{"report_id":"40bd55a3-e406-47fb-b20c-19ccbbef306a","version":6,"status":"done","tags":[],"date":"2024-10-09T02:55:33Z","url":{"schema":"http","addr":"www.medianews1.site/go/1a91fa25-3a95-4f09-8799-c3290cfc9efa","fqdn":"www.medianews1.site","domain":"medianews1.site","tld":"site"},"ip":{"addr":"3.71.151.17","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"title":"Participate in Our Exclusive Online Survey: Share Your Insight"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-20T08:43:27Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-10-07 19:37:44","alert_count":0,"request_count":4,"received_data":3549,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.medianews1.site","ip":{"addr":"35.158.71.179","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2023-10-31","domain_rank":0,"first_seen":"2024-07-24 17:23:15","last_seen":"2024-09-26 18:51:55","alert_count":0,"request_count":1,"received_data":1654,"sent_data":513,"comment":"","tags":null,"fingerprints":null},{"fqdn":"nadrigrir.com","ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-09-02","domain_rank":0,"first_seen":"2024-09-02 19:22:27","last_seen":"2024-10-07 12:06:27","alert_count":44,"request_count":44,"received_data":649981,"sent_data":19011,"comment":"","tags":null,"fingerprints":null},{"fqdn":"auchoahy.net","ip":{"addr":"139.45.197.226","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-07-24","domain_rank":0,"first_seen":"2024-07-27 15:10:36","last_seen":"2024-10-07 13:05:55","alert_count":1,"request_count":1,"received_data":483,"sent_data":528,"comment":"","tags":null,"fingerprints":null},{"fqdn":"datatechonert.com","ip":{"addr":"185.49.145.45","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2021-12-24","domain_rank":46154,"first_seen":"2021-12-24 17:44:17","last_seen":"2024-10-08 19:59:26","alert_count":0,"request_count":1,"received_data":480,"sent_data":537,"comment":"","tags":null,"fingerprints":null},{"fqdn":"glooxing.com","ip":{"addr":"104.21.8.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-09-02","domain_rank":0,"first_seen":"2024-09-05 16:33:38","last_seen":"2024-10-08 15:50:13","alert_count":1,"request_count":1,"received_data":1839,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 07:43:57","last_seen":"2024-10-07 19:37:45","alert_count":0,"request_count":4,"received_data":3548,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"e6.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 08:35:09","last_seen":"2024-10-07 19:38:57","alert_count":0,"request_count":1,"received_data":728,"sent_data":326,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdntechone.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"domain_registered":"2021-12-24","domain_rank":64371,"first_seen":"2021-12-24 18:09:58","last_seen":"2024-10-07 14:08:29","alert_count":0,"request_count":3,"received_data":51844,"sent_data":1098,"comment":"","tags":null,"fingerprints":null},{"fqdn":"my.rtmark.net","ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2014-10-29","domain_rank":9054,"first_seen":"2015-02-04 10:54:57","last_seen":"2024-10-07 22:30:18","alert_count":0,"request_count":1,"received_data":744,"sent_data":428,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-09","alert":"Sinkholed","trigger":"auchoahy.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"glooxing.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/framework-f3a5861786cc8e61.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"405295ad54872f95616ad4a6c5825af1","sha1":"08c7947a0f01af2c9d2bbe966003667ef3ac1dfa","sha256":"b3f17c2e245d66acc87ac6add2462d56afd8a26c410a180381a37884a02aae00","sha512":"b507d561b7b6db189f1d1778f4853fb08f3b2aebad9da2cd8afd84def4172b598ead8c7253068f6f5a31ff7c7b6eb8957716e8a01501e35ac5ea2de41b149369","ssdeep":"384:MXv5bZ0z3IcV+NtIVVLuugpbSw2tC9pVCeBo01ALKiol7YACwEbhkX:MXvtZsIS+NSf6SwT9Vl89bhkX","tlshash":"f2c2b6e878e4f41027976076517f284bb37b186d688cd0a0e325f8e93db451e64a7fac","size":26670,"data":"","first_seen":"2024-09-04T12:59:23Z","last_seen":"2025-01-27T06:29:13.346765Z","times_seen":3751,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/O16NddbN4ifv-hUemlqj_/_ssgManifest.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5af451de5239a70857cf148059518454","sha1":"d6735fa6bfc3626a57b75af27472aead7bbbcfd2","sha256":"44c6c8a145065314f0fcf7e1a9624f4f73f49136ffdb9441199ec7166c6bfe33","sha512":"feab2e6b4b409fec527fc1bfd420e3f13768665957204c19e101985873ac1fa2a2e4c8cacb9f17b33ec1795d88b0e1b1e6b484fdc14519e68f0dad24984d177b","ssdeep":"","tlshash":"fdc048f2846cac26aa72dc285ab41f228fa00226a84a28938afda44580a20422a10d20","size":134,"data":"","first_seen":"2024-01-31T16:47:14Z","last_seen":"2025-04-16T11:01:56.431952Z","times_seen":9660,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4683.098c066925fd7aaa.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"851d7f033a355897dcfa71156a3a2eab","sha1":"65f45506d0eb50d9d41b906575537ca6babb2287","sha256":"0b96f11d38bccf898e05c3706378b70097e974563c2da492a7c460f9824888af","sha512":"8490b38e6f405a34585611f8f618b64df0ae602bffca90d0d292e6921b86bc62e6322c81efc5579b47d0301076210eab62b4678b1367f6eb3f380f1c5f1f92af","ssdeep":"192:rH6isbxPpFpNpb7K1p1pa3p1pp7pYpb9zQM9gMvZZy:zm1pFpNpb7K1p1pa3p1p1pYpb95jZZy","tlshash":"a4d185c1b6ebb8699172065c106f3274f326dd0272cc9919ba53d56578acc17b833b3e","size":6164,"data":"","first_seen":"2024-09-12T15:50:29Z","last_seen":"2024-10-11T09:16:33.597434Z","times_seen":564,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/universal.js\u0026var=7339789\u0026ymid=\u0026b=\u0026campaignid=\u0026click_id=\u0026ab2r=\u0026rhd=1\u0026var_3=\u0026oaid=\u0026os_version=\u0026btz=UTC\u0026bto=0\u0026z=6679100\u0026cdn=1\u0026ab2=\u0026ab2_ttl=5184000\u0026domain=\u0026var_2=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"628cec81962ee09b413ce7668f872c5e","sha1":"182057b5601dbdf99ed18957c50fea02981f2642","sha256":"6c5d5ff8b412b9eb1647d60a917b61bee0cbb59687b6c9c40718c808155c9820","sha512":"d1e850983b6ae731b52f15ea9330f1d64faf5ba7837bc6897879d529bd6cb7041baf2652adbf149d951f8e599456d96432d3ea445d835b92d4780e26824a3cac","ssdeep":"768:fnnnxdoVqah1NE2lgc0cquA2ZUn/w0UwYEozfAW9gCIHrrsGzx24ZuOqoh8lx5nt:2o92gUwxo8/Cgr7ZrZENfirzwvxdN","tlshash":"cd13e95374bbf9ad0bd295c1883e8e054277c950281fdcc5f20d9aa1b867502a3a7fb9","size":45412,"data":"","first_seen":"2024-09-30T22:52:21Z","last_seen":"2024-10-11T09:19:39.390675Z","times_seen":651,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdntechone.com/stattag.js","fqdn":"cdntechone.com","domain":"cdntechone.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"80d7433dbc2b7708f2fa4e6a9943a116","sha1":"350c6e2bb1cbd07de260856f918f4ececcd96894","sha256":"54862ebdcfa23c67d6de25543e0b22014de8fd8d3d3aed09d615981bbdd76251","sha512":"6c065d9d4d04b7c4a11ae28751a711a064410055e1db34daed1c74d98f0257a304481bbf2af96b0845075f43d43bafeab34a49241a2a63f967fc0867748f6052","ssdeep":"384:WDC77FbFjbRN8h+eYFCatOJ39BEisNWP7gDhlPQ5EKQIkT8:d771Ff8h+eYFC/JNYa71","tlshash":"ac72e8c631a474afc6c292f04a7f092ef768509060be2986c1d5b4ec5ab51cee7c3f95","size":16490,"data":"","first_seen":"2024-07-11T14:08:01Z","last_seen":"2026-05-08T14:04:47.515323Z","times_seen":9387,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fa8509ee1b2624e455be988f51a68c56","sha1":"7c950d058c00a8bb4458b431f9732149a454f470","sha256":"fe26699b6e0f46dc11fd983eb5d8cc519d2d7159a5ac03daf217c643fe16bdaa","sha512":"78338645f3f0b20f3d71e8ee070e32822c07223aa30cb0c7c692af907c7ff2d1c8fa087d1aa33ed93691a933934c923c5c184a4e909baf16b9dcd36b80596a8d","ssdeep":"","tlshash":"07b0124ae3bc26654350064230b7448539450e1237f42055b9e9b404cf21fa5038097c","size":105,"data":"","first_seen":"2024-08-22T13:21:09Z","last_seen":"2024-11-04T05:44:12.111781Z","times_seen":3261,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c1daa8defa277c897365ae57acf20f3c","sha1":"e1057310289eb9ab8a1e442856f4af8db24b2f24","sha256":"13b2ca1dabaa17a90a9b2e2c9f8286896aadc73ccf23c21703b52fdec286bde2","sha512":"2fdddec2cc4f6591511f90b2003c76b415ae68a851d4a59381862f0dc6ea77065774f86c4e7f2e5b2d57e69ea403470fbb60a571385e801a7868623fe987c10e","ssdeep":"","tlshash":"5301bd183108e9ffd744009c29586f2f6df62a77f1c05874e6dc051528eeed527a268b","size":768,"data":"","first_seen":"2024-10-08T22:00:52Z","last_seen":"2024-10-11T08:46:46.71153Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9801.df1a0704b381f036.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"748726130a1df425a0ffc70b426980bd","sha1":"665d64ce81db17ac48554a2981114293b90d86d7","sha256":"411199d0d3ccb037fe894a46ac8b1ecea5ed1d33c24e30e5a5a50070c9bb1cff","sha512":"9df280e720c5a7eea0fa6f2ea165802aec0c8a422b207398927ff20724260ea16655d91f24ec9ab2cadd9ca83b7dc527300e80ca30b25ac6d2fe569d0b6a925b","ssdeep":"384:XNuxjchoSCh1mcvCElLy8VgQlqCbiCmgMnOzgkgXgtgmg+gjghgpgwgygjgPgRgQ:XNijchoSCh1mcvCElLy8VgQlqCbiCmgH","tlshash":"aea239a7ef87e08c1277e6a1c0f75967b1b97b0103d86021ab9768c526943ce7361e7c","size":21662,"data":"","first_seen":"2024-10-04T14:09:54Z","last_seen":"2024-10-15T10:05:31.924118Z","times_seen":270,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/main-7a75ff3b0e9a5ceb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"eeef108ca819f6315447cf06865dc84b","sha1":"b1650d7d5eb5c4209dd7cb8ed51feaf3c925a5aa","sha256":"928babe6b0db9d959278d6d8532161434c207bc3f933c923f1b4d3b63126a605","sha512":"9fb4178d6f02c1fbba42f8be85aa96eef154eb5a43a9cd69ace4ebd4649cbd7fc25826ee2a938fd20f7763c5225c82f020a6f488fddb7e8cc84b0b4a1e013101","ssdeep":"1536:NV8ZH0wowcd8HOlXMGSCJtIDqsSZHRTUXH:TWHH+32qnTsH","tlshash":"4cb3e7e976d2f4a202d361b4843f110af37b1d3a605ea841e36adcd17d7498fa163f29","size":109698,"data":"","first_seen":"2024-09-04T15:20:39Z","last_seen":"2024-10-25T10:25:40.795684Z","times_seen":1793,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-d2b32c4459c24af7.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"562ed7c640e4b74972c279e090aef65f","sha1":"54a2aa826505cebc6ea183fcb94adb73dc4e0174","sha256":"8fa8a949648f071236cba81746ea1e3c45f07a8c62f522fa8ad73882fb11577b","sha512":"480a2015021294d510acfd5ac33c4d086b657a2062488a6826aeb197c6d0db381de17a3fd02ddfb32c939ed7442b36bbccd3551f1712f17f56c6802ab1e11a04","ssdeep":"384:Ye1prMKSY3VWMGaAWQyRRd5SabKOK55/eSo:FR8WQyRRd5RuVho","tlshash":"2cc2a5d6b5c7b40c2167b9f482bf911e623b7c862c0e46a0b01aeed134f8548b176fd9","size":26117,"data":"","first_seen":"2024-10-08T14:56:49Z","last_seen":"2024-10-11T08:50:22.985111Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8904.3882d7a96ea63334.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c6c761bc8cd9c7ae31f7aa84c2ef9560","sha1":"f1d882411cd2ac8ce86345e100a69bb041a038dc","sha256":"ae98ce82249daa0d6bafb07082754e824dd8200181b33be999e55a9910f39e66","sha512":"f1994ec9e2e5631106e385910ceeab1696575e483ebe95917747127c51b85cd7d909646e150a5cec3f81024258338e4e325a8a6025b04f847f42bf3c72f75a78","ssdeep":"","tlshash":"377196fc7895b46a4667a495812fcf39333f2d163d0c5825a1439cdc203cecea25295f","size":3606,"data":"","first_seen":"2024-09-20T17:00:54Z","last_seen":"2024-10-12T13:59:16.351546Z","times_seen":923,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"475982cab2a2ea1362d7d0e95c11d22d","sha1":"48a2e781d9aee144dfe1b66a7738a47ce3458b0b","sha256":"d4df89fe2eb7973dd64850755425710bc41b5cb073b569314e8637d1e284682a","sha512":"3fdb9c64b284914b51427fa93235182e39d6234ed9d8526a7626d1bbd24d846462fd7a8b148ce85e2a7f3a5a71fadc83722a3c2e06080d949b90bce99a7c8736","ssdeep":"","tlshash":"da51d9dcb3d2b068429766fca09fa84764735d05b54c0c87c838dac126b9cad8117ef8","size":2803,"data":"","first_seen":"2024-08-21T12:53:26.435782Z","last_seen":"2024-11-04T05:44:12.114322Z","times_seen":3311,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/webpack-ba5c26f7636b00f7.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8e8023c51e32d89b9faa32da087942c2","sha1":"d71fba3ab0ba01a8f56f0cef4f2c99a36e4a5b71","sha256":"bf123d50b29d12681108d0d68adeeb36bd2d5cedcbfd9fbf9b773a80f5726fd0","sha512":"a0d424252e863c7022e53480cf2a251eb738296f4101481970e9f38d2d65ae1a2912aae0a05966e5bbe99b70d636a8264932015dcc80ddd5b0fc00ec36430bd0","ssdeep":"192:87FYRpbFFkEzjG5osGWE3vIPhnxQ1Z4qDWljP/rI5XZIR:UyfkEzqmsN+gJnx7ljPDI3K","tlshash":"41021afa3288f5b91bd560e45a3fa47674aa3ca2274eb860f202d0d9dc30ad5d125f19","size":8560,"data":"","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.432975Z","times_seen":38,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/5994.770802cc57bd04ea.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d1e24e877e0b71bb6dbab722df48aeb9","sha1":"f7c65138171360538aa15e95007cac451bd4ec3b","sha256":"4cf0cb5b91ad77fc326ca885426c80e5623199eb036bc51741be29db84287522","sha512":"e9ef775af3f0cfcf9cf37c91e430ac9855b8d6e59a1375a0df08442e55a8682c529e23b5b44c183a6d4c3376230842dc8348aa6b626a538a730d5ffe1d91db11","ssdeep":"384:COYGZY0AYZhQcSqkbaYrimWL1wU9r79AMilSy6kBojZa:q07+cwb7r0GUt7CMiln","tlshash":"0692a9dbf8dbb87e9257d5a1807b812b2a7a5c052c4c8134a197d8d81878d8ef133f5e","size":19986,"data":"","first_seen":"2024-10-08T14:56:49Z","last_seen":"2024-10-12T13:59:16.314337Z","times_seen":92,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/6634.24d9cbfbad84fcdd.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ea29a276761329d63effe99ad8ad537a","sha1":"839e9e0124ab616d6390e64ef96eabae694a55ab","sha256":"e809150d6385d980e3bf5c00f1a259172c8a243ff2b28ba61223d314dcb24d63","sha512":"bc04400b109e4f9eb97920069860dec64c18622640599ed5f58d18fe8fe8e73b073b428461cee521c3395a9d97947a061357963e8339bb88cf6abd2362406328","ssdeep":"192:rGDIyaHn9bNsRYcYGFGBX0bLxnzAzwhNMFonTOk/S6AXIKIfTReZIZZi:FyO95uzYq/bVUMVnKk/xk8seZZi","tlshash":"4f1294d9b59df47c40275a68502fba3a73367d05394c4868b553c4ee6878cceb823b2e","size":9251,"data":"","first_seen":"2024-09-27T15:26:45Z","last_seen":"2024-10-11T09:17:14.542697Z","times_seen":599,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/810.15620196fdaa9770.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0170af634214cf1d06310ce191e460a4","sha1":"27889c09bee7f61161d7b0689878b93b9ab9b8a0","sha256":"e9200213f671af039bedbb59aba5892d6020aef72e1ec7c220013a2b2c3eaf99","sha512":"3978ffcab0aa2e9a40a48768fe8267eb74fb4ad1992ee5a64ecd22a660b8b8ed7dd89888b196cccc5c79a0fe47d61ae6a85904bbf7701713a72e006ac969f88f","ssdeep":"192:lJ3W/YcVd48vjBLts2BGZOFtUO/oqVhMIiQAFroFnDGM:+PjvjvPoZsNlbAloFnDL","tlshash":"b432e6dcb98a702a52eb6975113f601eb77e28552a4e4400f163e8dc293cdced217dbe","size":10939,"data":"","first_seen":"2024-09-20T17:00:53Z","last_seen":"2024-10-12T13:59:16.335507Z","times_seen":924,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e413a48423bc9f73026feb7214fbf2d5","sha1":"91abcd4fb1e35ccd4c7a0d834760c5d1ff297aba","sha256":"d7546eb1f9e7a4305948886e4076e15e6abe1939cda76ec1302345fc948b5b5a","sha512":"bae31438770ed68c85a0354380a99df0b61d8121fb3c87aa96dc09faa7fc23520858eb8c32e3019a0b7a1641b8495be957dd148e47d93a899f0fef2aa8372dc9","ssdeep":"768:317RAyCt2mrcxLkwFBHtzL09+KrtSzLmQRpPbkpDRH3DNI:O6LBFBHZ08XmUj","tlshash":"8453c70efe28b8544291619a607f3a0371b66f0750ec4054b719ef8a3df5f4933e66ae","size":62940,"data":"","first_seen":"2024-10-08T14:56:49Z","last_seen":"2024-10-12T13:59:16.356901Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8059.a461a29689512667.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"709b0072b0a6a7ebf0a74e6101e1e9ab","sha1":"9fd6f6e076e4f367474e1494383c574b4da42a86","sha256":"5b21c1ecb0b6329ea0772a9ac8a407fcb2305ca76e25cc15b87e8133a54344e1","sha512":"5c2b9f58c9df95744f8214eeb11ff90083b166c48d688258f06de15bf0e09e6a6e79f93b71de18eb5fb1b6b45fe5ad1f47cffd520f2985b2d2a42d3400a763cb","ssdeep":"192:LtrcUJU/i/QqJ3aOTcFsaXLYepdcOhlzIHR9bWdX+XgEyxR9y7XQqNAPAHy:3JU/i9N/GsaXL1qObPYgEG+AZ","tlshash":"7aa2329dbbc7601c3352cfa82bf68689635e260086355e3cfb92f097b3896d44131f98","size":21787,"data":"","first_seen":"2024-10-01T17:14:35Z","last_seen":"2024-10-11T09:17:14.52749Z","times_seen":332,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/6825.7474e3129a003d69.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf93b44816f05ccfdda22b497df158c1","sha1":"e687a983b354871a6b8dcef6be2aa3852bbbce54","sha256":"547f3765a0f4ce283af15acc7a7ccd4558ab4b5b2b07d8d4a985e1df64365919","sha512":"4c779894fc4bf93dee8f2bd0cd07aa9b74ff1c3e1cfe8c868a6e8c7564f876811a31549e400aaf1b6fb85813af280a12aca1a044a785b51d425126943741f3b2","ssdeep":"192:x7E3S2dHgnWPyUHAGQ6DeXJLZfFMqxRlyK9dJX1OpMwx2JxeR5tFmPGUWonX6fMZ:REi3yMXJIqxPkx2c5t0uUWonX6CLoE","tlshash":"3b7285c9fac3b45823a76db852ff510a533e3d8115ac5414b50bf0c627a5acce223e9e","size":16846,"data":"","first_seen":"2024-10-02T12:00:56Z","last_seen":"2024-10-11T09:16:33.603529Z","times_seen":185,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/5313-301aaffc9ebabfe2.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7378534d5cd1c68613b23495b5ecc5ce","sha1":"99da46ee118507ba434e06f72b582ba40632fc26","sha256":"b7a8bcfc4d4b814fa18deab63c1b77ea42fad9dd3f617404698aa97b2fc1339c","sha512":"d101195f80bd29e569460a9b652bf9bd7c1e3d5b7a1f5e495adbf03c604f64b447cccb30451690baf3f60e3aa11358833118339c7df24a934b7422537c3d51c4","ssdeep":"192:Cy9g8LZNiz/cONUPv6rHxUWwTtTt2/S8U:fmXwRT/t","tlshash":"f602849eb9d2f0062303b8b4907f281bb37a6d16150fa4987229c5ddbdb601d5633f2e","size":8177,"data":"","first_seen":"2024-09-23T18:25:36Z","last_seen":"2024-10-29T22:52:36.280049Z","times_seen":1490,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ddc59b96a83942791fd273cf5838bc2d","sha1":"f01dd1975081a860043a354ffed5d410f8c7aa9c","sha256":"c89fb31451bad625d6ac9418e0781a531d317b06c80414a17ea3961b7057be54","sha512":"341ddf8ae49f5935023767153e68794197e3a7bd131990d267745f621faf2d45abdbae390827e404c85f7eb001ca260000e3feae77afe0b675a31b0e7b022e1b","ssdeep":"","tlshash":"a28004501055705c5d004d71731d5011c30444d5000074104003104cc4070d4557d550","size":29,"data":"","first_seen":"2024-08-28T12:15:55Z","last_seen":"2024-11-04T05:44:12.117059Z","times_seen":1852,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/3043.b99538ea8962f746.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b324de17eca822fb2da60e21f2334632","sha1":"3dbd5c305bfc9aef3296fad988d9fb429e30e6f1","sha256":"2b0565dee333cb87e34a05d43d7aba0d8d3b301c19f17b7a3379cf51289160b0","sha512":"1166dd19ef4ea7cb84ac195ab5ed1b73903d13e499dde168dd40fe14d9a2f37d0fad2cca89efd5a384103f7e862b8937ea962217d10c565d4ae7eca3c6f49a64","ssdeep":"384:jftS7X3pRTvN3QNfq/aRJdPlBa6e/BqZqDXMWBjy0rEDupn6jjKN7+d8BeqBQoDE:pURylzJwEHbY2KWjZV","tlshash":"c62352dcb9cab018a193bda850bb198e76ff3b02286c1823fb43b4c1a55455dd177b9c","size":48463,"data":"","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-10-11T08:49:22.462692Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/pages/_app-99c37a6eccbc88fb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ccd6c0ed98343d140893babc28b2b0e","sha1":"69fd9728cf12e35b401d375d0c76717149ee195e","sha256":"e1c3b8336f66bcb5553a0c417c0696974c33389acce5d91d5221294e8264b7d7","sha512":"dc9b700d8476d5ed0c8b7d194987750efc3b18f6ab0439030dab14270fd9541668241d2099ab7012b1ee1eb2c2e40620d79206fb2f81a79ec4a12bcb7d3032e0","ssdeep":"768:N7siIM2lYREtz43miHvrPqdixaS8tQ85hb+CZBCu7:KipdyFFhW0QAj7","tlshash":"084309ccf6d3f26922b314f550bb500a723e9d0a118dc078f6468d8569bae5b51a3fec","size":55173,"data":"","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.41582Z","times_seen":38,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/1658-4a1fa007dc959763.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"45e374b70a5904938f24b23640e31888","sha1":"7c38c10b8b6040cc4c0ce25d2aed503f81b9513e","sha256":"7ed197e99e747ce5e97ae07fc1e728713132a18bbea23f10a7b5530ab0c53a3d","sha512":"b5c4a90c2c8a714647105ce34999e9d30b8cb00967fabd453b39b34fcb5190ea62d8a261021e925aeb83d9940d68957093bdb8d1d19e0d9a4604660951bec0bc","ssdeep":"384:xUMojjcKsVnjBHuJaSYhPd2DZRFtPW25HZlcR8SxY9opL5a2OIvfA5GgAy0t5:6MQjfsfHfV2DxpuhUY5ZfAExBt5","tlshash":"65d2c68c7183b015438390a5442f268bfa7e2c189c4c8c6af562f8d67978d6ed177fb9","size":30034,"data":"","first_seen":"2024-09-17T18:13:50Z","last_seen":"2024-11-25T04:29:16.902114Z","times_seen":1274,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8759.207a47fedeee6500.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c368e65be2d6cfd00506ca8a74a3ec0","sha1":"0620b7e62f0dbfa37c4bb6fde416a71c5dbe8cdc","sha256":"4d6f84a15ca036b7e3f4fe3fa9014c033a6cbf3099c7a35ad91a155fa6135111","sha512":"9f1734c35f35fa9143d031ec7f84c67f9aa814d5391673237e00015f5cf8a0994fbc3482b47f82ab0d9f6c0a1beb50ee743572166706a425428c9c83351601ff","ssdeep":"192:rcjtEykkXLuAPOwAQCtGSD0cZSUzO9wvvZQ85:GtEyVqGc50qSyn5","tlshash":"d0d196cd7a89b47a81d798b5107f983d437f3e153c1e0938b167f4d86839d999142e0e","size":6397,"data":"","first_seen":"2024-09-20T17:00:54Z","last_seen":"2024-10-12T13:59:16.352713Z","times_seen":929,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4764.de5faeb046dca883.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccec6cb0ad7490b4963e687f0eb31a5b","sha1":"da9d701d938a711106549ff2182806cfaa6ebb22","sha256":"8183c0fe331b14212e417e023527b0e0edcd172ad068f749de2def38c5105588","sha512":"bc966cfd0b80a442e2e2e5709018f50e7ad049cd7d9908ec7458a80ae4a77ecc53c16b654e756f93ff80ec4f802fce6499e9ea2c0a012c7d7dad57332b0c1fb3","ssdeep":"384:Xd4z0COCaCXo/TTmk2+fKzHABMgxxwfwsyAHIb9gCnRw2Ef:t/gCnRw2Ef","tlshash":"b3c25ae7ef93906c51b3e9aa80f7492e93797b02229d7525d48394c0a5683cf1313ebd","size":26511,"data":"","first_seen":"2024-09-26T19:30:37Z","last_seen":"2024-10-11T09:17:14.529547Z","times_seen":461,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/689.ab6dfe3d58f556be.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"21fbce44a24a8e2d4f7e325da0d0bd40","sha1":"cbc0246d2e67a11082c1db5648a1d1274e9a79b4","sha256":"3aec21b2b4c4b06de7a6877d0bea8471292cfd5849ea91df51a35e700f4f2366","sha512":"a1ff14f35491891219cf8e1a9e00efe1921acaedc907422095b914b34d5c1c26101dc4e1fac4fc937d7a902653431f0b0d8c0b35906149810306de36e3b9338f","ssdeep":"96:1p30w+6qTbDrd2uUq+P5dMcgIKP40lg0vbH5/tF7v/Df/WAAk1zj:/30w+j/dVwdI40lTbH5/tF77+bkJj","tlshash":"60320015d598ba29fd33819e33b81d18b234c4a837690d79f63cfc6761908996f6f2c8","size":11142,"data":"","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-11-04T05:44:12.057407Z","times_seen":515,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8601.db0cc04a43991af0.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"05d1c6fc3a785c60ccb4869a6d8a8914","sha1":"8169685bd9bc5d9ce27a5af97303811041450487","sha256":"d80a452b8e9f06faf7852cfa89d5120b39a5eead788a41335e171d737141f8a4","sha512":"afa1987dfbceb5799e8c1f872673fea4189caf82572ff86106ef4b6ca9c23cf4c7cf083ccbd8242533fcc3752039a83bf2fea6f7070bf444087380c20d9c5df0","ssdeep":"384:EWPF0MRs22ltWTRx14yTnzmcK5m8rLs1N2:oMsvltWT7ayTnz9omUCN2","tlshash":"ada2d1dbfbc3a04875b3ac7196fb495b62693f051698a124d942b4d234643cf6322fbc","size":22878,"data":"","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-10-31T10:31:18.941732Z","times_seen":501,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/86.b4cb0eaab191b83a.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0e18966fca8587df4b97fdff19a5a990","sha1":"46bff1756a673b58cdfa298fe8c0f3ad65e7de2a","sha256":"424173824e6276746dfc6f1afcc92e10a5759817a349016694a37a473ea8e0f4","sha512":"2fed170167c96843ead04ff40fff2f557b280da7fab65bfef81fe6c0a0c6bc555671c5abd36671ce7e4a4df554b5407e4a5e0a872194f0215f62c3c901bcc8ca","ssdeep":"","tlshash":"0261a7ec71c6b415db93160507df4968e3b72d003d0aca28f268d44cea7cf8de026651","size":3221,"data":"","first_seen":"2024-09-12T18:17:25Z","last_seen":"2024-11-20T22:41:03.386028Z","times_seen":1344,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4880.789f870cd21de157.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e12a8f6de09f3f3faa408f7041d19a11","sha1":"c05145e64f3eab8dd97ac6e91b4e86644fdfd592","sha256":"71463729f2c88a8aeb99b5519b9859b6f67dbc818757bd4a0b03c24b26a94999","sha512":"4b0cc0225f9eefe66177ea1a7786abcc014f8b665dd1ab43141688c13ebc743321228890a7c3b21a7f04e7b6b5b794c9f401b046c9064c1efdcf9a52b1e71610","ssdeep":"96:rzzbTF9wBQzOvrmOKatkV5+DIYhbRXK1PkPCnKfZpMNZKREjYa0Tvyjbf/GpbZeA:r3F969dw5+DnKuR5OfGaELV","tlshash":"9ac1b789f6e0682671d37249116fd528797d8e1d791cab34f22184cc8f2c5473831f57","size":5803,"data":"","first_seen":"2024-10-04T10:10:35.61374Z","last_seen":"2024-10-14T07:58:33.767209Z","times_seen":528,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9008.655d5227f9951fee.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f91eb99f11ddae84acef169332920772","sha1":"976b2cf6ded72b0e516c4dbc002b8c70bd0b327c","sha256":"bce7182e7e7074f1851100cb64a949378c55b1b838d71a71a7b7d7e636982621","sha512":"3c582277246c63c7188e9a60c2de30187d4538e813de77ddc6cb8cf749d06003f998abf0a85992a22d44bc2aad444d967a94e0a6f2b86849002f6c9df4654851","ssdeep":"192:rYyKJk7kOP0JVsTOUIC9EAGJetSUPBnLkcw4qpk3b:kyKJk7kOP0JVsTOU7yAGJ0SUPBLHw4qc","tlshash":"51e1e8dab8d5b436459ba928557f203da37a2a053489c020e163e8cddd3ddcd8712fed","size":6990,"data":"","first_seen":"2024-10-02T14:58:25Z","last_seen":"2024-10-16T22:05:41.466168Z","times_seen":370,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/O16NddbN4ifv-hUemlqj_/_buildManifest.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"33cb618f0fb7730bf766462e528fe0c1","sha1":"541382af87f9c00142976b687d99542df23bb398","sha256":"702aeb056e7c5b6db99226831f162fce0714c0148fbe3bbccb4273708511817d","sha512":"fec0aa0dfd139efef620cf76070c28d102aa24b1c0249b753d3851a3f17f4453e452ab42138882f42ae7fcf86bf544a36cdad5ad223bee16ec2dc4aa381929e0","ssdeep":"","tlshash":"3721994ba40cf41228e2cd5a617b5f338c889a37157d506ab28def3d271196b1f99c92","size":1316,"data":"","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.44564Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9909.55cde413e7ec3deb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ce4c9aebd73c75457864c204b58abb0","sha1":"b01a7e1e33d263ce2933ed9b380cc8307765bc6a","sha256":"999ae6d32f31be48ca73884bc3a3d6f5ea9595d33fdb1338fcf98e684c55c8fc","sha512":"adf01ad7081974ac0accb5e527b181f021348e2c59e2c86e2027eed6624ec212aa14d264caf13697d7445358cdd114ba68a8a5f000cb61a4d9cb52871c2c648e","ssdeep":"96:r47UtA9wMKSnDQOvTcsmsCZtaB8sgN0sAXrj8GA+mn0eufKZWJ:reaA9wyB6ZZsgX2A3EyZWJ","tlshash":"2ca183ddbd9af46d112668e8003f9d2d233b28113dc96832b053b8d9697c98d6533fad","size":4706,"data":"","first_seen":"2024-09-20T17:09:24Z","last_seen":"2024-10-12T13:59:16.354136Z","times_seen":638,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:06.59937113Z","timestamp":1728442506599,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"A4B45C1833F63C69B1847216D9DD0BBFC4F95F33501D88E7DC5555648F019595\"\r\nLast-Modified: Tue, 08 Oct 2024 12:10:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=20256\r\nExpires: Wed, 09 Oct 2024 08:32:42 GMT\r\nDate: Wed, 09 Oct 2024 02:55:06 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"94a2d5e693f71770bd013db51ee0fbbe","sha1":"2f5b5bd658d11088f0599e5f244740d0d8667bea","sha256":"a4b45c1833f63c69b1847216d9dd0bbfc4f95f33501d88e7dc5555648f019595","sha512":"32b8c15712ad549dcea1ffd060533739fc24a5d0851a10fe5cb543964e9646064aaa57d08b011878392ce21417dfbe8876ddfd49ab231a0c27a6ccaae1e8ce0e","ssdeep":"","tlshash":"a2f005970bb17c0d5a3114023c1fc932aa59fefb310007b421c042e275276ed51c5048","first_seen":"2024-10-08T22:31:32Z","last_seen":"2024-10-11T08:46:35.594409Z","times_seen":2943,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:06.64433497Z","timestamp":1728442506644,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"86D583A273489C4B3D93BC10E3FA9718746BA439C1D88533F0177DEC4C7183CE\"\r\nLast-Modified: Tue, 08 Oct 2024 22:04:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4658\r\nExpires: Wed, 09 Oct 2024 04:12:44 GMT\r\nDate: Wed, 09 Oct 2024 02:55:06 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b5fba3de48fd6c409033029700670f78","sha1":"0e348372969c771ca1d5f0ae6a944eb21c7ede05","sha256":"86d583a273489c4b3d93bc10e3fa9718746ba439c1d88533f0177dec4c7183ce","sha512":"e42ce3cac91c3d76f32dc8bf1d879f58eddb75f7853e47d3dd3a8b488da45c306661c8da1ff42e218ae0a3ae2dfdf055d579e7df6d440f03324c696dad52766d","ssdeep":"","tlshash":"96f05c2705d1f0441bf406417d74eb5e5f34d7be3c456a503ce01bf5b4047dd8158854","first_seen":"2024-10-11T08:43:15.823987Z","last_seen":"2024-10-11T08:43:43.225467Z","times_seen":240,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:06.950604574Z","timestamp":1728442506950,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B6DB380F5EEB73AA56ABF90AFA43B52CC9F51B01F33AD1EEFECCC473A41FFB86\"\r\nLast-Modified: Tue, 08 Oct 2024 11:18:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4603\r\nExpires: Wed, 09 Oct 2024 04:11:49 GMT\r\nDate: Wed, 09 Oct 2024 02:55:06 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"33985775df7b619cb33f4050d88c5fb9","sha1":"cf0b2ff92cd2f7e12ce788a164a73d75dea5da83","sha256":"b6db380f5eeb73aa56abf90afa43b52cc9f51b01f33ad1eefeccc473a41ffb86","sha512":"6bc0e873177bc8082b9b3d8fdb3e1c3d3b2adf2d27c0053919c540d80bdfffa7a6f41b0ea381ef7e077c08bbd371ab5a9cbae5cea92e4752c766d8ff25ddb8f5","ssdeep":"","tlshash":"81f07551c5b13da01bb01629d9a89003dd10cdfa14c05be451f443e23c02bfc468054c","first_seen":"2024-10-08T16:14:32Z","last_seen":"2024-10-11T08:49:31.751651Z","times_seen":5844,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:07.034803098Z","timestamp":1728442507034,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"AF0C2421D7AF6507EB62DFA55B8DD2C1F969CA02692E89D3BF841CB42430EBE1\"\r\nLast-Modified: Tue, 08 Oct 2024 12:40:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3085\r\nExpires: Wed, 09 Oct 2024 03:46:32 GMT\r\nDate: Wed, 09 Oct 2024 02:55:07 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ee8a3075e7c2e453a0e7ecb6d0ffb710","sha1":"8207b3beb4c30142e41563a15cc410ecab5f61a8","sha256":"af0c2421d7af6507eb62dfa55b8dd2c1f969ca02692e89d3bf841cb42430ebe1","sha512":"b5680c001311a9376e2f7c022338b8eb243bbb2fb53380a584e688af1166a84e7a5a54232b3a512f486cf484b951cd675701b6806c51738eab014911c2fc68d4","ssdeep":"","tlshash":"a5f00e921aa1bd007eb31e7238bec4411f62f8af34701ba664d01381a84fbf92bc418c","first_seen":"2024-10-09T00:34:34Z","last_seen":"2024-10-11T08:45:45.053245Z","times_seen":1876,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:07.11301777Z","timestamp":1728442507113,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"C71938C9FEB6487C2FCD5293E36A2EBE342E2CE0252891C7C7B3A92D734797A7\"\r\nLast-Modified: Tue, 08 Oct 2024 04:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9478\r\nExpires: Wed, 09 Oct 2024 05:33:05 GMT\r\nDate: Wed, 09 Oct 2024 02:55:07 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b06a775d0b6e7312a5569de9f9c7e2eb","sha1":"c291dec49a39f87ef86197aaa2b888dcad61282d","sha256":"c71938c9feb6487c2fcd5293e36a2ebe342e2ce0252891c7c7b3a92d734797a7","sha512":"fb745cd72f20409efc81a4a4b0d9b138c6641332ff25991ea96c5c2e9ed6c771b4f7d0a899cfddcb261f7859f8c036ec0e1b77404d1b1b073739167c13cafa24","ssdeep":"","tlshash":"bbf075d27e09780117f40d116c45d1232b3279543d40374a52a8d3a17452bac5fc800c","first_seen":"2024-10-08T10:19:13Z","last_seen":"2024-10-11T08:52:58.685489Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.medianews1.site/go/1a91fa25-3a95-4f09-8799-c3290cfc9efa","fqdn":"www.medianews1.site","domain":"medianews1.site","tld":"site"},"ip":{"addr":"35.158.71.179","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-09T02:55:07.049Z","timestamp":1728442507049,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.medianews1.site","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Aug 2024 05:23:43 GMT","end":"Fri, 29 Nov 2024 05:23:42 GMT"},"fingerprint":{"sha1":"35:2B:E7:4A:C9:A4:19:33:B2:4E:67:76:10:6E:17:7A:37:DB:31:F1","sha256":"DC:BF:97:F8:8F:6D:7F:5D:D1:82:5C:A1:B4:E6:D1:82:B5:C8:F0:80:D3:B9:A2:39:A3:7F:7D:3D:45:E7:E7:F5"}}},"request":{"raw":"GET /go/1a91fa25-3a95-4f09-8799-c3290cfc9efa HTTP/1.1\r\nHost: www.medianews1.site\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: openresty\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 330\r\naccept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced\r\naccess-control-allow-origin: *\r\nlocation: https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz\r\nset-cookie: bemob-viewer-id=afd31460-5743-4950-9bc3-23102c854ed4; Domain=www.medianews1.site; Path=/; Expires=Thu, 09 Oct 2025 02:55:07 GMT; HttpOnly; Secure; SameSite=None\nbemob-uniq-visit:1a91fa25-3a95-4f09-8799-c3290cfc9efa=1; Domain=www.medianews1.site; Path=/; Expires=Thu, 10 Oct 2024 02:55:07 GMT; HttpOnly; Secure; SameSite=None\nbemob-rotation:1a91fa25-3a95-4f09-8799-c3290cfc9efa:random:5374a22d95ddbdb1b0946b1ac6bb582c=0-0-0; Domain=www.medianews1.site; Path=/; Expires=Thu, 10 Oct 2024 02:55:07 GMT; HttpOnly; Secure; SameSite=None\nbemob-click-id=VA9jHCcGsixobdj8maZsUz; Domain=www.medianews1.site; Path=/; Expires=Fri, 08 Nov 2024 02:55:07 GMT; HttpOnly; Secure; SameSite=None\r\nvary: Accept\r\nx-response-time: 8.808ms\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":330,"size_decoded":330,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (330), with no line terminators","md5":"272f5c00f94817b12f059d80360b17a7","sha1":"f9dca70fd18e3bde89772ba38b94699853b2203a","sha256":"c8e3eb965606115f1116a0cdaeb5a88f5b55ba73f3d89fe58aa552da89e3768e","sha512":"24f643902a91b9bda489a28d256c5b16d5772300d50229cd5ca7776024c48589504424c3e85f57297fd7c3d69f64ca066796d32d3ae33e53072ffb28ad708175","ssdeep":"","tlshash":"85e0862270022fbd0060e1958cd03ece1156482bfb52c73e2d790241d98138b90d07fc","first_seen":"2024-10-11T08:43:30.256206Z","last_seen":"2024-10-11T08:43:30.256206Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":70,"dns":1,"connect":21,"send":0,"wait":32,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9008.655d5227f9951fee.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.690Z","timestamp":1728442507690,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/9008.655d5227f9951fee.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-1b4e\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Bq4xWvsCk7zyI%2BhQ3No%2BwQsFfSi0VT5eS3dy2w%2BH1QnYTLeF4WoDuSC5%2F4i0KsO4TjMX9KWh294J9Io%2FtYKC1hHWtg6lh7RlwhU%2BaV0BvRpqrV2ckSXACOd4RCIuQ6yU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8af712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2838,"size_decoded":6990,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6990), with no line terminators","md5":"f91eb99f11ddae84acef169332920772","sha1":"976b2cf6ded72b0e516c4dbc002b8c70bd0b327c","sha256":"bce7182e7e7074f1851100cb64a949378c55b1b838d71a71a7b7d7e636982621","sha512":"3c582277246c63c7188e9a60c2de30187d4538e813de77ddc6cb8cf749d06003f998abf0a85992a22d44bc2aad444d967a94e0a6f2b86849002f6c9df4654851","ssdeep":"192:rYyKJk7kOP0JVsTOUIC9EAGJetSUPBnLkcw4qpk3b:kyKJk7kOP0JVsTOU7yAGJ0SUPBLHw4qc","tlshash":"51e1e8dab8d5b436459ba928557f203da37a2a053489c020e163e8cddd3ddcd8712fed","first_seen":"2024-10-02T14:58:25Z","last_seen":"2024-10-16T22:05:41.466168Z","times_seen":370,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/framework-f3a5861786cc8e61.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.710Z","timestamp":1728442507710,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/framework-f3a5861786cc8e61.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-682e\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Jp9OpR4eFpFjXsI68asIXPhf%2FJ9CeqLm48yaFvhgNoRz0QlvXHjJQfjOqFelvs%2FT1jr%2FIIkb5mtv3638F0kmSEyE%2F0BlEZv2%2FhIZZiiLS8KpK5nyN52EN6MjcHE6V3dD\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b5712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11565,"size_decoded":26670,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26670), with no line terminators","md5":"405295ad54872f95616ad4a6c5825af1","sha1":"08c7947a0f01af2c9d2bbe966003667ef3ac1dfa","sha256":"b3f17c2e245d66acc87ac6add2462d56afd8a26c410a180381a37884a02aae00","sha512":"b507d561b7b6db189f1d1778f4853fb08f3b2aebad9da2cd8afd84def4172b598ead8c7253068f6f5a31ff7c7b6eb8957716e8a01501e35ac5ea2de41b149369","ssdeep":"384:MXv5bZ0z3IcV+NtIVVLuugpbSw2tC9pVCeBo01ALKiol7YACwEbhkX:MXvtZsIS+NSf6SwT9Vl89bhkX","tlshash":"f2c2b6e878e4f41027976076517f284bb37b186d688cd0a0e325f8e93db451e64a7fac","first_seen":"2024-09-04T12:59:23Z","last_seen":"2025-01-27T06:29:13.346765Z","times_seen":3751,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/689.ab6dfe3d58f556be.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.686Z","timestamp":1728442507686,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/689.ab6dfe3d58f556be.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-2b86\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Apr%2BRu9%2B6FV1ARk4IzSs8yyWxuda6x9f1IlBUyvQXdbP1qF89lvwTYvhhRVLj2%2BKUaC%2BbumtSxcNH%2BpwLUySEeaO6u8ih106V96fBKq1cHhFBuTVh5zBE6D9lcCy8q3A\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708d8ab712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2884,"size_decoded":11142,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (11142), with no line terminators","md5":"21fbce44a24a8e2d4f7e325da0d0bd40","sha1":"cbc0246d2e67a11082c1db5648a1d1274e9a79b4","sha256":"3aec21b2b4c4b06de7a6877d0bea8471292cfd5849ea91df51a35e700f4f2366","sha512":"a1ff14f35491891219cf8e1a9e00efe1921acaedc907422095b914b34d5c1c26101dc4e1fac4fc937d7a902653431f0b0d8c0b35906149810306de36e3b9338f","ssdeep":"96:1p30w+6qTbDrd2uUq+P5dMcgIKP40lg0vbH5/tF7v/Df/WAAk1zj:/30w+j/dVwdI40lTbH5/tF77+bkJj","tlshash":"60320015d598ba29fd33819e33b81d18b234c4a837690d79f63cfc6761908996f6f2c8","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-11-04T05:44:12.057407Z","times_seen":515,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/3043.b99538ea8962f746.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.703Z","timestamp":1728442507703,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/3043.b99538ea8962f746.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-bd4f\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rEX%2FU0kLuV%2Fkcyt34g%2F0JBcazHzMvN1flXez4oD5FqWB9K8gwgoef3eFyhABIuaefIwD3DZKl4ADKNal7Rw2V4zs%2B5N%2BtVNlelmy7u1gYP6V7Wqf4ObUoI5hWVzL05qB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b3712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13869,"size_decoded":48463,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (48463), with no line terminators","md5":"b324de17eca822fb2da60e21f2334632","sha1":"3dbd5c305bfc9aef3296fad988d9fb429e30e6f1","sha256":"2b0565dee333cb87e34a05d43d7aba0d8d3b301c19f17b7a3379cf51289160b0","sha512":"1166dd19ef4ea7cb84ac195ab5ed1b73903d13e499dde168dd40fe14d9a2f37d0fad2cca89efd5a384103f7e862b8937ea962217d10c565d4ae7eca3c6f49a64","ssdeep":"384:jftS7X3pRTvN3QNfq/aRJdPlBa6e/BqZqDXMWBjy0rEDupn6jjKN7+d8BeqBQoDE:pURylzJwEHbY2KWjZV","tlshash":"c62352dcb9cab018a193bda850bb198e76ff3b02286c1823fb43b4c1a55455dd177b9c","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-10-11T08:49:22.462692Z","times_seen":20,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8059.a461a29689512667.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.681Z","timestamp":1728442507681,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/8059.a461a29689512667.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-551b\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Sqm228GgSLUi9uGDzLiX8THgxqq1nOESY%2F%2F0d%2Fjoqm8PDtBqSGFFkwlwylBJEh0b0EN4gc9oscsplfFG4MKgcyWhSKtIw2AaI77eTsV62pkiYuoF0rTfLqg5GIBApRH%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708d8aa712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15358,"size_decoded":21787,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (21787), with no line terminators","md5":"709b0072b0a6a7ebf0a74e6101e1e9ab","sha1":"9fd6f6e076e4f367474e1494383c574b4da42a86","sha256":"5b21c1ecb0b6329ea0772a9ac8a407fcb2305ca76e25cc15b87e8133a54344e1","sha512":"5c2b9f58c9df95744f8214eeb11ff90083b166c48d688258f06de15bf0e09e6a6e79f93b71de18eb5fb1b6b45fe5ad1f47cffd520f2985b2d2a42d3400a763cb","ssdeep":"192:LtrcUJU/i/QqJ3aOTcFsaXLYepdcOhlzIHR9bWdX+XgEyxR9y7XQqNAPAHy:3JU/i9N/GsaXL1qObPYgEG+AZ","tlshash":"7aa2329dbbc7601c3352cfa82bf68689635e260086355e3cfb92f097b3896d44131f98","first_seen":"2024-10-01T17:14:35Z","last_seen":"2024-10-11T09:17:14.52749Z","times_seen":332,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-2.f83cc68b.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.190Z","timestamp":1728442508190,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-2.f83cc68b.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2220\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-8ac\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=odly8WsneZ0pU5ycMq4uKk9sbT1BbKpR%2BO9Rhv0AB7ScoJ3knHYPfGHzmTJwkDAnQqkkM7mAzQpGAGmZF4VcBQbxX1edemZ8kw7UnN3jEoAk0Jg2D%2BAhAhiFffuknMS%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fbc569f-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2220,"size_decoded":2220,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"8f8ffbb278de1342e5cf44cd0c677c23","sha1":"1b4b4428e409479cc8a8acfce6f537c2aeea7556","sha256":"ac4284ed6941963c4fa0db306537f42f3a0b1fa18710bc7b9e1e62188961d83a","sha512":"3f962853f8b704c291a9d4909f6fd645b6642fad6087ff7a4f0016dd62d9e49c80a2db467d285ac7c456c9ace2b9833924d3af0bed0c78e1d20e5a5cfe9ad66a","ssdeep":"","tlshash":"c5415b4ed731c5aff1640ca20c61f37ca091cc77a2592288a94457fcfedf5682a018e8","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-27T18:19:14.675452Z","times_seen":4095,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/1658-4a1fa007dc959763.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.718Z","timestamp":1728442507718,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/1658-4a1fa007dc959763.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-7552\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Kgr%2FQqnK5XOBte8UOtReHIJLoiIDhS7%2BHvTJvPn1lY%2FxRRdBFfBKuxMaGw%2FJt5UVly657D6LfZTT9W7PnGHKzsW2zLu32vOnKkCRmxKCmkCYbjGw4uGuywRId%2Bm5dTky\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708f8bd712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21929,"size_decoded":30034,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (30034), with no line terminators","md5":"45e374b70a5904938f24b23640e31888","sha1":"7c38c10b8b6040cc4c0ce25d2aed503f81b9513e","sha256":"7ed197e99e747ce5e97ae07fc1e728713132a18bbea23f10a7b5530ab0c53a3d","sha512":"b5c4a90c2c8a714647105ce34999e9d30b8cb00967fabd453b39b34fcb5190ea62d8a261021e925aeb83d9940d68957093bdb8d1d19e0d9a4604660951bec0bc","ssdeep":"384:xUMojjcKsVnjBHuJaSYhPd2DZRFtPW25HZlcR8SxY9opL5a2OIvfA5GgAy0t5:6MQjfsfHfV2DxpuhUY5ZfAExBt5","tlshash":"65d2c68c7183b015438390a5442f268bfa7e2c189c4c8c6af562f8d67978d6ed177fb9","first_seen":"2024-09-17T18:13:50Z","last_seen":"2024-11-25T04:29:16.902114Z","times_seen":1274,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-5.7317ee2f.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.191Z","timestamp":1728442508191,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-5.7317ee2f.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2384\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-950\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ooFpMKzEqlIVrPJtt5vIB4LmrfGTHcG4Ow4whYrUuBheHlR1664BVs8mSDzopNAoxqEUc0qVBoJMSI7lqFbEp7ZEfxSTM5IKFuSVSqb7Bm4JHBjNmgVfMG80bwLASWAh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fbd569f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2384,"size_decoded":2384,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"188dfcdf19da1d86ed162d54ed03536d","sha1":"98b1baefbb803548b2894547091b4c7773406524","sha256":"4f8251665e3cc796f127ea6cbdc00a9ec450adff16acb4ec74463c446b6f4ba6","sha512":"d3917f3eaf1df7b18a69e711fe70b6056ebb083bcfbce668ea776825bb341f0c3d558b66d1ed61eb6bdb07e00593bc97454d06c2b51fb0417802ca35a3e0dd22","ssdeep":"","tlshash":"cb41fa85b4b8e4258c0f30b764d20d76245541ee7451338fc9b18492d2ec9ba2f4149a","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-27T18:19:14.684183Z","times_seen":4040,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-1.90304dab.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.193Z","timestamp":1728442508193,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-1.90304dab.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1402\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-57a\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=He64oA9Jz7gAoKokNmOmGdSj0BzXUv5uvVA01VLkqw0HWPWkIcIrlFWtWeGvmZ0iyVKvaJWEfNLQN4WaBLdvhLm0yRfLqsTME3G99biA%2BnaA18z1fqBTLrhP%2B%2B3WDofm\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fbf569f-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1402,"size_decoded":1402,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c5da2ea294623650bae71fc84401cf60","sha1":"f1f62ea011cf81953cefe28254c134e992453b91","sha256":"09a846c5b1af2c6100ff3193789be1e0e21ba9fc45c268f76f2007c78f1e4ac1","sha512":"4b35cf28fa43632f65cd6ee2594c4a90167a9d3f2cd54833944e7abbc7e452cc9ee9d76385c8138a1aefb2244c8961bc0cb46f22e420103645513135bf24142f","ssdeep":"","tlshash":"262108bcfcdad7200a37ea6016ce03ab5a0d589096ccb53021f11ed921a7231bfe202c","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-27T18:19:14.669188Z","times_seen":4106,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/sync-metrics","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.245Z","timestamp":1728442508245,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"POST /sync-metrics HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 394\r\nOrigin: null\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 17\r\nx-trace-id: fa19fbdb6902d42874c379a0fd8b7f42\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: null\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ntiming-allow-origin: *\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=A%2B9WyMQaxphmBRq%2B0igJm1nFHfq1NdyOrdvl8qBVa53Cc5rGbIUBeM72mF%2FmLyKdg4WJuBWxHX%2Bf862QAtzSAhKJvRexsmRO3HapZcLspUCFwnR%2FQ0E6ymIdBAuT0QZh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c5fdf569f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17,"size_decoded":17,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b64e8b89092b2e3dfd448b10700627f","sha1":"484b3032619fa1acd135d114565b0a5166281c22","sha256":"f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4","sha512":"61c86d8f7c4c3e60739191712080650f22caa78427e5bf9215ebc16ed8ed305cb21ab3099459fc431caf9d881ce5ea7662fec4e6b9963ba54b56d2c50bbe3142","ssdeep":"","tlshash":"46600003000000f300f03000033c3c3030f00000c000003cc00c300ccf0030030c300c","first_seen":"2023-04-05T09:34:46Z","last_seen":"2026-05-08T15:52:30.177577Z","times_seen":62786,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-6.e7cd6065.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.210Z","timestamp":1728442508210,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-6.e7cd6065.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2440\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-988\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2F5Py92%2FEBhfo2PPgUemDLP1khaoLSxZKIiaF0AuNoYWpx3wA5gPkCiUDoOd4ZCBBD2Vyc9mGAvUzDnw9%2B8NxtHKpSpqYCBLoFaGWF8kpUyLhixiwDhvz%2FnBzwpaSUYj9\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c3fc7569f-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2440,"size_decoded":2440,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7be25941ac032fcec25b1bb4ede296d2","sha1":"cfc4fb3733844326076b6d7632087204c0bea34d","sha256":"0ff9d28c4ab7516d2790e8df4d325cf602bc8f9eb787a7cd9b6554edd9530e4e","sha512":"cf447ce5324bb7b119093c3f1257951243683a7c64924652d35f325c04e91379bb44243eec57ef860ab31bb612fb5d72c83c82d9f03527db3f2123d1b784e19e","ssdeep":"","tlshash":"55510c624cbb534d805d45cceaef474a9738cda1e484d96ce2899072c4a61d5c6d1bd2","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-27T18:19:14.665888Z","times_seen":3451,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":83,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/sync-metrics","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.245Z","timestamp":1728442508245,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"POST /sync-metrics HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 394\r\nOrigin: null\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 17\r\nx-trace-id: 5aef148f6a90503c1c989b2b1117beab\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: null\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ntiming-allow-origin: *\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Ly0wX2rt5zdptv34NhW44%2FPE2EeamnccfIwAQa6I6VE5RuMYmx1sVDyeRGXGbe8L26AMyGm972JgUVWqomIwtrtsJLTzJ%2Foj8KNXn8DI3FviuGp5zK04bLm17m%2B6xdMT\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c8856569f-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17,"size_decoded":17,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b64e8b89092b2e3dfd448b10700627f","sha1":"484b3032619fa1acd135d114565b0a5166281c22","sha256":"f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4","sha512":"61c86d8f7c4c3e60739191712080650f22caa78427e5bf9215ebc16ed8ed305cb21ab3099459fc431caf9d881ce5ea7662fec4e6b9963ba54b56d2c50bbe3142","ssdeep":"","tlshash":"46600003000000f300f03000033c3c3030f00000c000003cc00c300ccf0030030c300c","first_seen":"2023-04-05T09:34:46Z","last_seen":"2026-05-08T15:52:30.177577Z","times_seen":62786,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"e6.o.lencr.org/","fqdn":"e6.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:08.327794522Z","timestamp":1728442508327,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: e6.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 345\r\nETag: \"0879455E6D286EC7D4D728E99D37B34BA2C47FFBC5F058D93DB1D157F0360EF2\"\r\nLast-Modified: Tue, 08 Oct 2024 04:42:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6187\r\nExpires: Wed, 09 Oct 2024 04:38:15 GMT\r\nDate: Wed, 09 Oct 2024 02:55:08 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":345,"size_decoded":345,"mime_type":"application/octet-stream","magic":"data","md5":"187396a6d1607315627515c47d871f25","sha1":"0ff06006381656529e35e89bcda4d42e58cf2077","sha256":"0879455e6d286ec7d4d728e99d37b34ba2c47ffbc5f058d93db1d157f0360ef2","sha512":"d28842983f9c57cd541cf4729ad4017b92855ec203d0e2794e43a3def488a1bdb4efc5771cb1e3c0edcb0138e7fe23e3061b5df69eee4dfb5e78e575e2795775","ssdeep":"","tlshash":"11e0c696ff287ca0a3f1ac8cbebdc8033e1614620c4966902da0a2c1b85332c650488e","first_seen":"2024-10-08T09:35:42Z","last_seen":"2024-10-11T08:53:20.789022Z","times_seen":22,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"auchoahy.net/zone?pub=0\u0026zone_id=6679100\u0026is_mobile=false\u0026domain=nadrigrir.com\u0026var=7339789\u0026ymid=\u0026var_3=\u0026var_4=\u0026dsig=\u0026tg=1\u0026sw=3.1.560\u0026trace_id=89d232d0-2741-4111-85a9-d3a410ef75d8\u0026action=prerequest\u0026drf=","fqdn":"auchoahy.net","domain":"auchoahy.net","tld":"net"},"ip":{"addr":"139.45.197.226","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.244Z","timestamp":1728442508244,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"auchoahy.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jul 2024 08:39:43 GMT","end":"Tue, 22 Oct 2024 08:39:42 GMT"},"fingerprint":{"sha1":"3A:DE:56:77:2E:4A:67:9D:EB:BA:DD:AD:1D:1D:00:38:3D:CC:CE:3B","sha256":"84:D9:A0:E1:93:F3:03:1E:CF:C0:3F:E4:8A:85:7B:99:88:C5:1E:DE:72:6A:92:16:C9:45:75:F4:B9:04:E6:CB"}}},"request":{"raw":"POST /zone?pub=0\u0026zone_id=6679100\u0026is_mobile=false\u0026domain=nadrigrir.com\u0026var=7339789\u0026ymid=\u0026var_3=\u0026var_4=\u0026dsig=\u0026tg=1\u0026sw=3.1.560\u0026trace_id=89d232d0-2741-4111-85a9-d3a410ef75d8\u0026action=prerequest\u0026drf= HTTP/1.1\r\nHost: auchoahy.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: null\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-length: 0\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: null\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T15:53:20.525245Z","times_seen":14844059,"resource_available":true,"data":null}},"time_used":224,"timings":{"blocked":98,"dns":0,"connect":26,"send":0,"wait":27,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-09","alert":"Sinkholed","trigger":"auchoahy.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a\u0026ruid=40362e15-6e51-4233-91ed-570f9e457328","fqdn":"datatechonert.com","domain":"datatechonert.com","tld":"com"},"ip":{"addr":"185.49.145.45","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.349Z","timestamp":1728442508349,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"datatechonert.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sun, 10 Dec 2023 00:00:00 GMT","end":"Mon, 23 Dec 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3F:E1:50:2C:9F:FC:F9:37:03:E3:B6:34:00:06:89:69:01:E7:C3:27","sha256":"FC:35:F7:B5:E0:C1:4A:50:1C:BF:FE:3B:C2:3E:44:74:7E:DB:1A:0F:E4:E2:79:8D:70:1A:58:8E:85:C0:20:37"}}},"request":{"raw":"POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a\u0026ruid=40362e15-6e51-4233-91ed-570f9e457328 HTTP/1.1\r\nHost: datatechonert.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1425\r\nOrigin: https://nadrigrir.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Wed, 09 Oct 2024 02:55:08 GMT\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 12\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://nadrigrir.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12,"size_decoded":12,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"adb4650bfc9d2a73d4dd69583b0ceb14","sha1":"1ce399d6e936232aaf2192cd7903a279c5015f22","sha256":"21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed","sha512":"3fbce22572bbed1aada0f7c6706f16a97e7c0ea132dfee1a7eb80f5e68da1cc63c891a5bc3ea8e87f0c97be3002212a0efbb2af9553acb45e0d447a685cd805b","ssdeep":"","tlshash":"436000000c3000000cc00c0000c00030ff300f00000f00c0000c00f003030c0c00c000","first_seen":"2023-04-05T07:30:31Z","last_seen":"2026-05-08T14:04:47.520112Z","times_seen":56713,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":140,"dns":16,"connect":17,"send":0,"wait":21,"receive":1,"ssl":104},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/event","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.242Z","timestamp":1728442508242,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"POST /event HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 553\r\nOrigin: https://nadrigrir.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: https://nadrigrir.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=pXoo2uPiDKs8X8kKrDelAc9KOXhNaecVO%2BCov5DVji%2FIoFxuNjo78v4GUMH%2B9Eg4qXO%2BoZ2PNSkssZ%2F4RmjVslooZU04lBBle%2Byrg5MXqlck8wjxR%2FyCAqw%2FDRI28R5I\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c7817569f-OSL\r\ncontent-encoding: br\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":441,"size_decoded":81,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2157381bad5ddf76137bf90aa5fd837d","sha1":"effaad2fcab84b46f72e305f541362dfb98e2495","sha256":"f2a4601208928e32d79874990a8f631bb306818ecb79dd9af1dfeaf2f6d05af4","sha512":"cf604be13b1e1c81b3ed4f2754e3f9dda45bb0e799230c3a825c1c1223d2108b48c09356ac71e141411c6a2a543ea5ecf5b2ff3f6d5f3ec207eb159346a9b9fa","ssdeep":"","tlshash":"21a022c2c20c8c0808c300023ae0ec300f3c0b332a8e30abec0cbe3a3828b0ab30c002","first_seen":"2024-10-11T08:43:30.268873Z","last_seen":"2024-10-11T08:43:30.268873Z","times_seen":1,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":79,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/sync-metrics","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.245Z","timestamp":1728442508245,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"POST /sync-metrics HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 460\r\nOrigin: null\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: OAID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; syncedCookie=true; oaidts=1728442508\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 17\r\nx-trace-id: e682d56ea116435cc756e55cb274f6ae\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: null\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ntiming-allow-origin: *\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=nx3TjmFrNi7qPdEFrI5p9xsdMvq7gXt7LLAubD%2BKhYWNeUi6cP4ru1441NvRP0Nnm9BtsqoLTT1mly3SymdZEfkDNCvbNffKXBTd0E9cOgVnHPc89Tst90RbHgzCsOhF\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170e1c04569f-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17,"size_decoded":17,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b64e8b89092b2e3dfd448b10700627f","sha1":"484b3032619fa1acd135d114565b0a5166281c22","sha256":"f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4","sha512":"61c86d8f7c4c3e60739191712080650f22caa78427e5bf9215ebc16ed8ed305cb21ab3099459fc431caf9d881ce5ea7662fec4e6b9963ba54b56d2c50bbe3142","ssdeep":"","tlshash":"46600003000000f300f03000033c3c3030f00000c000003cc00c300ccf0030030c300c","first_seen":"2023-04-05T09:34:46Z","last_seen":"2026-05-08T15:52:30.177577Z","times_seen":62786,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/favicon.ico","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.702Z","timestamp":1728442508702,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: OAID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; syncedCookie=true; oaidts=1728442508\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=bOFkwfzNcuGONyu%2BIPuAjUn%2BFb7O9y2oy%2BpIhb6Pw29Ja8MW32%2FO4M%2FZLxh3QozXSax6OJXO%2BDJH3eBs%2BH7alN27jgfRPFngtSJMwHacs0Ud%2FMgSq1dSP8Sb358bpd1H\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8cfb170f6dd1569f-OSL\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T15:53:20.525245Z","times_seen":14844059,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"glooxing.com/sync-do","fqdn":"glooxing.com","domain":"glooxing.com","tld":"com"},"ip":{"addr":"104.21.8.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.575Z","timestamp":1728442508575,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glooxing.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 10:47:29 GMT","end":"Sun, 01 Dec 2024 10:47:28 GMT"},"fingerprint":{"sha1":"0D:A0:FC:FE:0B:2B:17:84:A9:1A:09:C7:26:DF:C9:5F:B7:0F:9C:28","sha256":"21:65:29:2B:24:D3:52:3F:25:3F:14:5E:3D:C5:2B:18:CC:EB:C0:60:D5:DA:49:21:5C:2C:57:C0:46:23:C6:61"}}},"request":{"raw":"POST /sync-do HTTP/1.1\r\nHost: glooxing.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 452\r\nOrigin: https://nadrigrir.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nx-trace-id: 1edfd83db6870ca57d822517cb073335\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: https://nadrigrir.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ntiming-allow-origin: *\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=gBquP4FGlA9a85Wj1TompTTWysff4g4WFSweuxoHwaBZO0mWjEdYWNNvEXZfGAx4t%2FZ1eT7u6wWP57%2BRy8R%2B1HmDsSfTEjqavX1OymLK58cz9dy5WwvMWzn9jOdarfw%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170e6da4b512-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":607,"size_decoded":413,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8ec71594b418cf1f05e7b9bbbc1426f0","sha1":"4b5a6b9424224e7e58d1f95de69ae00ee12fcd94","sha256":"1449a2fb5693def4f77e101b4050c688fb4f75bd2fd9f4bf1ae3abc28bb2ffa9","sha512":"6c6f751ac9e9626dd95592eb62b2c7368bb965e4f9295924c6fc3842f410075dd66751420a9277be425fdf685dc1ba6ae3290f8fb1a6754f400bbd8cf23c42a2","ssdeep":"","tlshash":"66e0391e560e08fbca4028cc3a8215c9aec3c5067ca8988ac057cc9a2bc275205326ce","first_seen":"2024-09-12T15:50:29Z","last_seen":"2024-11-03T06:51:19.203987Z","times_seen":279,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":37,"connect":1,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"glooxing.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:09.629113694Z","timestamp":1728442509629,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7\"\r\nLast-Modified: Tue, 08 Oct 2024 04:17:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9256\r\nExpires: Wed, 09 Oct 2024 05:29:25 GMT\r\nDate: Wed, 09 Oct 2024 02:55:09 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"aa746f2452828a39148ef2ed129c14f6","sha1":"aab2904047696ac367e2bfc0ffb1ba44c9c84256","sha256":"5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7","sha512":"4c74b97bc4bd38e0b7f46de86629b399a71d4aa41e536362ded439aaf69c5bf690dc1fc66cb583193bd8ead6f7e982da960c0490f1ba4620f650a2117b8efe19","ssdeep":"","tlshash":"23f005913f15b8e00f746485e87584235d7b4dd5bc00e69a53a8a7d467543fd15d050c","first_seen":"2024-10-08T11:30:21Z","last_seen":"2024-10-11T08:52:19.931081Z","times_seen":8574,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:09.629911419Z","timestamp":1728442509629,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7\"\r\nLast-Modified: Tue, 08 Oct 2024 04:17:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9243\r\nExpires: Wed, 09 Oct 2024 05:29:12 GMT\r\nDate: Wed, 09 Oct 2024 02:55:09 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"aa746f2452828a39148ef2ed129c14f6","sha1":"aab2904047696ac367e2bfc0ffb1ba44c9c84256","sha256":"5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7","sha512":"4c74b97bc4bd38e0b7f46de86629b399a71d4aa41e536362ded439aaf69c5bf690dc1fc66cb583193bd8ead6f7e982da960c0490f1ba4620f650a2117b8efe19","ssdeep":"","tlshash":"23f005913f15b8e00f746485e87584235d7b4dd5bc00e69a53a8a7d467543fd15d050c","first_seen":"2024-10-08T11:30:21Z","last_seen":"2024-10-11T08:52:19.931081Z","times_seen":8574,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-09T02:55:09.630515712Z","timestamp":1728442509630,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7\"\r\nLast-Modified: Tue, 08 Oct 2024 04:17:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9243\r\nExpires: Wed, 09 Oct 2024 05:29:12 GMT\r\nDate: Wed, 09 Oct 2024 02:55:09 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"aa746f2452828a39148ef2ed129c14f6","sha1":"aab2904047696ac367e2bfc0ffb1ba44c9c84256","sha256":"5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7","sha512":"4c74b97bc4bd38e0b7f46de86629b399a71d4aa41e536362ded439aaf69c5bf690dc1fc66cb583193bd8ead6f7e982da960c0490f1ba4620f650a2117b8efe19","ssdeep":"","tlshash":"23f005913f15b8e00f746485e87584235d7b4dd5bc00e69a53a8a7d467543fd15d050c","first_seen":"2024-10-08T11:30:21Z","last_seen":"2024-10-11T08:52:19.931081Z","times_seen":8574,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/rotate?zz=6543018%3B7000963%3B4326647%3B4949467%3B5381239%3B5381316%3B5381307%3B5381339\u0026var=7339789\u0026ymid=\u0026ab2r=\u0026var_3=\u0026var_4=\u0026os_version=\u0026uid=gvgyoldziwvsq8orbcc92ugwejqqnl8l","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.424Z","timestamp":1728442508424,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /rotate?zz=6543018%3B7000963%3B4326647%3B4949467%3B5381239%3B5381316%3B5381307%3B5381339\u0026var=7339789\u0026ymid=\u0026ab2r=\u0026var_3=\u0026var_4=\u0026os_version=\u0026uid=gvgyoldziwvsq8orbcc92ugwejqqnl8l HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: OAID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; syncedCookie=true; oaidts=1728442508\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:09 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding, Origin\r\nx-trace-id: 518a147d575672df29253b0cdad6e0ad\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\npragma: no-cache\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: https://nadrigrir.com/\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\nset-cookie: OAID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; expires=Thu, 09 Oct 2025 02:55:09 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=0yCxvda0INCoCCKQ%2Brxf4pMlAsMeswjuqnWyzsCx7lo8EKhM02pk%2B8N3%2FrTXwhboEbtzKKDQ6czT%2BXMD3yXxUTCuHZ7RhQeWPbkQTFrTiFdQ6GIrlA3qrAEXEDAInRBC\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170d9a95569f-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3923,"size_decoded":3923,"mime_type":"application/javascript","magic":"troff or preprocessor input, ASCII text, with very long lines (3967), with no line terminators","md5":"e312442fd72974c7ddfe41423abb8f96","sha1":"2e21cdb5063e84f062eb98f8d75680cdd9eb7570","sha256":"2055f4e216ea4f3eebfe9b7147c6a339461cc21e668246643e06ff1bd5a71d9c","sha512":"245ad6971b6650d1eb6a6d5d1dbba46e91d1609538ed69a754fc37c1e938cc8928a9096af1c9313b0e2cfe3f91d5507b4a5764c5e63cad519ba0b39dc871503c","ssdeep":"","tlshash":"83812c71ea04fc60690457d2fabc2d4fe079e80753b1d21cfb09c60145adcb6b764e44","first_seen":"2024-10-11T08:43:30.272156Z","last_seen":"2024-10-11T08:43:30.272156Z","times_seen":1,"resource_available":false,"data":null}},"time_used":860,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8904.3882d7a96ea63334.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.902Z","timestamp":1728442507902,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/8904.3882d7a96ea63334.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-e16\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Td359MVA8ECnQjfUTyGsUb9iqwdxDFUUo3oc41HLsHfnVFCxidBfT6oaO7WjVQiRmBgOLSpBEgKBQ5cM%2BOf%2FWgh3LW5M7Klpg8WaazkuvdUQ7VwdkfkB%2BBDv64NEkfOh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b2f712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3606,"size_decoded":3606,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3674), with no line terminators","md5":"0c7ca6a3766203d4ef089055b3d7a42e","sha1":"ec2f576cf54d6fb937bb564c58cd46d1cf0a01b3","sha256":"114d172dc04101f41de0ade1f3b3b57f41d4c29c1f856ecee97f8bb1b62597d3","sha512":"6ad885d107ddc0681dd581503454e09a955b736b3629df16df42bcf4303a502e2d1919ed66a1093e04d92e48c3b38e1fb9860575eac9d0c4b9489a955dc84f2e","ssdeep":"","tlshash":"977196fc7895b46a4667a495812fcf39333f2d163d0c5825a1439cdc203cecea25295f","first_seen":"2024-09-20T17:00:54Z","last_seen":"2024-10-12T13:59:16.340434Z","times_seen":731,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-d2b32c4459c24af7.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.724Z","timestamp":1728442507724,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-d2b32c4459c24af7.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-6605\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9m%2BOJerHPri%2FOPn6U9QLFO4S3RzWnsuYhWeE5crTVE08iNr982l7dVAzlJpVJW2q24271Kc9uhnbWCZgKd4bPOGbbU3R8aKfjEo8D5fEVcXKR%2FS41TFa5TubCSN7f%2Bnb\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708f8c9712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26117,"size_decoded":26117,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26117), with no line terminators","md5":"562ed7c640e4b74972c279e090aef65f","sha1":"54a2aa826505cebc6ea183fcb94adb73dc4e0174","sha256":"8fa8a949648f071236cba81746ea1e3c45f07a8c62f522fa8ad73882fb11577b","sha512":"480a2015021294d510acfd5ac33c4d086b657a2062488a6826aeb197c6d0db381de17a3fd02ddfb32c939ed7442b36bbccd3551f1712f17f56c6802ab1e11a04","ssdeep":"384:Ye1prMKSY3VWMGaAWQyRRd5SabKOK55/eSo:FR8WQyRRd5RuVho","tlshash":"2cc2a5d6b5c7b40c2167b9f482bf911e623b7c862c0e46a0b01aeed134f8548b176fd9","first_seen":"2024-10-08T14:56:49Z","last_seen":"2024-10-11T08:50:22.985111Z","times_seen":25,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-3.22d8dbb6.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.188Z","timestamp":1728442508188,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-3.22d8dbb6.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1454\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-5ae\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=bGH0tW5jP4%2FqwrWGlhIxPl26uT%2FAH%2Fs8n1Tr8GJ9eMZbcJ1%2Fr1CIA8LzuSX35qLYMvwz6Nvd05hgtzx9%2BRveVR8WMfcDtBvka2K%2BbCzbE4D%2BrjwGrKwYYCu9iIIsCQW2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fbb569f-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1454,"size_decoded":1454,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a747d227c2e10b5178fd942484301d7a","sha1":"b3c5cf90dd5fd2c26c7b17dcb2d35b6dd47065be","sha256":"9f4fb1281b7141b9dd48925953f7b039b6c411ea0e6e5b158d3e000d75316e9f","sha512":"8f0ba6d15e8d3024825be7ed41e85f4ca91423d92a6be5c124296f5cf284866132a0133fa85a913ebd7c04d40463955eac8792b008800deb20a517ae25ef8f3f","ssdeep":"","tlshash":"3431198c688cccbbc40ac768c067296d521a0b527cb2c40422cc6b40b14038fdf68739","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-27T18:19:14.71637Z","times_seen":4100,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4764.de5faeb046dca883.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.905Z","timestamp":1728442507905,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/4764.de5faeb046dca883.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-678f\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=sWCcZRVC%2FRpKCo39%2FaKJpZxs3WFHunHN1Ijlk1L9dJOjd8H3whQiPcBjFFmLjnhJkrVgZXKr5RixXx1irHXgo5dS3qyGADBdTbcWo1svtR5P2Fvb3iV3qfjCgAnneRz3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a5b3a712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26511,"size_decoded":26511,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26511), with no line terminators","md5":"ccec6cb0ad7490b4963e687f0eb31a5b","sha1":"da9d701d938a711106549ff2182806cfaa6ebb22","sha256":"8183c0fe331b14212e417e023527b0e0edcd172ad068f749de2def38c5105588","sha512":"bc966cfd0b80a442e2e2e5709018f50e7ad049cd7d9908ec7458a80ae4a77ecc53c16b654e756f93ff80ec4f802fce6499e9ea2c0a012c7d7dad57332b0c1fb3","ssdeep":"384:Xd4z0COCaCXo/TTmk2+fKzHABMgxxwfwsyAHIb9gCnRw2Ef:t/gCnRw2Ef","tlshash":"b3c25ae7ef93906c51b3e9aa80f7492e93797b02229d7525d48394c0a5683cf1313ebd","first_seen":"2024-09-26T19:30:37Z","last_seen":"2024-10-11T09:17:14.529547Z","times_seen":461,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/universal.js\u0026var=7339789\u0026ymid=\u0026b=\u0026campaignid=\u0026click_id=\u0026ab2r=\u0026rhd=1\u0026var_3=\u0026oaid=\u0026os_version=\u0026btz=UTC\u0026bto=0\u0026z=6679100\u0026cdn=1\u0026ab2=\u0026ab2_ttl=5184000\u0026domain=\u0026var_2=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.819Z","timestamp":1728442507819,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /pfe/current/micro.tag.min.js?sw=/sw-check-permissions/universal.js\u0026var=7339789\u0026ymid=\u0026b=\u0026campaignid=\u0026click_id=\u0026ab2r=\u0026rhd=1\u0026var_3=\u0026oaid=\u0026os_version=\u0026btz=UTC\u0026bto=0\u0026z=6679100\u0026cdn=1\u0026ab2=\u0026ab2_ttl=5184000\u0026domain=\u0026var_2=VA9jHCcGsixobdj8maZsUz HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 30 Sep 2024 15:58:01 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66faca89-b164\"\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=1800\r\npragma: no-cache\r\ncf-cache-status: MISS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=vmeS8HERyrvmMCGbGEC%2FDMYGwrRPoXtJsaHu%2Bqa40cIZGVDec%2FDmASqNZvmDc3WuZrfiQKJ6Aki%2BF%2B%2BJHPcV1ACj4NENb7YYmedN6bCACsXLFxz4wR30VipADHkU9eQB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1709ca2c712e-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":45412,"size_decoded":45412,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (45412), with no line terminators","md5":"628cec81962ee09b413ce7668f872c5e","sha1":"182057b5601dbdf99ed18957c50fea02981f2642","sha256":"6c5d5ff8b412b9eb1647d60a917b61bee0cbb59687b6c9c40718c808155c9820","sha512":"d1e850983b6ae731b52f15ea9330f1d64faf5ba7837bc6897879d529bd6cb7041baf2652adbf149d951f8e599456d96432d3ea445d835b92d4780e26824a3cac","ssdeep":"768:fnnnxdoVqah1NE2lgc0cquA2ZUn/w0UwYEozfAW9gCIHrrsGzx24ZuOqoh8lx5nt:2o92gUwxo8/Cgr7ZrZENfirzwvxdN","tlshash":"cd13e95374bbf9ad0bd295c1883e8e054277c950281fdcc5f20d9aa1b867502a3a7fb9","first_seen":"2024-09-30T22:52:21Z","last_seen":"2024-10-11T09:19:39.390675Z","times_seen":651,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9909.55cde413e7ec3deb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.900Z","timestamp":1728442507900,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/9909.55cde413e7ec3deb.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-1262\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zbRUtupa9JVl22ibrFyPU9OWfHWFH5FyP8TsQQDLAQJ3V4Qj%2B4NzMWnMq3TIOc%2FJHpiq%2FjZf67Myyn7Bz0t4u5p4p9zxzXbDU%2F%2BAr5uts1YZfHhx2HR6tnoIG7Nx%2B9Iw\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b2d712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4706,"size_decoded":4706,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4772), with no line terminators","md5":"bdbb722ddc08aae92b1a1e331d2da91b","sha1":"f5b2fe074d060d645b7b2f87b101ac226e6b7b1f","sha256":"943e802d539bf4ff02a3729d3bbbecbfebcdf04b092899b3e41f740e2f681d6c","sha512":"b8d4f73468c9b92ba1fe197fc491d113a59e661e924fb037926d83f7f36161720a0cbfda238435d9bb3dfe5a96ad6382b9f7af10da7bc75ca195aa3a06ba5467","ssdeep":"96:L47UtA9wMKSnDQOvTcsmsCZtaB8sgN0sAXrj8GA+mn0eufKZWJ:LeaA9wyB6ZZsgX2A3EyZWJ","tlshash":"2fa183ddbd9af06d112668e8003f9d2d233b28113cc96832b053b8d9697c98d6533fad","first_seen":"2024-09-20T17:09:24Z","last_seen":"2024-10-12T13:59:16.326991Z","times_seen":520,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/5994.770802cc57bd04ea.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.677Z","timestamp":1728442507677,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/5994.770802cc57bd04ea.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-4e12\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=VoOULbAy4Yl1zZOsIlqLL2Jmy%2FLrfcftB69xEBVg1oq5xIOmZJcFnbR4Alzl7mm%2FdbeYSTp74Pyv4OK%2FnQwIbse8fTEgcTssVIuDXzZc1xHVL%2B4SQo25lrQa0kVPDILX\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708d8a5712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19986,"size_decoded":19986,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19986), with no line terminators","md5":"d1e24e877e0b71bb6dbab722df48aeb9","sha1":"f7c65138171360538aa15e95007cac451bd4ec3b","sha256":"4cf0cb5b91ad77fc326ca885426c80e5623199eb036bc51741be29db84287522","sha512":"e9ef775af3f0cfcf9cf37c91e430ac9855b8d6e59a1375a0df08442e55a8682c529e23b5b44c183a6d4c3376230842dc8348aa6b626a538a730d5ffe1d91db11","ssdeep":"384:COYGZY0AYZhQcSqkbaYrimWL1wU9r79AMilSy6kBojZa:q07+cwb7r0GUt7CMiln","tlshash":"0692a9dbf8dbb87e9257d5a1807b812b2a7a5c052c4c8134a197d8d81878d8ef133f5e","first_seen":"2024-10-08T14:56:49Z","last_seen":"2024-10-12T13:59:16.314337Z","times_seen":92,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/810.15620196fdaa9770.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.898Z","timestamp":1728442507898,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/810.15620196fdaa9770.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-2abb\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=alFmTX9c3cjWYYgvCkxmakxFywqKbz9ZUyAbJHW8vJPO3a6wobx7XcQJcWR3QL%2FogEOfA6CLu8OuNIDqBLLac5MWZUugO8udYdIayrrOyuLuUWa2EqhFIyTrlQ43ZFuO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b2c712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10939,"size_decoded":10939,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10939), with no line terminators","md5":"0170af634214cf1d06310ce191e460a4","sha1":"27889c09bee7f61161d7b0689878b93b9ab9b8a0","sha256":"e9200213f671af039bedbb59aba5892d6020aef72e1ec7c220013a2b2c3eaf99","sha512":"3978ffcab0aa2e9a40a48768fe8267eb74fb4ad1992ee5a64ecd22a660b8b8ed7dd89888b196cccc5c79a0fe47d61ae6a85904bbf7701713a72e006ac969f88f","ssdeep":"192:lJ3W/YcVd48vjBLts2BGZOFtUO/oqVhMIiQAFroFnDGM:+PjvjvPoZsNlbAloFnDL","tlshash":"b432e6dcb98a702a52eb6975113f601eb77e28552a4e4400f163e8dc293cdced217dbe","first_seen":"2024-09-20T17:00:53Z","last_seen":"2024-10-12T13:59:16.335507Z","times_seen":924,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdntechone.com/stattag.js","fqdn":"cdntechone.com","domain":"cdntechone.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.958Z","timestamp":1728442507958,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdntechone.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 18 Aug 2024 05:54:26 GMT","end":"Sat, 16 Nov 2024 05:54:25 GMT"},"fingerprint":{"sha1":"9D:11:8F:D6:A1:C0:F3:FA:BA:81:EE:FA:9C:54:AF:9E:A5:7E:F2:61","sha256":"48:5D:B2:F2:28:84:14:6F:A0:72:AF:C8:5E:F8:91:29:D0:32:C9:64:0B:3D:0A:5E:E1:77:F8:40:C2:9B:1A:70"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: cdntechone.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 11 Jul 2024 10:23:50 GMT\r\netag: W/\"668fb2b6-406a\"\r\nlink: \u003chttps://datatechone.com/\u003e; rel=preconnect; crossorigin, \u003chttps://datatechonert.com/\u003e; rel=preconnect; crossorigin\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2890\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=xuUNtIXdur7D9x2iQy9nQ2po2fm54av9HPXHipzjN2tOGzviJchTlr9KP6gP%2FvGO8jjpBBck6h3qMOvPxxT8YYyptVFBhHLCeDKlovFViuljFTAjFPnk8Evo54dceMdnSQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8cfb170b3c3456b9-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16490,"size_decoded":16490,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15840)","md5":"80d7433dbc2b7708f2fa4e6a9943a116","sha1":"350c6e2bb1cbd07de260856f918f4ececcd96894","sha256":"54862ebdcfa23c67d6de25543e0b22014de8fd8d3d3aed09d615981bbdd76251","sha512":"6c065d9d4d04b7c4a11ae28751a711a064410055e1db34daed1c74d98f0257a304481bbf2af96b0845075f43d43bafeab34a49241a2a63f967fc0867748f6052","ssdeep":"384:WDC77FbFjbRN8h+eYFCatOJ39BEisNWP7gDhlPQ5EKQIkT8:d771Ff8h+eYFC/JNYa71","tlshash":"ac72e8c631a474afc6c292f04a7f092ef768509060be2986c1d5b4ec5ab51cee7c3f95","first_seen":"2024-07-11T14:08:01Z","last_seen":"2026-05-08T14:04:47.515323Z","times_seen":9387,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":72,"dns":36,"connect":1,"send":0,"wait":9,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/5313-301aaffc9ebabfe2.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.722Z","timestamp":1728442507722,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/5313-301aaffc9ebabfe2.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-1ff1\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=hkkAsqs6tNPpg2KYiUduiUQyrcwKNtIo03rvhp1yb7vkY27QaB6DjtqjkU7VEFCr7pEYOtWIwA0joKdSXltM8y5BVzipmkPuZhaG9AaFI6GTHc2YmJTQPQZOQI0Af2jn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708f8c5712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8177,"size_decoded":8177,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8338), with no line terminators","md5":"fa6da18beaa992ec3833f0d36df87cf6","sha1":"898af50aff71789b66d8c49af8fc029c58a14232","sha256":"7816bc7d7435dbb3b3ff35234940bf6fbcd64aae54bfe646d600dc03af4c7da2","sha512":"6e602c659c237b991bc79e972ae77472dd215200e33353ce75092945c5981d4b7a2b0eaf173ff4516fb673ca26c8affce6d8758bb4909d14864fe49f62aa2d43","ssdeep":"192:iy9g8LZNiz/cONUPv6rHxUWwTtTt2/S8y:/mXwRT/V","tlshash":"b402749eb9d2f0062303b8b4907f281bb37a6d16151fa4987229c5ddbdb601d5633f2e","first_seen":"2024-09-23T18:25:36Z","last_seen":"2024-10-29T22:52:36.26785Z","times_seen":1062,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/main-7a75ff3b0e9a5ceb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.712Z","timestamp":1728442507712,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/main-7a75ff3b0e9a5ceb.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\ncf-polished: origSize=109699\r\netag: W/\"670516f2-1ac83\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=5Bctm35sF3SNPnAU3muV%2BK4krl00GzoXVjJVCKfTYkclCK9er2ZpmoaR03vKLKnrWDAA8jn6wo2LYEnQYOkBdg0LgUo2PZMM9GkotpuXxToDtUjaN8Mf7Xo8I5YG0c%2Fn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b7712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":109698,"size_decoded":109698,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"eeef108ca819f6315447cf06865dc84b","sha1":"b1650d7d5eb5c4209dd7cb8ed51feaf3c925a5aa","sha256":"928babe6b0db9d959278d6d8532161434c207bc3f933c923f1b4d3b63126a605","sha512":"9fb4178d6f02c1fbba42f8be85aa96eef154eb5a43a9cd69ace4ebd4649cbd7fc25826ee2a938fd20f7763c5225c82f020a6f488fddb7e8cc84b0b4a1e013101","ssdeep":"1536:NV8ZH0wowcd8HOlXMGSCJtIDqsSZHRTUXH:TWHH+32qnTsH","tlshash":"4cb3e7e976d2f4a202d361b4843f110af37b1d3a605ea841e36adcd17d7498fa163f29","first_seen":"2024-09-04T15:20:39Z","last_seen":"2024-10-25T10:25:40.795684Z","times_seen":1793,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8759.207a47fedeee6500.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.903Z","timestamp":1728442507903,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/8759.207a47fedeee6500.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-18fd\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=NwkLrk2vxpzGCZyHATh5BQCknhxrWkXKIYo6eMXJAKGSmiwJfOqOOmsFDcMdNLcugZ5J6RxuFEL96XoO2QmhbF5yV4IgkrPtZfRHmT0pTa0%2BoMSONnyoZwrKKjnrpc1E\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b32712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6397,"size_decoded":6397,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6503), with no line terminators","md5":"2979752ee6db205ac4cd144e9b00917f","sha1":"60e41467ec825f94ea4eaa4d94d41f1484467a20","sha256":"64dab3424b9539f3c0fa6c811e59c75b1934e089094918fb38b367adc775bfd9","sha512":"c8007b65feec59ce179f452b58d5181f68a0c0354952a7ec42acd7c1f62732941fa14544cddbb20f33dd8a27d52aa9842a13e519ce0a79ed34dea665eb4a8ad4","ssdeep":"192:LcjtEykkXLuAPOwAQCtGSD0cZSUzO9wvvZQ8Z:mtEyVqGc50qSynZ","tlshash":"d0d196cd7a89b47a81d798b5107f983d437f3e153c1e0938b167f4d86839d999142e0e","first_seen":"2024-09-20T17:00:54Z","last_seen":"2024-10-12T13:59:16.349992Z","times_seen":727,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-09T02:55:07.190Z","timestamp":1728442507190,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 08 Oct 2024 11:26:51 GMT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wukVGFG0alDnEoe%2FR3WfRCWz%2BYhKWWxAiHA%2Fudx7jfFB30z5MxArDWKpIwnPOHWp%2BFPH40fP52q65ASc8Ph%2BdPK9YRmVn0Z%2FEK6j4%2B8DEw8Xv6kPKtp4N%2BeO46tK%2B2b3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nserver: cloudflare\r\ncf-ray: 8cfb170649ed712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":111685,"size_decoded":111685,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T15:53:20.525245Z","times_seen":14844059,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":52,"dns":13,"connect":1,"send":0,"wait":90,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/8601.db0cc04a43991af0.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.688Z","timestamp":1728442507688,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/8601.db0cc04a43991af0.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-595e\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ZicHWBMbv%2BZVXSX2tiQEEqGMz7aJu6AY2JybMCT52qqeAGrAbLlY422AAHMXyEA%2FsW8sXYoSGzJ7Dz1ZFkHgCfSm4YCKEk5JCrOkA%2FHtQU7gTm4BccbCrsVg47bqJEni\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8ad712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22878,"size_decoded":22878,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (22878), with no line terminators","md5":"05d1c6fc3a785c60ccb4869a6d8a8914","sha1":"8169685bd9bc5d9ce27a5af97303811041450487","sha256":"d80a452b8e9f06faf7852cfa89d5120b39a5eead788a41335e171d737141f8a4","sha512":"afa1987dfbceb5799e8c1f872673fea4189caf82572ff86106ef4b6ca9c23cf4c7cf083ccbd8242533fcc3752039a83bf2fea6f7070bf444087380c20d9c5df0","ssdeep":"384:EWPF0MRs22ltWTRx14yTnzmcK5m8rLs1N2:oMsvltWT7ayTnz9omUCN2","tlshash":"ada2d1dbfbc3a04875b3ac7196fb495b62693f051698a124d942b4d234643cf6322fbc","first_seen":"2024-10-08T16:31:58Z","last_seen":"2024-10-31T10:31:18.941732Z","times_seen":501,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4880.789f870cd21de157.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.888Z","timestamp":1728442507888,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/4880.789f870cd21de157.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-16ab\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=D387KuivHJV2ExwqZw3JjN9PiMEFdBYA9pbYGBgzi3ehQvF9SbTvrcy5ICFQOvTL2VYdkxz4pdQkR5LY9%2B8UAKGC%2FHrSeF0YQKerKgt%2F9wfb67S3WKwvY4Bbu39yhISC\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b27712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5803,"size_decoded":5803,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5893), with no line terminators","md5":"795ca127502a3c39bade23b7c0d3e6fd","sha1":"7fc5dd02d7fd8776de808a54a212966341e815bb","sha256":"113f8ca1103bf07ce4b42ad8e9167efa0c6b80d60794ef03bcd6cb809da46b1c","sha512":"1d3b218f113b7399c4ed4f8b432e9f73da6db48add1dd0573a3c296d697d5a97923ea5b0da808b5ea395accebd555df29df9111668b7c799670efb37bf782dc4","ssdeep":"96:LzzbTF9wBQzOvrmOKatkV5+DIYhbRXK1PkPCnKfZpMNZKREjYa0Tvyjbf/GpbZeW:L3F969dw5+DnKuR5OfGaELN","tlshash":"05c1b785f6e0682671d37249116fd528797d8e0d791cab34f22184cc8f2c5473831f57","first_seen":"2024-10-04T10:10:35.603228Z","last_seen":"2024-10-14T07:58:33.741158Z","times_seen":394,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/webpack-ba5c26f7636b00f7.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.708Z","timestamp":1728442507708,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/webpack-ba5c26f7636b00f7.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-2170\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2B%2FXOLL7f%2BwmWr9sIG4z%2Bu7CqgOIKnrzmGZ7AqAt9mreNaeDlZ%2F1mYSUpspFuD1SCa3owZbTgP5VzWKrWf8R2PW8bX94Iv1nay4LryK9i%2BXK2e8kXNFWGNFQDJA4rhWbk\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b4712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8560,"size_decoded":8560,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8998), with no line terminators","md5":"1cc238294ee4d449820c2ce65aee19e1","sha1":"b07c4b7e014bbeecc7018046f871019a07a79cc7","sha256":"fe2d5e4ccd7d16fd1113cc1ba093eea756deeb2ff6311914155528fc31e34817","sha512":"fba86390bcbee8c0011605e2c17b44c4d54ceffd10e56d0ea40523e5b59c7062fe6edf7dbec2a55c2f4c1547ae77d5bea6d45958f8ea986f0016125afe70f578","ssdeep":"192:c7FYRpbFFkEzjG5osGWE3vIPhnxQ1Z4qDWljP/rI5XZIh:0yfkEzqmsN+gJnx7ljPDI34","tlshash":"fc021afa3288f5b91bd560e45a3fa47674aa3ca2274eb860f202d0d9dc30ad5d125f19","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.427848Z","times_seen":29,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=gvgyoldziwvsq8orbcc92ugwejqqnl8l","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.951Z","timestamp":1728442507951,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Fri, 30 Aug 2024 01:00:45 GMT","end":"Thu, 28 Nov 2024 01:00:44 GMT"},"fingerprint":{"sha1":"59:49:A1:C9:C3:99:98:FC:2D:E7:4A:9E:86:83:A6:DE:2E:C3:8A:B6","sha256":"EB:CF:BF:3D:D6:66:7D:1B:44:5C:0F:EA:2B:7B:EA:83:C7:21:E9:EC:6B:98:07:EA:C8:9C:5B:5C:46:B8:42:45"}}},"request":{"raw":"GET /gid.js?userId=gvgyoldziwvsq8orbcc92ugwejqqnl8l HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://nadrigrir.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://nadrigrir.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; expires=Thu, 09 Oct 2025 02:55:08 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":65,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"482c6e0ca5c51790b078f620d30f6a72","sha1":"bafcbab8719fdcc12c4142b8c70a6381c34ac5f8","sha256":"fdf03689b33cced624af4fbf0223edae940cc4961c2ae647eb0b87f4aa6b23fb","sha512":"fccf4af861d9b1a0e0703eb533ec36b24976dee6711add5b6b38173ad9919d2b3266f35e82fb6c5cbdef75d922f6d6c10f56645c5cc38161b806401c4aa535db","ssdeep":"","tlshash":"09a022a0b02c8ec080200c3e0b2b2c0000ba20c322803e083ac0822020e233c0c3c200","first_seen":"2024-10-11T08:43:30.287109Z","last_seen":"2024-10-11T08:43:30.287109Z","times_seen":1,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":102,"dns":9,"connect":26,"send":0,"wait":27,"receive":1,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/O16NddbN4ifv-hUemlqj_/_ssgManifest.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.734Z","timestamp":1728442507734,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/O16NddbN4ifv-hUemlqj_/_ssgManifest.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-86\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=bGPs1hrjDxrekBLAw12yfo2zH9rcO1b4li78ilpcPt%2B5Rsn4jxInhAcFulaF8XBsGRSD%2Fx9jKYdrna2sivUqWVTbRys51sq4gw6bEhMNqbTwVxur81kVi9QFF9ZDvuoC\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708f8d5712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":134,"size_decoded":134,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"8ffe0d99020b7535af6db34ba54a25cf","sha1":"c9e0b6379bdae795228998c3050d295d14e65669","sha256":"1f5fd7652f124b236dc9ef40458fe6fbbd3b09ef521cd3e4f22602450525773c","sha512":"33da8feaef0adc67f82880178f1c9e420ef7ea6685eb15463ba06cf8e63a9b8ac40c0339150f86ee28fb58606135cd336d47597444db1e4d8f7c24d99140919d","ssdeep":"","tlshash":"57c048f2846cac26aa72dc285ab41f228fa00226a80a28938afda44580a20422a10d10","first_seen":"2024-01-31T16:47:14Z","last_seen":"2025-04-06T20:33:31.657085Z","times_seen":6130,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/icon-survey.0bfa8c9d.svg","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.192Z","timestamp":1728442508192,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/icon-survey.0bfa8c9d.svg HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"670516f2-a72\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=8g7BT1DNZAFVbQK4Mwg2VKZF6b0Q9l5ocXRfwbLzmcIZIZ2Ki28cWrWeanyhRGoB0sz%2BkE0xfp3UYS4dPF9o3nDrfBePh7riCn87NoJ5ocvxMOWmbvO6oH99D7%2BWZQzM\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fbe569f-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2674,"size_decoded":2674,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a000ba4d0e7570d810feafb22bc50bef","sha1":"af8fce44a683d3dfebe69cbe856e747739c9a666","sha256":"9ae848c180201d8ae5c59ce118b0b7ef395a01295fb04d57e81cfe0566100679","sha512":"46156262cd35d266475a082563993a0749942a581ec14b51787eb8839c83a05ab6f7121d276e18e0ecea412b85632daf78cdaa4c8b8331809a1b128ace09c499","ssdeep":"","tlshash":"575147f6d3d19e717cebdfb097160521f38e2dbca458a2c5b27dd4960dc3a868a0d904","first_seen":"2023-08-28T16:10:04Z","last_seen":"2025-01-07T22:50:16.443518Z","times_seen":8492,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/track?dry=false\u0026request_var=\u0026oaid=gvgyoldziwvsq8orbcc92ugwejqqnl8l\u0026os_version=\u0026var=7339789\u0026var_3=\u0026var_4=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026z=7339789\u0026offer_id=14162","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.422Z","timestamp":1728442508422,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /track?dry=false\u0026request_var=\u0026oaid=gvgyoldziwvsq8orbcc92ugwejqqnl8l\u0026os_version=\u0026var=7339789\u0026var_3=\u0026var_4=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026z=7339789\u0026offer_id=14162 HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: OAID=gvgyoldziwvsq8orbcc92ugwejqqnl8l; syncedCookie=true; oaidts=1728442508\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\nx-trace-id: d42197446046f1aaeb3dd26f120f0277\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\naccess-control-allow-origin: https://nadrigrir.com/\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ntiming-allow-origin: *\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=1eZ%2FBGzZo9%2BSTjcDnDOB7RZAHzGOZOzg5qWwu4HkPsMbKcp1um3%2BkuiXYkjiGYoxq6iIENXvamK65blqXqTLAagS5RkELtok%2BWnmOo9Gw%2BGY%2FDeWQYPMvgrJvWbD0Xrp\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170d9a94569f-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":183,"size_decoded":183,"mime_type":"application/json","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"3689e059149c930f0df2a98218e5652d","sha1":"86830fb09e7632f7a8e10c8afdb5c83027dd326a","sha256":"a49d89e22c2317ac6d6e62f39fdf6f4b7900a63c7b65f845e73b879cc680388a","sha512":"7a12725a02790c00cbfd63b07d14fef16edf9baf0ae54bbfdb154735d018087aee20b602c66f3ae792746fc2db9e6b3dc1eabb332059936d6a30432f0dc14435","ssdeep":"","tlshash":"1dd01207bcccd93bcd845c4c07375f37a6a1684dc0e534648caec80c29c45752f2c29a","first_seen":"2024-06-22T14:10:25Z","last_seen":"2024-10-18T21:18:39.274803Z","times_seen":1048,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/css/0bc0cde260d08b97.css","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.673Z","timestamp":1728442507673,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: text/css\r\ncf-bgj: minify\r\ncf-polished: origSize=1843\r\netag: W/\"670516f2-733\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wQ5COaF82PSAiqjkoqJEC7O1O5Stxc12g4FUwX5lI6TCj4xhjPZ5ISgKvbM0o9quLCZps8X9rhVaZBFfXBk9SU%2Bqj0cpj5Pft8FLIbl1xYDCxaIillNZaEBkStOmM%2Fhq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708d8a3712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1841,"size_decoded":1841,"mime_type":"text/css","magic":"ASCII text, with very long lines (1841), with no line terminators","md5":"ff1d3d5d24ca0172d59b02e7505ddaa1","sha1":"41e83ee08e21f369886b0fdad0ba01d8b20897b6","sha256":"939b17f98d9d3585510edafa70c73c6619ea20d9b401b4396041272bed67ecf6","sha512":"fd5469648f84dabd844f6739c745f392b1572a3879f4a84b0144b8b0ff2887db1611e91fee7e168bb4a8090be6304f5c4ae32c68059891cda221282aa57968d4","ssdeep":"","tlshash":"c23152b30b402b64a773cc263ad67f5436206033c562b5a6e450ecb4c7dac627d6d78e","first_seen":"2024-03-21T14:18:30Z","last_seen":"2024-10-25T10:25:40.841677Z","times_seen":6280,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/9801.df1a0704b381f036.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.693Z","timestamp":1728442507693,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/9801.df1a0704b381f036.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-549e\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=SXwCRyI7nUinOFICIhLe4HtHQCg8cfeK7NIfnAf6K2KlGVDNg1%2FXhsPu66Au8xIQtvsOvY1265TOtqYzVBPABV4OnXSVdw7fpTdSg%2FVtTXKgcMNXaQW07TMKJXZxL329\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b1712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21662,"size_decoded":21662,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (21662), with no line terminators","md5":"748726130a1df425a0ffc70b426980bd","sha1":"665d64ce81db17ac48554a2981114293b90d86d7","sha256":"411199d0d3ccb037fe894a46ac8b1ecea5ed1d33c24e30e5a5a50070c9bb1cff","sha512":"9df280e720c5a7eea0fa6f2ea165802aec0c8a422b207398927ff20724260ea16655d91f24ec9ab2cadd9ca83b7dc527300e80ca30b25ac6d2fe569d0b6a925b","ssdeep":"384:XNuxjchoSCh1mcvCElLy8VgQlqCbiCmgMnOzgkgXgtgmg+gjghgpgwgygjgPgRgQ:XNijchoSCh1mcvCElLy8VgQlqCbiCmgH","tlshash":"aea239a7ef87e08c1277e6a1c0f75967b1b97b0103d86021ab9768c526943ce7361e7c","first_seen":"2024-10-04T14:09:54Z","last_seen":"2024-10-15T10:05:31.924118Z","times_seen":270,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdntechone.com/stattag.js","fqdn":"cdntechone.com","domain":"cdntechone.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.017Z","timestamp":1728442508017,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdntechone.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 18 Aug 2024 05:54:26 GMT","end":"Sat, 16 Nov 2024 05:54:25 GMT"},"fingerprint":{"sha1":"9D:11:8F:D6:A1:C0:F3:FA:BA:81:EE:FA:9C:54:AF:9E:A5:7E:F2:61","sha256":"48:5D:B2:F2:28:84:14:6F:A0:72:AF:C8:5E:F8:91:29:D0:32:C9:64:0B:3D:0A:5E:E1:77:F8:40:C2:9B:1A:70"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: cdntechone.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 11 Jul 2024 10:23:50 GMT\r\netag: W/\"668fb2b6-406a\"\r\nlink: \u003chttps://datatechone.com/\u003e; rel=preconnect; crossorigin, \u003chttps://datatechonert.com/\u003e; rel=preconnect; crossorigin\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2890\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ba0jiQZikN1Ze2YqdhBu6iwi%2BqTWCkhEjzDEV%2FlgoeAXFTyjK5ihUq%2BzoSczd0aaBYwv%2FaT%2FnblJv6na%2FmJMkp8P8g3wtHutws1lvt2khXdOV35prq%2Flg2mMiixs4n5AFg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8cfb170b3c3556b9-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16490,"size_decoded":16490,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15840)","md5":"80d7433dbc2b7708f2fa4e6a9943a116","sha1":"350c6e2bb1cbd07de260856f918f4ececcd96894","sha256":"54862ebdcfa23c67d6de25543e0b22014de8fd8d3d3aed09d615981bbdd76251","sha512":"6c065d9d4d04b7c4a11ae28751a711a064410055e1db34daed1c74d98f0257a304481bbf2af96b0845075f43d43bafeab34a49241a2a63f967fc0867748f6052","ssdeep":"384:WDC77FbFjbRN8h+eYFCatOJ39BEisNWP7gDhlPQ5EKQIkT8:d771Ff8h+eYFC/JNYa71","tlshash":"ac72e8c631a474afc6c292f04a7f092ef768509060be2986c1d5b4ec5ab51cee7c3f95","first_seen":"2024-07-11T14:08:01Z","last_seen":"2026-05-08T14:04:47.515323Z","times_seen":9387,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/pages/_app-99c37a6eccbc88fb.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.716Z","timestamp":1728442507716,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/pages/_app-99c37a6eccbc88fb.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-d785\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=MKjMYNapCOERnuLWp6Of4DV2Up6ozOeZoX%2FSnfBz6qLzaTfHbn4fNPw10%2Bu6v8D8RmvxFYH92dQsenesGp3K4aJ4Yy6hIOJcs4dXFHQzkxplSxnhUSUF5b6L9UKZn%2BZD\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b9712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":55173,"size_decoded":55173,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (55173), with no line terminators","md5":"1ccd6c0ed98343d140893babc28b2b0e","sha1":"69fd9728cf12e35b401d375d0c76717149ee195e","sha256":"e1c3b8336f66bcb5553a0c417c0696974c33389acce5d91d5221294e8264b7d7","sha512":"dc9b700d8476d5ed0c8b7d194987750efc3b18f6ab0439030dab14270fd9541668241d2099ab7012b1ee1eb2c2e40620d79206fb2f81a79ec4a12bcb7d3032e0","ssdeep":"768:N7siIM2lYREtz43miHvrPqdixaS8tQ85hb+CZBCu7:KipdyFFhW0QAj7","tlshash":"084309ccf6d3f26922b314f550bb500a723e9d0a118dc078f6468d8569bae5b51a3fec","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.41582Z","times_seen":38,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/86.b4cb0eaab191b83a.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.895Z","timestamp":1728442507895,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/86.b4cb0eaab191b83a.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-c95\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EFp8tEcPXea1ICwNV4zG%2BTo7Jtgv8Rd%2B7sCdMd7TQ0yNEN8rsJ4lD2HX4b7WzXIQWpii4sxvhEdIhdFcm4R3cX5vJT%2FcAxqZpRdcBbkafHiblGUS2hfUPOEfXGbpzQJh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b29712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3221,"size_decoded":3221,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3297), with no line terminators","md5":"8f8c9e9f04457a84d5174a39658770b8","sha1":"3095f57c5718318f4c621899a1a780ce1db0fb73","sha256":"6ed92693b2e0caa67e7efe51e648d978e50f9d500eb92e06e83e637ccb1a37ae","sha512":"bbfc7b9914dccd096f87a90a343adcc0096937bd8755d36ee9992b628846d4e1213a47ddb025410ed3ed63b47b7157576c04d0a8479747cf3bd14ad9f347a54f","ssdeep":"","tlshash":"6261a6ec71c6b419db93160507df4968e3b72d003d0aca28f268d48cea7cf8de02a651","first_seen":"2024-09-12T22:22:52Z","last_seen":"2024-11-20T22:41:03.350989Z","times_seen":1039,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/media/person-4.3034c298.webp","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.186Z","timestamp":1728442508186,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/media/person-4.3034c298.webp HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1798\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: \"670516f2-706\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2660\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zfU6rGB28kXRHqyzET%2FWQ6gA%2FSGfZkrY0KD%2F5Sw9pD0CrPQyas%2FQpWgTvdyaoOXggLVA61DYWRBPhrHuBt4NyC6ekhl2F70k%2BLi7pFOA8lFQOnbgHpb7nkLFDYhqrjG0\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170c2fb7569f-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1798,"size_decoded":1798,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5dc160f6b521dc8f6c670b140b354fed","sha1":"22e15cda82b532067b99932ec28f86ea2cc1ecbc","sha256":"09c6c6de57458ec0c4e7a3d2375e0c7b9c037de9366b63e3685cc0ca94d838b4","sha512":"deab3b27b1f69c45a216ff312635ef1922a68f6c8c2d1375f506bf38aec3485b45c1c0c30b6d003e7cb9d4ad92185202cca701b416bf3a8c5519e4d556a003b1","ssdeep":"","tlshash":"30310bcef909106b5a93945e96f32897703af8ad37c7c38135e782d61d09c0e2517c1e","first_seen":"2023-07-22T04:09:49Z","last_seen":"2025-01-01T07:39:55.729635Z","times_seen":4084,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/sw-check-permissions/universal.js?var=7339789\u0026ab2_ttl=5184000\u0026zoneId=6679100","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.340Z","timestamp":1728442508340,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /sw-check-permissions/universal.js?var=7339789\u0026ab2_ttl=5184000\u0026zoneId=6679100 HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"670516f2-599\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=L214OGq%2B6w1RyzK0ti9bz0Q3FSbb62961O0C%2FigtvB9fXjOmE7P90i1HlipoEfUX0BkjZI2LE4sZEjd%2FDQp7%2B1hc8U7vsYVIH2gHHXeMXUWmX9LgUnH5Ezyw618nb6tE\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170d0988569f-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1433,"size_decoded":1433,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1515), with no line terminators","md5":"422ad993943fb23429b7684bf9f27db3","sha1":"90226fc9e56b9ec8c02d42e4caf820aa7bba5945","sha256":"770d4d3ce80bafb24f2aee344031670ff0031b4ab24bde75b79384cbef0230fb","sha512":"d3616890e1639dbe9dff1b58831efecddc2c78df5ca43b5429a176396a0f175f88e1b288f6a22936a599f25dbf91063a61a288b28cb31866613ea0d02492ef4a","ssdeep":"","tlshash":"8c3107db3c86a22803e361d11c1ba2527177fb8a150d63a4b8648762873eb0ec7274fd","first_seen":"2024-05-03T18:01:47Z","last_seen":"2025-03-18T12:35:55.548053Z","times_seen":3564,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":84,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdntechone.com/stattag.js","fqdn":"cdntechone.com","domain":"cdntechone.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:08.427Z","timestamp":1728442508427,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdntechone.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 18 Aug 2024 05:54:26 GMT","end":"Sat, 16 Nov 2024 05:54:25 GMT"},"fingerprint":{"sha1":"9D:11:8F:D6:A1:C0:F3:FA:BA:81:EE:FA:9C:54:AF:9E:A5:7E:F2:61","sha256":"48:5D:B2:F2:28:84:14:6F:A0:72:AF:C8:5E:F8:91:29:D0:32:C9:64:0B:3D:0A:5E:E1:77:F8:40:C2:9B:1A:70"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: cdntechone.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 11 Jul 2024 10:23:50 GMT\r\netag: W/\"668fb2b6-406a\"\r\nlink: \u003chttps://datatechone.com/\u003e; rel=preconnect; crossorigin, \u003chttps://datatechonert.com/\u003e; rel=preconnect; crossorigin\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2890\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=dK51VVJ2Z%2BGgUB7hDGPuhb1LtqNuXOqDwzlNr3LM%2F2YepfEOUGQ1eOoKssW7044WCpYkPwOdatv7gBsUpIXPGwHWNb4BMJAcG%2Bed9IaTevyhzsJv9o0DkxLN7gnjhXxUMA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8cfb170da80256b9-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16490,"size_decoded":16490,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15840)","md5":"80d7433dbc2b7708f2fa4e6a9943a116","sha1":"350c6e2bb1cbd07de260856f918f4ececcd96894","sha256":"54862ebdcfa23c67d6de25543e0b22014de8fd8d3d3aed09d615981bbdd76251","sha512":"6c065d9d4d04b7c4a11ae28751a711a064410055e1db34daed1c74d98f0257a304481bbf2af96b0845075f43d43bafeab34a49241a2a63f967fc0867748f6052","ssdeep":"384:WDC77FbFjbRN8h+eYFCatOJ39BEisNWP7gDhlPQ5EKQIkT8:d771Ff8h+eYFC/JNYa71","tlshash":"ac72e8c631a474afc6c292f04a7f092ef768509060be2986c1d5b4ec5ab51cee7c3f95","first_seen":"2024-07-11T14:08:01Z","last_seen":"2026-05-08T14:04:47.515323Z","times_seen":9387,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/6634.24d9cbfbad84fcdd.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.679Z","timestamp":1728442507679,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/6634.24d9cbfbad84fcdd.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-2423\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ICPDdSvssMMiMM9tsP8dG8F5eO7w7N2iMaWZcv479iOcgtF4HGrpc7VNTScfPsSbFXxQ1rch6JzE9N9bQyxAEsM%2FOApwghibAupIOOIhWZ4V5LHKgXm5LSp1K9Vtsq04\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708d8a8712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9251,"size_decoded":9251,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9444), with no line terminators","md5":"2ecd2ec88c79a221a09ec2b489dbe4e1","sha1":"565055ffed8462df1c4afd080377c493bfd3f90b","sha256":"cb3c817b7a2ff0aa8063add83468ec39e3fa4fe996f87ff9e622eaeae0fce5d6","sha512":"40bdcb77e338b64c24f278ee2fc8597a214a25e8f14615cf0949b26aee219578e559d64550b619762cfee7c50a25f179b53887501d3aa2cb6ae0f03ebe8cd255","ssdeep":"192:LGDIyaHn9bNsRYcYGFGBX0bLxnzAzwhNMFonTOk/S6AXIKIfTReZIZZA:lyO95uzYq/bVUMVnKk/xk8seZZA","tlshash":"381294d9b59df47c40275a68502fba3a73367d05394c4868b553c4ee6878cceb823b2e","first_seen":"2024-09-27T15:26:46Z","last_seen":"2024-10-11T09:17:14.527782Z","times_seen":406,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/O16NddbN4ifv-hUemlqj_/_buildManifest.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.730Z","timestamp":1728442507730,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/O16NddbN4ifv-hUemlqj_/_buildManifest.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-524\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BEdQ1iuykeePfOEH7D9np%2BRNKtyh%2BdQQBus08QifGyc4A%2F1dv8L1aInrfsDZjQrnv0J2EsLTI1CBPXLg8AwyGK9FMM6JasQC6WQSM3lNIgav0vi9bIVgacgPZsFlqCI%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708f8cd712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1316,"size_decoded":1316,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1394), with no line terminators","md5":"6475f08b2ba01c6651f91dbafea137e0","sha1":"ea3f8550bac3bfc3efb0b48f730a2747680f4151","sha256":"054a1c59772a3555a0a04437e30d06583750301336190547375ebd29d197a8c7","sha512":"2e093ca38f1312177a1984e4a80682d0a24914388e5085ced4a77d8827deb2ca96802790c0003eef7480442718e246a0c99b2c74cdbc1c1c41618b472f5be84f","ssdeep":"","tlshash":"a121994ba40cf41228e2cd5a617b5f338c889a37157d506ab28def3d271196b1f99c92","first_seen":"2024-10-08T14:32:50Z","last_seen":"2024-10-11T08:50:36.428897Z","times_seen":31,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/4683.098c066925fd7aaa.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.893Z","timestamp":1728442507893,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/4683.098c066925fd7aaa.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-1814\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Gs0jTXj6XrBV%2BSBtX1uVAUI88JT2apYamnea1lZctszCnoDkaisOJ2zVURNMISvdLKzNcCUoiy8RjIKij3D%2B41qM2pKqvaJhE7wwtA%2FICuEdUVAoboOqSYOwG%2FL7pcUT\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb170a4b28712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6164,"size_decoded":6164,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6278), with no line terminators","md5":"405f16c8ae3dc62e0dc4ba80968ab99f","sha1":"fd87eb23153c878d42bafd43dfb4e7afc9879702","sha256":"fa6cde1b81f2a8fb3fa39a4eed60b76df3ffb7971ae043731c39588c5b86b173","sha512":"adc9fc2fd90cd171407da1e35685e20de9454404be3b137590162f12b679cf77ecbedef4208d7e35be00fd40d2287b14881cb8b95163ce8dc4bacc2cc3688065","ssdeep":"192:LH6isbxPpFpNpb7K1p1pa3p1pp7pYpb9zQM9gMvZZw:Tm1pFpNpb7K1p1pa3p1p1pYpb95jZZw","tlshash":"7fd185c1b6ebb8699172065c106f3274f326dd0272cc9919ba53d56578acc17b833b3e","first_seen":"2024-09-12T15:50:29Z","last_seen":"2024-10-11T09:15:36.507162Z","times_seen":428,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nadrigrir.com/_next/static/chunks/6825.7474e3129a003d69.js","fqdn":"nadrigrir.com","domain":"nadrigrir.com","tld":"com"},"ip":{"addr":"104.21.30.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nadrigrir.com/finance-survey.html?z=7339789\u0026offer_id=14162\u0026var=\u0026ymid=VA9jHCcGsixobdj8maZsUz\u0026ymid=VA9jHCcGsixobdj8maZsUz","date":"2024-10-09T02:55:07.700Z","timestamp":1728442507700,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nadrigrir.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Sep 2024 15:05:41 GMT","end":"Sun, 01 Dec 2024 15:05:40 GMT"},"fingerprint":{"sha1":"06:9E:C6:BC:A9:66:C4:87:FB:E7:81:E4:2E:BE:AD:69:A4:96:56:C0","sha256":"9F:81:D5:8A:27:58:55:72:E8:48:01:ED:CA:20:11:78:0A:02:09:30:55:44:4E:7E:74:AD:B9:1D:9C:1E:D6:E8"}}},"request":{"raw":"GET /_next/static/chunks/6825.7474e3129a003d69.js HTTP/1.1\r\nHost: nadrigrir.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 09 Oct 2024 02:55:07 GMT\r\ncontent-type: application/javascript\r\ncf-bgj: minify\r\netag: W/\"670516f2-41ce\"\r\nlast-modified: Tue, 08 Oct 2024 11:26:42 GMT\r\nstrict-transport-security: max-age=1\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\ncache-control: max-age=1800\r\ncf-cache-status: HIT\r\nage: 2659\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=mBl%2Ff35%2BJgr4BISascHDrKlrQV85%2FthYX2H18a2KcdbSGCRb5M2AlmriY6VgB3xdpO6tS4pk1CQs6ZCV4U8oYTSl%2F9daYakO8sydzMwzIOhz0JVAGwD8q4%2FewhzKpTWd\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8cfb1708e8b2712e-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16846,"size_decoded":16846,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (16846), with no line terminators","md5":"cf93b44816f05ccfdda22b497df158c1","sha1":"e687a983b354871a6b8dcef6be2aa3852bbbce54","sha256":"547f3765a0f4ce283af15acc7a7ccd4558ab4b5b2b07d8d4a985e1df64365919","sha512":"4c779894fc4bf93dee8f2bd0cd07aa9b74ff1c3e1cfe8c868a6e8c7564f876811a31549e400aaf1b6fb85813af280a12aca1a044a785b51d425126943741f3b2","ssdeep":"192:x7E3S2dHgnWPyUHAGQ6DeXJLZfFMqxRlyK9dJX1OpMwx2JxeR5tFmPGUWonX6fMZ:REi3yMXJIqxPkx2c5t0uUWonX6CLoE","tlshash":"3b7285c9fac3b45823a76db852ff510a533e3d8115ac5414b50bf0c627a5acce223e9e","first_seen":"2024-10-02T12:00:56Z","last_seen":"2024-10-11T09:16:33.603529Z","times_seen":185,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-08","alert":"Sinkholed","trigger":"nadrigrir.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}