf5vk8CdnOpY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 96c5753c7b36b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63961,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":55,"dns":34,"connect":1,"send":0,"wait":7,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/custom.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/custom.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 233\r\nlast-modified: Sun, 11 May 2025 08:09:40 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lUrwHXWaB%2B44SLBIxRFQwGOlLofgpKwTDq97SjzZplRkNAZCF0MBctd6zXg8Erc%2BtBDEH007GPmAlZpap1iHYP3ZcOJSf%2FB49UeG\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dc056bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":389,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"8a5153580f20a16e8e3b5960e3cf0174","sha1":"54c3d7a9a8a56fd23488d81a2c82e625e404229a","sha256":"4c325ead75e5b5bb6bdac9878bedf7bd7b3cbb3b072796e34264cbcce2bf938f","sha512":"d50bda1c57e454fb14cd80a42e8437a0ac77e11ccc57d54f503344f933b34f8098a6e2b93d5c64b4c0bfae5ab0be6d226caa2aaad009b8aab45262505722e73f","ssdeep":"","tlshash":"f8e0e775daa18c5414564170f78d88f7ef11439c1254965df07d34fd731c916967cd70","first_seen":"2023-04-14T18:06:08Z","last_seen":"2026-04-11T21:35:17.01486Z","times_seen":75,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.storageimagedisplay.com/cti/a4/0c/e2/a40ce27a6500189251177f73ce90942b/1753377583.jpg","fqdn":"cdn.storageimagedisplay.com","domain":"storageimagedisplay.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.storageimagedisplay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 10 Jul 2025 02:33:11 GMT","end":"Wed, 08 Oct 2025 02:33:10 GMT"},"fingerprint":{"sha1":"06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9","sha256":"CF:05:58:46:C3:07:3F:B6:A6:8D:42:F2:3B:3D:91:36:93:10:CB:D5:89:47:A3:62:26:D2:F3:BA:AC:51:0E:B7"}}},"request":{"raw":"GET /cti/a4/0c/e2/a40ce27a6500189251177f73ce90942b/1753377583.jpg HTTP/1.1\r\nHost: cdn.storageimagedisplay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 61401\r\nserver: nginx/1.21.6\r\nlast-modified: Thu, 24 Jul 2025 17:19:44 GMT\r\netag: \"68826b30-efd9\"\r\nexpires: Mon, 11 Aug 2025 07:14:44 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: ah0543\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":61401,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 26.3 (Macintosh), datetime=2025:07:23 15:47:42], progressive, precision 8, 300x250, components 3","md5":"249b5441f221dc900029c03e2b82136a","sha1":"b6b94051fa65b4b59abb08d4734abb0992c4b257","sha256":"f5b4d452fd578555de1ebb8fb81d6450c08ac4625e8efa2c9b6ba0863251dfc7","sha512":"dbd727ad9f15c292107d410f011d08740bf6f7a59147a2a026d597130ff19f68653052c2c2aaaf0512d7233bea9b0c186fc2117f0c3957f443c02f8693219cb2","ssdeep":"768:gRlXTzzi4TUpisRlXTzzi4TZ2gqksYy2yhLwr7AWACXhmJa6Pc2DNLRUH/lLEbSW:ChzmO6hzmOZ2gqksdCqa69LYo2uaisIz","tlshash":"6653e11da7509e33e1f0bab19092d3d0f6629a0e61e32da1f84c7d43bb795d0cd5e18a","first_seen":"2025-07-24T18:08:00.946635Z","last_seen":"2025-08-31T15:16:17.425403Z","times_seen":291,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":63,"dns":20,"connect":19,"send":0,"wait":38,"receive":25,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:47.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Aug 2025 10:09:08 GMT\r\nexpires: Fri, 07 Aug 2026 10:09:08 GMT\r\ncache-control: public, max-age=31536000\r\nage: 162339\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-20T13:59:38.920906Z","times_seen":751132,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":55,"dns":0,"connect":7,"send":0,"wait":8,"receive":9,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-09T07:14:40.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/ HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Sat, 09 Aug 2025 07:14:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncf-edge-cache: cache,platform=wordpress\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: max-age=14400, must-revalidate\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pGn%2BQUZqZw4VotcbUTPtO6ep6R6ICfaQtKpxT9zyFvBzXDipKx6kQCQ%2BTzOVH84qzif8I4d7SkeSS5gEki3wO5fUmL8VUlZdrvOI\"}]}\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96c5753d2ac156aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery UI","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"All in One SEO Pack:4.8.1","description":"All in One SEO plugin optimizes WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"All in One SEO:4.8.1","description":"All in One SEO optimizes a WordPress website and its content for search engines.","website":"https://aioseo.com","common_platform_enumeration":"cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*","icon":"AIOSEO.svg","categories":["SEO","WordPress plugins"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"FitVids.JS","description":"jQuery plugin for fluid width video embeds","website":"https://fitvidsjs.com/","common_platform_enumeration":"","icon":"FitVids.JS.png","categories":["Widgets","Video players"]},{"name":"Select2","description":"Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.","website":"https://select2.org/","common_platform_enumeration":"","icon":"Select2.png","categories":["JavaScript libraries"]},{"name":"Site Kit:1.149.1","description":"Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.","website":"https://sitekit.withgoogle.com/","common_platform_enumeration":"","icon":"Google.svg","categories":["Analytics","WordPress plugins"]}],"data":{"size":63961,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (9721)","md5":"f65efa468d139e43207b7115c464e959","sha1":"1521bbaf7bf59df48e05dd875398ca52f02e4979","sha256":"058750133cd002ea6479db4423538ace844916112066da4066497cd0aaeeea13","sha512":"6d979e00ffb48eadbd5c1d977cc3ac0b1ae6fb075af6a622dcd2e45d891e2be8f15cd2005e14b52096f7e6062b4f0299eb38bb04c4ce227d61de8dcb47604211","ssdeep":"1536:KVapQOAiKucmNw8x6yZxKcpI6e3gujyKfv3ms/mjiJGpg69zM:KEBAiKucF8x6yLK96e3gujjfPm+muJGQ","tlshash":"4a53e8b6185f603e6647629dc19bb228b3969403df088d65b3fce168df98fa450f760c","first_seen":"2025-08-09T07:15:13.697608Z","last_seen":"2025-08-09T07:15:13.697608Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1341,"timings":{"blocked":99,"dns":77,"connect":1,"send":0,"wait":1143,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/css/dashicons.min.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/css/dashicons.min.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 35730\r\nlast-modified: Sat, 25 Mar 2023 15:45:40 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ExjqmVx2UWGr5ew3Ct0rQ7LAk%2BCEjYOUA9vRX%2FYMQhJb4kptIfP8mrCds0E8Vr35JIxoSeVwoBUAZFrdJlM8tz%2Ftan2j%2FiCaUDYq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dbc56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59016,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (58981)","md5":"d68d6bf519169d86e155bad0bed833f8","sha1":"27ba9c67d0e775fc4e6dd62011daf4c3902698fc","sha256":"c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e","sha512":"fd0956d1a7165e61348fda53d859493a094d5a669aa0ba648be3381b02ed170efd776704af6965f1e31143f510172ee941d4f2fc32c4751d9b8763b66301486d","ssdeep":"768:oey/Z24B3P3aXOhUzSv16CAyLquqSfurIdUMbs73KO08QSJ2BQH02CRqxMWs5rJq:ox/ZvB/qPWMiquqioMUXQSJYIMW+rJq","tlshash":"9c43c2b1a74a40d677b0c843af65b26a5582bd7df8409cdef40b821c1af3635069dfb8","first_seen":"2023-04-05T05:16:42Z","last_seen":"2026-04-20T13:51:53.532643Z","times_seen":125333,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/functions.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/functions.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 4955\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6kS%2FLsqGWurNzuJcDL0Szw9cXvOCkkfIRr%2BCTaJ1oPtG6nJvUNyWZQdJ6VBzfaWnOE66reX7lGNW5XH2sHsut5osb0CpYxb1dWul\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dd356bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22558,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"feacc31ed4090fe1f91e589a95d84f31","sha1":"02faa66f783201d9e658f6559a26ebc66371a2ea","sha256":"b0a166be5d1e8e42a2bc7dd2b81500002332a68a5d42e75cc245641c0d65dfef","sha512":"d7024b554b9dc48412524912dcd323a9f159262f6c930f9b97038ea260b39afcbfd40c302c3f5c036dd6d0ff0f74de2d1e57f8212a4855c7ae0a9c624559abd1","ssdeep":"384:FhBg9UBfC1gkKIR0/VHZ1GuDdTaoyjpVDkDXH4VlrDA3H0:FhB+UBfCykKS0/VHZ1GuDdTaoyjpVDoS","tlshash":"35a25419e78c54936033086599be136871be4253be049e02beede0f53f98d3d31a7e69","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.214394Z","times_seen":12,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yp.thebangalapee.com/r4jiQ19Eo0nCLpCIU/81669","fqdn":"yp.thebangalapee.com","domain":"thebangalapee.com","tld":"com"},"ip":{"addr":"23.109.170.209","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"yp.thebangalapee.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Jun 2025 11:22:34 GMT","end":"Tue, 16 Sep 2025 11:22:33 GMT"},"fingerprint":{"sha1":"D4:91:E4:F7:CB:BC:AA:94:BE:78:6B:0B:48:29:C9:14:D8:96:30:FE","sha256":"7D:71:DA:D1:69:E1:3F:AB:86:FB:61:79:C4:1F:D8:C5:FC:F3:BB:2B:8F:D4:EC:8F:0A:5F:F4:62:75:6C:45:72"}}},"request":{"raw":"GET /r4jiQ19Eo0nCLpCIU/81669 HTTP/1.1\r\nHost: yp.thebangalapee.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 09 Aug 2025 07:14:43 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://lustesthd.cfd\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWdcFnYQDeASKQHj1xSv4SAr9g3Wh3ZQKensbE32bTH6T8TwvKB7g78kZ4Sdv8MRY13Z1U3VlPXa8GoaubZtyaLqSVc00NbiTW2%2F5sJCNcNpWbmxv9wiXmRQZOfajFpTh0am%2F5qr0oSLEg%2BFKZIhXJ5YM6WD0sZEpQkSKr4T0VRqa9JcT%2FEMbhOy5dlkql%2F0Sgd6KMD8jfZNKuGV%2BQcDKPE883N8Wbidt1l6KxEc8Gy4I%2FgtOI7c0a%2FONVNB2tfoG6EX0%2F%2F73ODxYiUTQLkdCrO07mR%2B4dk3m; expires=Sun, 10-Aug-2025 07:14:43 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjA9l6BadnCbbYMXXgFZhEDwxyZGfu5%2B2zxLp5XKcVpAjYTkrrM6yKvDnl5qkBPcNuBRwfdin8PX5AHF0ewd9h0wUrWyOzi8kes%2FgYZbM%2FWfLJe7ByNuABeWjfDzT72l%2F4KmjSBo2gGh3uqQC%2B9%2BwFe7x3U; expires=Sun, 10-Aug-2025 07:14:43 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-20T08:18:24.616527Z","times_seen":15658,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":163,"dns":139,"connect":17,"send":0,"wait":24,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"yp.thebangalapee.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/css/button.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/css/button.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1086\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9GdAhWzAzA6GM%2F8EB9rNhlISHZ%2BQdchz7%2FOZnXR1AL73b5aowFgopXrB6LmX3FzS19F14YtUinJPLuqIrJdklbOnHaFPpEQ3dS%2Bs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c3ddd56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2962,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"5af21e9bbf98f16e6146b7791aaf0ea2","sha1":"85280fc0f342cf991ab65d8db38665a8d80ce3df","sha256":"fa0ae9b9584263e76c0fb5b17e072ddbc515c178a22a194181fd256a5d610332","sha512":"74f7bf9a2550e13eb6b203cd919ff472e86eecdee872dbb6ae8d905542236d3894cc961ddb781e5e0fdc130ae2981a9546834895c5597de068d6b478f66f92db","ssdeep":"","tlshash":"dc516349aa811502e33383749bfd02a4fb794023ee1309bd7af97155af795b40351fe6","first_seen":"2024-06-18T06:14:41Z","last_seen":"2025-12-04T02:16:35.212792Z","times_seen":12,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.storageimagedisplay.com/si/e9/e7/65/e9e765ca0662e263d2e11900a821970970c0ece25fc75175b150d36023409d6e.png","fqdn":"cdn.storageimagedisplay.com","domain":"storageimagedisplay.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.152Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.storageimagedisplay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 10 Jul 2025 02:33:11 GMT","end":"Wed, 08 Oct 2025 02:33:10 GMT"},"fingerprint":{"sha1":"06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9","sha256":"CF:05:58:46:C3:07:3F:B6:A6:8D:42:F2:3B:3D:91:36:93:10:CB:D5:89:47:A3:62:26:D2:F3:BA:AC:51:0E:B7"}}},"request":{"raw":"GET /si/e9/e7/65/e9e765ca0662e263d2e11900a821970970c0ece25fc75175b150d36023409d6e.png HTTP/1.1\r\nHost: cdn.storageimagedisplay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:46 GMT\r\ncontent-type: image/png\r\ncontent-length: 9567\r\nserver: nginx/1.21.6\r\nlast-modified: Wed, 16 Jul 2025 01:28:42 GMT\r\netag: \"6877004a-255f\"\r\nexpires: Mon, 11 Aug 2025 07:14:46 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: ah0543\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9567,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3","md5":"edbdb19463f88e6f6e8718d593cea66c","sha1":"cda4e922e4de517678d8cdccea0aeefa64a1fa26","sha256":"4c6835a9d41bedee6c324d9447083b93fd9b0e1a2f94415757e16d4aa8f88693","sha512":"06bce69d7fff8ee014b4cd7dc0bdc3ca5a3b98e40bac7a70ffe4932c5f12dd21f52d85e8904bdee0a4240813a9392cec3b01382e366a9719d54441944cc42594","ssdeep":"192:9wbjujSqfL3c+iGF+rF/Y96Qra03G9s5TT8LwUyte:9w/uuqz3rj+O6Qt3tsUte","tlshash":"4b12b00d37b4c819d353b47a5e8656b6fb8f7d40480af09b540567e0cf6e5892d079c9","first_seen":"2025-08-02T11:30:48.426843Z","last_seen":"2025-09-13T01:15:08.181578Z","times_seen":28,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css\u0026l=78693\u0026fd=490","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css\u0026l=78693\u0026fd=490 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:46 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":91,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/style.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/style.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 9533\r\nlast-modified: Sun, 11 May 2025 08:09:40 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mdU43juKrO5inIzxp1iJJYfT%2BJFExCTqA4H%2Fk7NW3LgaN2WBbaQwk218ZfF1vOQY2tmrGNWUHH7ZaOa8SGmAb%2FcidFNE5n0%2Buc8K\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2db956bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":44038,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (499)","md5":"c49e2512d978a0c22cb6306d53338f5b","sha1":"9ee10dc7f1e4d0c27cbe172c91889322af9ae754","sha256":"08a1b058a20ea900171b358ae14034fbfc7241cc99e945f4a6eb6f24ed62a927","sha512":"2f4ccfd2337bad0b33366e0757938d5bb3490e026f25b951cc96134b304fe38f2f825b0792910775336095270507a19d37e0848e0080f5f507760db83f74ee32","ssdeep":"768:M2vBjiD9oeDizLcqlwftTE9R8xeyEm+oNwJdoZRDVBPl9C40mbZSCLGvdBMl:LvBjiZo2izLtlwfcuo6ZlzTTBaVBk","tlshash":"b413b82267722e08b1278279bbd7d7f917288223e10558fdfed27624cb8e5584172f89","first_seen":"2024-06-18T06:14:41Z","last_seen":"2025-09-13T18:24:11.199301Z","times_seen":11,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/jquery.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 31049\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RulmglpE9epbUL%2FLXrtoYkEGhOG19%2B3syr07i%2FhmK9qsIhaCNXgF4tHeqWDQZyyOK6jx48gw7NHFP9cxYpvRBkG9WXUGvsjqmbWq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dc356bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89815,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"0e850a69bc7fd0acc2e92ce6eee87959","sha1":"8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c","sha256":"afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a","sha512":"0f8a4fb2ea15a93290778a55c701208c9245193d8c910f47f26bb245b0a3f6d6d91427a1857f98c3632bc3feec5c0b83517b46c1fa1817bc3bb33b5ccb9a11e3","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQv1:IeeIygP3fulzhsz8jlvaDioQ47GKK","tlshash":"9f93f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","first_seen":"2023-03-29T22:52:25Z","last_seen":"2026-04-20T12:12:58.880959Z","times_seen":29231,"resource_available":true,"data":null}},"time_used":140,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":138,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2373\u0026rd=2373\u0026fd=538\u0026bv=25.8.7886\u0026tmpl=136","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2373\u0026rd=2373\u0026fd=538\u0026bv=25.8.7886\u0026tmpl=136 HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css\u0026l=4256\u0026fd=490","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.526Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css\u0026l=4256\u0026fd=490 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:46 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/css/templates.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/css/templates.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 20994\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=otHwyoWdXVZtdRWdVTPFZdeLKUMHf%2FDBdDlNmMukjfdTH%2BF%2B%2BXfCt6ajoUky%2BkeSeVNW2I69nmqUSwtX9gmfT0a2%2BgaF2Y8vcPya\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1da656bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":220748,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"19b078a21043cc66e35beb8d85a99fcd","sha1":"bcb6ad6ad4671ebb3fb5943c475a74c1d6666446","sha256":"caf034c9b4e0f9b6d6a6e8f032e842fbf006af8f6102140233faff0f54594a4a","sha512":"39332ea3dc42feb60c564ae92550b6ed79ae38de0dc093fe45aedb8e46e95eb5a5fe45f3f2ad30f761199967a08060b6275c8fa335e9ff6e9fbdeacb1b97904a","ssdeep":"6144:W417HWu5NsNTRIohPDqNz4GVNpkeEKBt290y/DxVN:W417HW2mTRIohPDqNz4GVNpkZKc90CDt","tlshash":"9424643aed1a49463125986c6bd927d53a3e4003da0bcefaf6c2736c9f861f941f1748","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.239642Z","times_seen":12,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/functions/wpzoom/assets/css/theme-utils.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/functions/wpzoom/assets/css/theme-utils.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 171\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zprgr%2BdmZwTfrkYU4MW%2F7hqDuDZC3vyBkKOqTRlBeBJHcjtzAMqN1utygudIHDb2GGRA9DgKk8HMdHCew6i4EWi%2B2jI1KzVkZwCy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1dac56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":265,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"bdfbf63d12efc601082b3412bb2e1d83","sha1":"dfb7938b3961d83851d8885352395deeecb13f6f","sha256":"18394afb08aa93c5937597422477d9135b2eefcbd4c4ab607909ca14ffebfab8","sha512":"44f52eb6eda1ecf01754430ec79f1f0086ff0144532d5c1a566fc7f936a55e630a796593533fa9de812ddea4abf93c8b5f80904e565919b670b66a40ad7d7e47","ssdeep":"","tlshash":"ccd05b75c070433016e78713036f75d53cfd2517910d95cd2561966c57d533bc08263d","first_seen":"2023-04-12T05:27:05Z","last_seen":"2026-04-18T15:38:00.35151Z","times_seen":221,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:34:03 GMT","end":"Mon, 29 Sep 2025 08:34:02 GMT"},"fingerprint":{"sha1":"A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1","sha256":"9F:B9:94:8F:84:D3:44:71:A7:81:72:C8:80:4D:14:02:E3:E0:30:0C:F1:17:27:83:00:82:D9:C3:68:D3:B3:AF"}}},"request":{"raw":"GET /gtag/js HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\nexpires: Sat, 09 Aug 2025 07:14:43 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Sat, 09 Aug 2025 06:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0\r\nreport-to: {\"group\":\"ascgcycc:1099:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0\"}],}\r\nserver: Google Tag Manager\r\ncontent-length: 71383\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":192317,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2424)","md5":"a4f608a02f678bf651495f96c04e8c2a","sha1":"2713e0cbd791bbd689b7226e7a58af9aad493103","sha256":"e55c778bde27fcace214447cb63c33b9936111ba1097022dafeba94c656661b8","sha512":"9cfb0e431b962eaa265f796b018f64b375305049a47666b845c60a817a12f7c87b456350e1073566acb8a0375f8fca141710660fb8702faba207863005117895","ssdeep":"3072:UqBci+zp3a20FxMXtW57bECM8+WwF/nhzy6MmE9bTBYiDX:yp0vUw6MmE9bTBJD","tlshash":"87142ac9b7da706693a3a978503f004bb17b7d92f80cd890e152d8d42e74aa90277f7d","first_seen":"2025-08-09T07:15:13.705115Z","last_seen":"2025-08-09T07:15:13.705115Z","times_seen":1,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":42,"dns":0,"connect":8,"send":0,"wait":20,"receive":14,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gyanilinks.com/js/full-page-script.js","fqdn":"gyanilinks.com","domain":"gyanilinks.com","tld":"com"},"ip":{"addr":"157.90.145.186","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gyanilinks.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Tue, 22 Jul 2025 23:08:51 GMT","end":"Mon, 20 Oct 2025 23:08:50 GMT"},"fingerprint":{"sha1":"A4:0A:D7:62:DE:58:B4:03:F5:26:A8:1E:4D:97:B0:7E:85:92:D3:8A","sha256":"58:3A:7D:67:D0:A2:48:26:A3:C9:2F:3F:69:04:6B:2A:A1:9B:FF:35:DA:98:2A:E8:55:57:10:9A:AC:E3:19:A4"}}},"request":{"raw":"GET /js/full-page-script.js HTTP/1.1\r\nHost: gyanilinks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\netag: \"970-5d956eea-196770;br\"\r\nlast-modified: Thu, 03 Oct 2019 03:45:46 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 656\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2416,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (2416), with no line terminators","md5":"10cdef04b47414a545f570f354c55a48","sha1":"9bdae7d1740a336ed66b10b7d061f5b08e79bc1c","sha256":"1c53ca6bf8e492bb0f066298aebb65cb4f00c2ee4af79edbd70939329819f0ae","sha512":"cf64c7f41830d7b8e5175265b2002a32129df40221cd835e011c8f221a70fa7510d3b73c98dbb9286b0dc52a379498d87932e09f92c4fb3372659b4369c7a05c","ssdeep":"","tlshash":"8c41a05458d0c8498edf0cac347fb70ff0b89a778b8a28504a315db46a71714a6ba57e","first_seen":"2023-03-08T02:26:37Z","last_seen":"2026-04-04T08:59:12.532347Z","times_seen":163,"resource_available":true,"data":null}},"time_used":224,"timings":{"blocked":80,"dns":50,"connect":26,"send":0,"wait":27,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-json/iawp/search","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"POST /wp-json/iawp/search HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 202\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:45 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-length: 39\r\ncf-edge-cache: cache,platform=wordpress\r\nx-robots-tag: noindex\r\nlink: \u003chttps://lustesthd.cfd/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nx-content-type-options: nosniff\r\naccess-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link\r\naccess-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type\r\nx-iawp: iawp\r\nallow: POST\r\naccess-control-allow-origin: https://lustesthd.cfd\r\naccess-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE\r\naccess-control-allow-credentials: true\r\nvary: Origin,Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1JCw%2FTVJImy1DuoCcv3cFWkR8IL%2F%2FEOZUceRGu0%2Fqf5iZtuTEBffip5RTN0wCdJTHFbX6r6xwIyC0JPbQmI7Pn95S3x0SS8EREbE\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c575507ab156bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]}],"data":{"size":19,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"7363e85fe9edee6f053a4b319588c086","sha1":"a15e2127145548437173fc17f3e980e3f3dee2d0","sha256":"c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97","sha512":"a2fd24056e3ec2f1628f89eb2f1b36a9fc2437ae58d34190630fe065df2bbedaf9bd8aee5f8949a002070052ca68cc6c0167214dd55df289783cff682b808d85","ssdeep":"","tlshash":"f0600003000000a2c000220002382e202080002280000008800c20088a20000208300a","first_seen":"2023-04-05T04:17:27Z","last_seen":"2026-04-20T14:03:03.053379Z","times_seen":122198,"resource_available":true,"data":null}},"time_used":1125,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":1124,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/sbar.json?key=71e644a3ca9fd45df24938c9840773ff\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /sbar.json?key=71e644a3ca9fd45df24938c9840773ff\u0026uuid=283a63de-912b-48b4-89a1-03a1c2eedb81%3A2%3A1 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lustesthd.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:45 GMT\r\nContent-Type: text/plain; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nAccess-Control-Allow-Origin: https://lustesthd.cfd\r\nAccess-Control-Allow-Credentials: true\r\nSet-Cookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; expires=Sat, 16 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\npdhtkv=true; expires=Sun, 10 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\nuncs=1; expires=Sun, 10 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\npdhtkv29=true; expires=Sun, 10 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\nuncs29=1; expires=Sun, 10 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\nu_pl27181871=1; expires=Sun, 10 Aug 2025 07:14:45 GMT; path=/; secure; SameSite=None\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: ef59500a3c8c3022a812c1199d245020\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6342,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"JSON text data","md5":"4fcde8e8bb2828d21e869789c2a62cd5","sha1":"d3d634bcb5a0a2981cb25ccc7433278147755286","sha256":"49433d295b73b049f9cc71f7c756cac112bc8c05ea55833e4f4090740a0c19ec","sha512":"76c61224930c60ec453b25f46767a746f60a2594b5ca042e9da15ea2d2d7dd12cbfe9ceaf89e547eb863df4c4004dee1ff616664ee399abe16f2ead80526d390","ssdeep":"192:9zScdsKHcdsK0mi4CK2Bms2Vc+E5gARpldeI:9zSvKHvK0mHCK2BAVjEaEdb","tlshash":"9bd16b6ece8939e397f3cd6820676c0aeebb7408e04cc5059197e77b883117a0d0a13a","first_seen":"2025-08-09T07:15:13.708343Z","last_seen":"2025-08-09T07:15:13.708343Z","times_seen":1,"resource_available":false,"data":null}},"time_used":925,"timings":{"blocked":309,"dns":20,"connect":93,"send":0,"wait":306,"receive":0,"ssl":191},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/jquery.uploadfile.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 4712\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gnB67wiFnMf2S1uIxk3otIYQgMhCfGssUJo2WqyTyFfclFlD5bNrZ2vM7FLQY8y9R1jSgPloXY%2B3dAvaAf37yJnYPYJN12piOhIT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dd256bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14772,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (14604)","md5":"f27577f0703c84b0ebc3e5dfba5ef74d","sha1":"825b73f12fdc008ece702a12ff143ebf2a83b34d","sha256":"909565159d7251575fc2348ce0f9a00ba179b6e83820d02349eedc7253bc3ba0","sha512":"a619963067f051c21d540823cca31b4cdeb439bc495506fcb89c1123f9aea1ad7586307b87514b8a3d3d3dcddb595075d2136049a45d21ca5dc78dfae7e7a37a","ssdeep":"192:TONBhdRCNa+M/tugwkfF1Wjm9h8LoND2VuerBGjhbu2EMmp:TOzhdRCnxunQd48qBuPp","tlshash":"eb62d6cdf3a25d53e673207c44df059750227d0bcc5b4248b0ad96c56aeac1998e3bfa","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:19.940727Z","times_seen":176,"resource_available":true,"data":null}},"time_used":118,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/superfish.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/js/superfish.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 3090\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IP4vcT8DJNmotynriu7Q%2Fnj8w%2Fwkw1BvuZd0PBHdHSKeWlK7FxpP7QZTpkZ2oYWHAK%2B5pjTPO6o4Nf3n8NC7fzAVBChi5DvIRE27\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4dfb56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7938,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4000)","md5":"d6a7b4aed3bc6412292761a470242b7d","sha1":"58874296ba2689c394301981eb1dcc38ba698f69","sha256":"38d223fe9d39a96ecc8910c092baa9e53dd218d564a9ae758a68b60a704f91f4","sha512":"347b548889cb67601cd8be7d8c685b69bdbaad0ab6ffac00b4ab29dcb76075f15a9c144e2a173818ca7d5044f59c515cc2adcbe8c2deb2a8f4376a1c4753861a","ssdeep":"192:JdVdwCC+fxaOWo0GTGMHfcoEFaNAf3Ou2:NyChfx3WLStEFVG3","tlshash":"adf193dcb7d3a0e25243a16b413f6104b272494f5888e408b47e95952fed92c6236fbd","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.103562Z","times_seen":12,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Oswald:300,400,700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css?family=Oswald:300,400,700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 09 Aug 2025 07:14:43 GMT\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5133,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"fe050ad3ce17cbbb76d7c2e1268e2394","sha1":"3ff0c7a451f965c2ea431658b8259d6bdf4d39ac","sha256":"b03d173f0519e239eafa25fe571267f7a719dec1d4edaeeaf7dfd2e255e88c67","sha512":"339eb584ada14b7994428e02b5613827bb01dee8406c75f94990372a3d91f060b95550aae1f2cd224cd91d60914527e6cb9de2d564871effe0d3b861f0d788f6","ssdeep":"96:wOWXgOWVFZOfOWHOWsJc+ujOWDNzOLXgOLVFZOfOLHOLsJc+ujOLDNzOCXgOCVFX:MXc0HPYakX90aiYHpX40DrYOy","tlshash":"61b1aea2042fa4806f471cc533cf3d329e8e624574619575affd1ca8dce6e216369b4e","first_seen":"2025-05-30T22:16:55.781513Z","last_seen":"2025-09-11T17:01:17.066964Z","times_seen":838,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":72,"dns":1,"connect":20,"send":0,"wait":30,"receive":0,"ssl":51},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wayfarerorthodox.com/d7/b7/c9/d7b7c97c13b1c59ade786a4425c5c4d6.js","fqdn":"wayfarerorthodox.com","domain":"wayfarerorthodox.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wayfarerorthodox.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 02 Jul 2025 00:39:20 GMT","end":"Tue, 30 Sep 2025 00:39:19 GMT"},"fingerprint":{"sha1":"2F:53:8D:73:5E:CE:FB:91:B4:FD:2B:4E:F3:E9:80:AA:62:1A:61:CD","sha256":"C1:D4:30:78:23:7C:54:B2:69:C9:DF:D9:A9:CB:93:CF:63:1B:C9:46:05:84:47:B1:70:77:4E:B8:85:DE:85:B8"}}},"request":{"raw":"GET /d7/b7/c9/d7b7c97c13b1c59ade786a4425c5c4d6.js HTTP/1.1\r\nHost: wayfarerorthodox.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 09 Aug 2025 07:14:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 32374\r\nConnection: keep-alive\r\ncontent-encoding: gzip\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccess-control-allow-origin: *\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 12\r\nHost: wayfarerorthodox.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 756691c5cce19238e762a1135ace150d\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":104617,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"fe10639337a4edc4a414bc7424c08149","sha1":"aa54b6ed045c2478607215832b34d07cb9cadacd","sha256":"4c27fd06b8c1fa82f55e9d7c46bcb9737b826dc0f987be3021bcfad949536a9d","sha512":"3c5eacd082ecb8a17a8244eaeddae7831badc86e580faaf67c78d77c5778675b3cb503db6a4bc2fa9e18ef98f7dd49a39de7f56f95e307fe604a765fadf15718","ssdeep":"1536:SO/6hWbSTyJhKkoQhkmyC0E98k0RYqnhNzc/7ksqWPbIKau3l0gaTX6+IPC+:9JhKfEMRbhJIMuV0DxIPT","tlshash":"f6a3c6487f50f15c83aaa17b233f910ae02b4d42618d915ce513e5e8bf6eb0bf63e558","first_seen":"2025-08-09T07:15:13.711471Z","last_seen":"2025-08-09T07:15:13.711471Z","times_seen":1,"resource_available":true,"data":null}},"time_used":865,"timings":{"blocked":331,"dns":50,"connect":91,"send":0,"wait":108,"receive":93,"ssl":189},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js\u0026l=975\u0026fd=426","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js\u0026l=975\u0026fd=426 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:46 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":70,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/impr.gif?sid=H4sIAAAAAAAC_1RSTWgkRRSunl28ePBnRURYGEFEwUy6pzszPe5hcV1XFtck7q7kIB6qq6onZaq72qru6clcDAZkvch4EfUgnW-SDeqyuAePgky8SEBwPOWwuXjyLAaPMsnA6Du89776quB736uPd4pj4qOgR6tv6YFUii4uNdz6i2sy5bq09eXbdc9tuJfqazJtBZfq_WkyvVc8P2i4L9XfEGxDLzZdz3U916tfk0bEur94ykJm9zpeo-M2gmbDWwrQN__HtnBgqQPeOyZPQvLJY3_E70KyMdLk-6vCbuQ6e_n1pFA01wY9vv9OupHqMkUyb2PjIE73Z7eh7YSQL2rQ6f5sAuje7nQCRHJCak8_RJTuz2Qi6u2dKY0URIqIP4qyN4ZQY0g6BtPbkPw3AjCO5RWkyd1lbUq6ecbSKTsh50_-giwn5PzDp5Am968o2a_f0qrIpU4t-nEF2R9DdsfIigPkgxpkeQCWfwTJfyWLJzeQJrsrVmlIfvR8M_Rpy-dioeM1o4UgjIKFsEO9BdenHmsKwaPQO7VIxmNQW0NhHRTSQRE7KDIHCT-qB24YMI_6rbjDWdsNaBBwEbmdsOm6tMPaKNhU-xB5NgRTQzCzhcxsYUMOYYqfYNcrWF6DzSfEeftD9HiFUhCUlqCkBKUkKHOCslftcWWbtrrLlS0ib1abs-pXI513d-iezrsiJaBmCMOrXZl9YLfB8nOjQWz5SE8TjfJqRCNe7WTH5Imptc7XB4vYEEf1tidaQUB9RjsxD5Z43Aw6fsg6YeC2234cw8oK0tZArYOBnJDnXriATE7II_-EiOgBrDoAk4-DFhdBywp0vcIgve-Fie5J0d8cNLTpgusKWX4e-aazo47Js6frfe_iMxDs8PIvX07jKzBTITMV3pc_E3TVndFNXZLdm7q05MFKlstEDuh09bdymotz374pNktt-PWrdvjNq2xKTNt7t4XNb9CUy7RryXdXJOfCXNOGCfLjdbsmotXCrl8pTFpkN1Zfu3Y9yYywVup0DConhHz6J5ickAuf_HD6rYMHJ5BmDFNUSIpDMguwbAs2m2u3msCoOR9lDsqiGplmND9UkkCJOaZRBfsfHM37kaHT11RWO_YOusYBzbeRJhV6pkJPVaBqCFucG-WZObz8u38aiJQzipRxdiNl1GdnFlt5VI990WSuG7Zbnh_GwvMDzuKlMOjwFnV9XyC3k_XP_xb_BgAA__9O-vBxtAQAAA==","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:47.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /impr.gif?sid=H4sIAAAAAAAC_1RSTWgkRRSunl28ePBnRURYGEFEwUy6pzszPe5hcV1XFtck7q7kIB6qq6onZaq72qru6clcDAZkvch4EfUgnW-SDeqyuAePgky8SEBwPOWwuXjyLAaPMsnA6Du89776quB736uPd4pj4qOgR6tv6YFUii4uNdz6i2sy5bq09eXbdc9tuJfqazJtBZfq_WkyvVc8P2i4L9XfEGxDLzZdz3U916tfk0bEur94ykJm9zpeo-M2gmbDWwrQN__HtnBgqQPeOyZPQvLJY3_E70KyMdLk-6vCbuQ6e_n1pFA01wY9vv9OupHqMkUyb2PjIE73Z7eh7YSQL2rQ6f5sAuje7nQCRHJCak8_RJTuz2Qi6u2dKY0URIqIP4qyN4ZQY0g6BtPbkPw3AjCO5RWkyd1lbUq6ecbSKTsh50_-giwn5PzDp5Am968o2a_f0qrIpU4t-nEF2R9DdsfIigPkgxpkeQCWfwTJfyWLJzeQJrsrVmlIfvR8M_Rpy-dioeM1o4UgjIKFsEO9BdenHmsKwaPQO7VIxmNQW0NhHRTSQRE7KDIHCT-qB24YMI_6rbjDWdsNaBBwEbmdsOm6tMPaKNhU-xB5NgRTQzCzhcxsYUMOYYqfYNcrWF6DzSfEeftD9HiFUhCUlqCkBKUkKHOCslftcWWbtrrLlS0ib1abs-pXI513d-iezrsiJaBmCMOrXZl9YLfB8nOjQWz5SE8TjfJqRCNe7WTH5Imptc7XB4vYEEf1tidaQUB9RjsxD5Z43Aw6fsg6YeC2234cw8oK0tZArYOBnJDnXriATE7II_-EiOgBrDoAk4-DFhdBywp0vcIgve-Fie5J0d8cNLTpgusKWX4e-aazo47Js6frfe_iMxDs8PIvX07jKzBTITMV3pc_E3TVndFNXZLdm7q05MFKlstEDuh09bdymotz374pNktt-PWrdvjNq2xKTNt7t4XNb9CUy7RryXdXJOfCXNOGCfLjdbsmotXCrl8pTFpkN1Zfu3Y9yYywVup0DConhHz6J5ickAuf_HD6rYMHJ5BmDFNUSIpDMguwbAs2m2u3msCoOR9lDsqiGplmND9UkkCJOaZRBfsfHM37kaHT11RWO_YOusYBzbeRJhV6pkJPVaBqCFucG-WZObz8u38aiJQzipRxdiNl1GdnFlt5VI990WSuG7Zbnh_GwvMDzuKlMOjwFnV9XyC3k_XP_xb_BgAA__9O-vBxtAQAAA== HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:47 GMT\r\nContent-Type: image/gif\r\nContent-Length: 7\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nVary: Origin\r\nAccess-Control-Allow-Credentials: true\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nSet-Cookie: iprc_l+7188c0063c99394e735d1832e704c4b3=6102296; expires=Sun, 10 Aug 2025 07:14:47 GMT; path=/; secure; SameSite=None\niprc_l:6102296=3; expires=Sun, 10 Aug 2025 07:14:47 GMT; path=/; secure; SameSite=None\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 8345dde13e6a87d23bec62cfd0f1908c\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/css/font-awesome.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/css/font-awesome.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1915\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z3wiMNpxgnGeGXsxw5DfOp%2FRCoxNxPB5cXsuHRSvpUyc2em%2Fle0mltMMhNaNopxfo%2FdbmUBkJ75GGOzNzCWCrUp%2FeSG0%2BjtqaoM%2B\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1da256bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7289,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (372)","md5":"f55d86f4163567db50f67fa3185a703b","sha1":"a29b141f2a636dabec3ebe8a0cceffe47847f2c1","sha256":"0cd9723f8151f2e4e4843b3be64e3c343d5e3a6f6b3f4454741cf23f50d98e3d","sha512":"8a0a42cdf945e92b622caf54106830a454e652b9bbce3ece63192a13ed6ffb9e19d1b97cffb5235c2f8d622731618edfe60975780dcd7fafb8f3478c53afa7e3","ssdeep":"96:nubU6bJi9v/ODgCOrSkLaCczE6zYk9luZckEu0avw7MVA+XmsgYBSS6WhHd3BaIN:nqDJyB+tl3avNVA+WsgYBJBhWsAm","tlshash":"fee128edd93e0cc253c1e4d5664a7bb4abacb26ede046d5ce1e6742c6ac6340c085bdc","first_seen":"2023-04-30T08:20:07Z","last_seen":"2026-04-05T08:58:32.451503Z","times_seen":85,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/css/select2.min.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/css/select2.min.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 2027\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9qkqF9QjGd74eJcSM9CdNNkVqRvwgUB57wxsGbIo%2Ffu%2Bmxgf6xytL2Gro8cBKm4HklsGfLBL%2F%2BbrHOi8d7viZGHiZD7OmXowCuGe\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1daa56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15255,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (15195)","md5":"0ccc843dcac0a3a1ee03488280a7b7d9","sha1":"3ffa2910980ea72a7e0ff58fa8e1790d504d6f1b","sha256":"81e5a5f7ff66de74c478aae2ac0b729a2413606265086d2a736d7aba638eca4c","sha512":"308b7ca9de483e55393d6b464d800ccb100f3e7fd4e2fd94c1497530040c30bdabe351ebd1b6eda8c3815c4c2f8446d984e58e462e1ee10a04ca89ec3b0dbe7f","ssdeep":"192:5mL5u/nTfc3aqWJCeQ9CPjOtWlUJKLJcH9tPOF:6u/TfX1TQ9htWGSJcdwF","tlshash":"cb62aa29bacc2235b0bf8e7f6cf274946739dd5fc4111b9ab8e9e554c8e04540a8b60f","first_seen":"2023-05-10T09:20:42Z","last_seen":"2026-04-05T08:58:32.499644Z","times_seen":51,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/styles/dark.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/styles/dark.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\nlast-modified: Sun, 11 May 2025 08:09:40 GMT\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FEG5oxAl%2F1P%2FVuGl6T5uBgcIMLK7zbWfbKDZfsMwKBVgfqU5R6bYVV6Y0jGXyMzgctH8xJTwZrlN00O8ZneCTtsCbVtLnQJwmXhF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96c5754c2dbe56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=GT-NCLQ3SVX\u0026cx=c\u0026gtm=453e5861za200\u0026tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033766~105033768~105103161~105103163~105135708~105135710","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:34:03 GMT","end":"Mon, 29 Sep 2025 08:34:02 GMT"},"fingerprint":{"sha1":"A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1","sha256":"9F:B9:94:8F:84:D3:44:71:A7:81:72:C8:80:4D:14:02:E3:E0:30:0C:F1:17:27:83:00:82:D9:C3:68:D3:B3:AF"}}},"request":{"raw":"GET /gtag/js?id=GT-NCLQ3SVX\u0026cx=c\u0026gtm=453e5861za200\u0026tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033766~105033768~105103161~105103163~105135708~105135710 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\nexpires: Sat, 09 Aug 2025 07:14:43 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0\r\nreport-to: {\"group\":\"ascgcycc:1099:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0\"}],}\r\nserver: Google Tag Manager\r\ncontent-length: 134772\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":404951,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6006)","md5":"eee67f75c13e578ea365ed66da97ed55","sha1":"9303f7018fb57a00443cc67bc6bd06ed99904247","sha256":"241ad90be66765f45a3cd1b7e6d5ce6fcd598403ecd9a2b5228628390a58d507","sha512":"20a0903eed58b1d55d38f4ae7dccff05c664fb5460e0ae2fe6df2ac879e2c7b8a8f1a570235cd4983f639c449ca0164f55f3a6d73192c8c49bc473616f04c18f","ssdeep":"6144:exP2NU1ddLnAyevGtkT2PG6B4xdJSVccEW:QPiMglcmdqzH","tlshash":"ff8419ce73d670669396f078503f018ba57b29a2b45cc899f189cce42e74a9a4137f7c","first_seen":"2025-08-09T07:15:13.714442Z","last_seen":"2025-08-09T07:15:13.714442Z","times_seen":1,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":41,"receive":46,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/uploads/2024/02/cropped-cropped-lustesthd-192x192.png","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:44.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/uploads/2024/02/cropped-cropped-lustesthd-192x192.png HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 44247\r\nlast-modified: Sun, 11 May 2025 08:09:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hWgcbG4w1xIe1D90WJo2JI1oAm8BE3D4qq5iUmM9qOINDxf6QnFs7J3lLWYrkRJiq9g3va7vFIchW3ho%2BsV150px8pbBhY1fPD9J\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c57552ccf456bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":44262,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"a44d5921cc7dd6a0e46a3992c2160e71","sha1":"55a9ba5f38e5c9453b2989f831b8143bae3c3b2e","sha256":"e3952b9deaa01df294593435e574d890dff8dcd019dd72c26b131218c847735f","sha512":"3ba74a72758fb4847b54e6e898685c12d86bbc1d00470e1e08c5638e40f1fe0a3a0d06fa3ae22f458077b36cc61b4bc74bf7ec38b425ab7c850dd976e6a3ade1","ssdeep":"768:T2vnBPlmTxQHUi/ZWm2oVG1wtOPlEUsVTDegtOp+YgPqIJzvpXHJbgcp1RmJ4ZBW:TonQyp/ZWd+gwtOPSUsVeGOp7gPqIJzo","tlshash":"781302798088976c66abd10a595a8a65b1f331015c27f0d4bf2bcfc9d533e4a778c868","first_seen":"2024-06-18T06:14:41Z","last_seen":"2025-11-05T11:11:30.496567Z","times_seen":14,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/css/style.css","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/css/style.css HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 9075\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nk5eTo09JdUesZOdxiiypCqdo2svSciwavCKExnYH3tH9cLriWJKCFg3jOYhyoCLqkxe%2FL51lqxWLoklXIni3TJlLyhtR3pmSQ3Q\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c1da556bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":47492,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"f46ec3f446a13fc0b6eb8740c6fe54d2","sha1":"6f4faa994f4aa495b65dea80cce356e280cc040c","sha256":"040c68e25d9297f49eebd9fab2568e5fcbea02e1db1a1c7bef608c2bd821f0a8","sha512":"4e0764aca3e55b96f043f721b97ad0ffd95d6d8c523b428eb0161261459e3c6de86559647ed005a1ea6c36c34cb17844596baa2aea467ec74350e7a53f640f8a","ssdeep":"768:NHneuNIFluF/Hr+29mWTz4NdJi+saFCWCvF8IJEksr4fQx1UmQtKZXbt6JnrRzWY:dpNIrux+29m1ihaAWIF8IJlBfA1UmQtv","tlshash":"61237462ea260c4b71134558679d6bd52f3e0403da1acebeb955362c8fcd2ed92f3708","first_seen":"2023-05-27T15:15:56Z","last_seen":"2026-04-05T08:58:32.533088Z","times_seen":36,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/themes/BonsaiHD/js/jquery.mmenu.min.all.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/themes/BonsaiHD/js/jquery.mmenu.min.all.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 8738\r\nlast-modified: Sun, 11 May 2025 08:09:41 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q2O0GMV4naaTuWjqZZWokAC6WhHKZWZE779JJTkCKwtHj56LWJ7eL32CKM47YH3vXSY5UMvfex1qFW%2BRiniQnPj1x9H67JcuAmue\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4dfa56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28289,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (6903)","md5":"70b0aa6e01d7f38befc6b8569779d8e3","sha1":"98870971a15eeadd70901981f1fc27460b7871f1","sha256":"37b13c8f30d908672e140b17346ea528c733b9060e80c967a57fd49d3f1dc0a3","sha512":"6fc957a10042794797d7fc4ec401c10793a62f27ed825c1bd54d6a16fc9d219c2cf712ea0f40aed8b5911b4f3845420dda335f8844ae70a198821fe0ff3fb541","ssdeep":"384:fGmjQfnjZb38KmMqcZ1ULlgAGTptbbPtfGuGZCvW2AGTgaMGxdWykdnStEFVG3:f5kfjV38Kmdch5bPwPZCvf6NykdNVG3","tlshash":"9cc20a9db09131b285a3a1b7a1af9009b533141e850a8d0c71bdd5cd8f7e41c66f2fbe","first_seen":"2024-06-18T06:14:40Z","last_seen":"2025-12-04T02:16:35.189599Z","times_seen":12,"resource_available":true,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 302\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZFoBvfErFQPFAb%2F%2FKlAMOWuZhEw1dfn%2F1aMoR3DAXxgRPI4VqPh2u5eitH3jMwgJxb6qYBIynM%2B6Tzx7oDDxoKukfuhhdCszgETI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c4dfd56bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":544,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"178a226cf5728e4ad7e77d5023ba39bd","sha1":"a114b1b69f5cfccaeb563ba3f907940e96796955","sha256":"da03e5070df7c57306da42b86d3f68453287ac0cd8d627184dfd0967b3dbb7da","sha512":"624cc009dcba3091f4f7c91f1a2d2d76617d0836f3d3c1f5db562330abb711da915f57823179e7340dc0fe892c3f7ddd4c815a2d7814a465189efcc0eae1bd59","ssdeep":"","tlshash":"a1f0e2187cb546a1056e286662ffd048788490a35254e9607e9dc91c2fd8bef1962b98","first_seen":"2024-05-21T06:39:36Z","last_seen":"2026-04-18T01:50:01.418876Z","times_seen":524,"resource_available":true,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.life/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","fqdn":"lustesthd.life","domain":"lustesthd.life","tld":"life"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-09T07:14:40.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.life","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Jun 2025 07:59:57 GMT","end":"Fri, 12 Sep 2025 08:57:45 GMT"},"fingerprint":{"sha1":"2D:AE:50:1E:0C:6A:47:A0:F2:5D:72:1F:54:7E:E1:06:BA:79:B7:16","sha256":"64:03:0C:5F:F7:77:60:5D:39:A3:F0:5C:B4:1A:0F:FE:1B:C9:7B:12:DC:D8:D1:CC:45:83:72:BB:E8:FC:4C:99"}}},"request":{"raw":"GET /wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/ HTTP/1.1\r\nHost: lustesthd.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sat, 09 Aug 2025 07:14:40 GMT\r\nlocation: https://lustesthd.cv/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=haeBRUzyapD%2FwsXoMfrigYVj3NorgcMUzZCoDRW%2FrRzCLkl5Oj%2FcFXKxzGyjobqADG5ej3laN8s38YKk1egfz2h%2BYT6kg8l0P%2Fo%2FDA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 96c5753c0c6a5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63961,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":84,"timings":{"blocked":38,"dns":16,"connect":1,"send":0,"wait":7,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-includes/js/jquery/jquery-migrate.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 4795\r\nlast-modified: Tue, 18 Apr 2023 21:20:15 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oQo3T6PMqjkZrxTADf2kHUysyZeHMh2sl%2FG5%2FwhmGbBsfn5Gudykl%2F1G5zgRvCzgVdyAg7zOEiGjiJqwLYRgg%2Bgic6RaNkgMPC0O\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dc556bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13424,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (13326)","md5":"5cfa2b481de6e87c2190a0e3538515d8","sha1":"0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68","sha256":"9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3","sha512":"51c4c1dbaf330ea0f6852659cb0fe53434f6ed64460d6039921dd8e82f7a0663eebfb7377dc7e12827d77ff31a5afee964eea91da8c75fa942acf6d596ef430f","ssdeep":"192:arprDN+e3IUefKSfI0bP1CMjt9kdgOFWIa/aC3+sZv9LRM:arprx6PfK2P1CMjt8FWIa2sZVi","tlshash":"9552c86d7566b9714eb732b9f03bd30b71b205cd5a0d8940d19cc8f6247d89e812bf68","first_seen":"2023-03-07T12:08:52Z","last_seen":"2026-04-20T12:12:58.882727Z","times_seen":18364,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lustesthd.cfd/wp-content/plugins/indeed-membership-pro/assets/js/select2.min.js","fqdn":"lustesthd.cfd","domain":"lustesthd.cfd","tld":"cfd"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:43.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lustesthd.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 22 Jul 2025 05:41:03 GMT","end":"Mon, 20 Oct 2025 06:39:47 GMT"},"fingerprint":{"sha1":"56:35:DB:40:20:1A:48:78:93:29:3E:61:61:C9:C0:34:5D:AF:9D:22","sha256":"57:D0:71:38:91:79:91:E7:4B:3F:5C:F3:29:B6:7C:DB:40:25:1B:AB:20:0E:32:97:B8:CB:49:F7:4C:94:35:87"}}},"request":{"raw":"GET /wp-content/plugins/indeed-membership-pro/assets/js/select2.min.js HTTP/1.1\r\nHost: lustesthd.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 09 Aug 2025 07:14:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 18545\r\nlast-modified: Sun, 11 May 2025 08:09:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pQ6zv8l59uivGFiawD71ZaFdAqF8j9w8F4RYr3ZP1BNW0xKaRKFgJxl1SUdaFtfXdaBPWGF7dRKuPXLzLZpBLcGFNmoRiIrqvJWx\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 96c5754c2dc756bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":107097,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (343), with CRLF line terminators","md5":"5547c5ead0e9fec8ae2c638325ae41e2","sha1":"fadba4bc649d0eb3062e89f62b67182aae4e1722","sha256":"eb98695d0684bb8a16ca46730b98e3d14840a8ea189fd4b30058cb2694d33f04","sha512":"788ab93c7221f4fe63b2080a395ab2cd1a7b3f82c046a3059b402d2b227efee620bc229a3088019393ba45e35faf0945385d9f016734f041a744e589b5938c90","ssdeep":"1536:TzFMMCl8kQ2I/iHkvgc/n0vQTgGvNsTvoqp4O2A3c5ARn23u0g:lClRJGjTDc4O2A3c5ARnZ","tlshash":"9ba3630abbe031369137b376dd7f4808f136553fa14589987c2c90e85f7982096bafad","first_seen":"2023-03-07T13:00:57Z","last_seen":"2026-04-19T11:11:20.040322Z","times_seen":139,"resource_available":true,"data":null}},"time_used":172,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":171,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rashcolonizeexpand.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html\u0026l=1777\u0026fd=473","fqdn":"rashcolonizeexpand.com","domain":"rashcolonizeexpand.com","tld":"com"},"ip":{"addr":"192.243.59.12","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lustesthd.cfd/wp-content/cache/min/1/wp-content/themes/bonsaihd/js/init.js?ver=1746698883/","date":"2025-08-09T07:14:46.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rashcolonizeexpand.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:10:41 GMT","end":"Fri, 26 Sep 2025 22:10:40 GMT"},"fingerprint":{"sha1":"C7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92","sha256":"CB:A9:18:8B:DD:56:71:B4:C1:61:A7:9F:5C:50:7F:22:BB:83:72:BC:0F:B3:14:19:C4:E9:F9:59:6A:0F:95:EC"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html\u0026l=1777\u0026fd=473 HTTP/1.1\r\nHost: rashcolonizeexpand.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lustesthd.cfd/\r\nCookie: uid_id2=283a63de-912b-48b4-89a1-03a1c2eedb81:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl27181871=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 09 Aug 2025 07:14:46 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: rashcolonizeexpand.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-20T13:59:59.325235Z","times_seen":13977692,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-09","alert":"Sinkholed","trigger":"rashcolonizeexpand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}