{"report_id":"42844bd8-8fa7-4dbc-8bbb-c9d7b21d59a8","version":6,"status":"done","tags":[],"date":"2025-08-08T10:15:02Z","url":{"schema":"http","addr":"streamlord.za.com/","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"streamlord.za.com/","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"title":"Streamlord - Watch FREE Online Movies \u0026 Series in HD Quality"},"submit":{"url":{"schema":"http","addr":"streamlord.za.com/","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-12T10:15:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"streamlord.za.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-06T15:10:32.619142Z","alert_count":0,"request_count":3,"received_data":113782,"sent_data":1635,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-08-06T15:25:40.423241Z","alert_count":0,"request_count":2,"received_data":217743,"sent_data":1054,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-06T15:14:12.503348Z","alert_count":0,"request_count":1,"received_data":5122,"sent_data":514,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"streamlord.za.com","ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-08-05","domain_rank":0,"first_seen":"2025-08-08T10:15:03.020411Z","last_seen":"2025-08-08T10:15:03.020411Z","alert_count":4,"request_count":4,"received_data":3265736,"sent_data":1815,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"streamlord.za.com/","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fae7b98ebeb03485f607b430d8ad114b","sha1":"06b44ff7b8dab2c99ebbac19c3ec884d608b154e","sha256":"89ca29fb71df4b099dec8b6840a8ece4e463ba11656184188865b4aeb12ac6c1","sha512":"29752983b1cc00a9b65dbb1cd760ea47f87a842ff0aa3f4e41037ff2eef8899d14f5da27acc6bd88bbe91ffb725dc6011af6b973fbc609450e2f7412fd3c17a8","ssdeep":"","tlshash":"a3f0c26db9e629720333b125d71fb209367380475004ec0a3e5d8ac10fe291a04ade87","size":538,"data":"","first_seen":"2025-08-08T10:15:06.10751Z","last_seen":"2026-02-23T11:28:08.027299Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v56/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/oswald/v56/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://streamlord.za.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 12652\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Aug 2025 10:24:12 GMT\r\nexpires: Fri, 07 Aug 2026 10:24:12 GMT\r\ncache-control: public, max-age=31536000\r\nage: 85828\r\nlast-modified: Wed, 28 May 2025 17:24:13 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12652,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 12652, version 1.0","md5":"ebf20fdd07d02ef86d4b3bcf49e7c314","sha1":"fb5c6919621f7bb270a6f5a4918f9cf5f83c8897","sha256":"437665a811748f9bb97603fedca00b007eae14745b283042b624b38682d33437","sha512":"5e293bd3ee8fe84804e4f4f2d0472397f3d1799bcc2b025f979d47728c061dbb0721fdef82f3c690b5a3b36f20c0c5407551d2432d0afab2afe8d453149f436d","ssdeep":"192:hSFjwo4TMLfbj7XJAhA3+iB8AW7NaVEHZbII+PaEuwEnB7fvGHwodnj2/cS:86o26fbjDJ2U8AwNe2ZbIIouwGBbQvkV","tlshash":"bb42cf3e498bf8cde39d0611fe51d1929ec63ba70316aa8d00c54db7e9a5fde48102da","first_seen":"2025-06-01T23:42:43.713909Z","last_seen":"2026-04-04T09:15:29.573713Z","times_seen":724,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":258,"dns":1,"connect":7,"send":0,"wait":9,"receive":1,"ssl":250},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.11/font/bootstrap-icons.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.11/font/bootstrap-icons.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://streamlord.za.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 1.11.4\r\nx-jsd-version-type: version\r\netag: W/\"14f73-RP7OleCX4TvGi8azwSbZfoeJU+0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\nage: 31706\r\nx-served-by: cache-fra-etou8220155-FRA, cache-hel1410022-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 13383\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85875,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65354)","md5":"11e1bb8650bb323688d0e48a791c5f13","sha1":"44fece95e097e13bc68bc6b3c126d97e878953ed","sha256":"7c7d920afe96359df81575f8902ea58dab45a45ab238d1368e48c145ed817346","sha512":"090b8ee270ec49fdc40e3c2eccd0b6d5383e20dee54bf6728f4cfbd09fe35787f898cc03680749a24f5efa9ea889dd88d6f6ea6a09c7ccdee03f6dec36098c27","ssdeep":"768:EPcr8JUkZrpULKt4bDcf3oQpeqfZs0BWeUz5+XIHx5qkgwTz:grpEKt4moUeqfZbc5+XIHZz","tlshash":"c583fbe8e58d05e8f372c48fbf42675e31aafa3cd5811c68f14a111d5ac26650ac7fb8","first_seen":"2025-05-09T12:47:35.418931Z","last_seen":"2026-04-04T01:48:19.973854Z","times_seen":485,"resource_available":false,"data":null}},"time_used":167,"timings":{"blocked":66,"dns":4,"connect":26,"send":0,"wait":27,"receive":4,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Oswald:wght@700\u0026family=Work+Sans:ital,wght@0,100..900;1,100..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.224Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css2?family=Oswald:wght@700\u0026family=Work+Sans:ital,wght@0,100..900;1,100..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://streamlord.za.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 08 Aug 2025 10:14:40 GMT\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4436,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"cdc29c2b54cb4cb650ef4ac38da67c6a","sha1":"2d13c5effcfa7e28f79b06db8b0924773a1d3bdb","sha256":"419293e85bbeaf22b8bcae9a22a1bb39bf88dde2f46655fdd751057c0f0d8c8c","sha512":"b32edf9a64302ca147acdcfcd8700a168d61cadf21dda6217caae42881e2764b408de81589fb00ba8863944637bda12856dfa555dee7f28e1b6e4498d42b5b3f","ssdeep":"96:wOpa0gOpagFZOfOpakOpaxJc+ujOpaSNDBYg4axYg4avJc+u1Yg4aPNDBO4amO4h:i0SNBuBs+my2yrTypytqNn","tlshash":"f9911f91082a9104eb471cd237df3e32ae5ea2553044c5786ffe1c98ecafd255369b0c","first_seen":"2025-06-10T00:35:14.73715Z","last_seen":"2025-09-08T18:55:14.286849Z","times_seen":35,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":152,"dns":4,"connect":7,"send":0,"wait":19,"receive":0,"ssl":142},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/worksans/v23/QGYsz_wNahGAdqQ43Rh_fKDp.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/worksans/v23/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://streamlord.za.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 50456\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Aug 2025 10:06:44 GMT\r\nexpires: Fri, 07 Aug 2026 10:06:44 GMT\r\ncache-control: public, max-age=31536000\r\nage: 86876\r\nlast-modified: Thu, 29 May 2025 23:33:05 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":50456,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 50456, version 1.0","md5":"a8b15c4a3859b33ed95739c0b71f3155","sha1":"52354496e9829941995156c933a14b7679268244","sha256":"5c2315b50f8da421a9dd52ec82e78aeca1c267c819c3faace1b7b5566954b7f1","sha512":"29200a4b8f2fea1fbdaf04ef3693f5fe55767fd3a08932724c870da88e06618b8e1bd0c0e1e94f0f0c79da287ec4ff6d0b9a4b73918ef005cc1a7f5547455e57","ssdeep":"1536:y+vQtq6fkBXwXQxSM4BZMq7rsj/xzJWZk:yDqok0NLBZM7A2","tlshash":"d13302b2a63179eb5593206d3ee74b2ce02f76263115d0419a4d9b174af379ccdf4805","first_seen":"2025-06-02T18:15:48.215737Z","last_seen":"2026-04-03T05:21:50.185032Z","times_seen":3742,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":251,"dns":1,"connect":7,"send":0,"wait":8,"receive":11,"ssl":245},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.11/font/fonts/bootstrap-icons.woff2?76330468ac064ad9a96c3f28eba72c8d","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.11/font/fonts/bootstrap-icons.woff2?76330468ac064ad9a96c3f28eba72c8d HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://streamlord.za.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 130400\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: font/woff2\r\nx-jsd-version: 1.11.4\r\nx-jsd-version-type: version\r\netag: W/\"1fd60-DKOphX8/U4CBFsmYyAUbnKrqnzU\"\r\naccept-ranges: bytes\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\nage: 27906\r\nx-served-by: cache-fra-etou8220124-FRA, cache-hel1410034-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":130400,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 130400, version 1.0","md5":"d1b54731edffbaead4f2dc751abe1ad9","sha1":"0ca3a9857f3f53808116c998c8051b9caaea9f35","sha256":"7830d597879a5671c747c50034e865631166eb2fd0980b1abfaf1dffcdc59561","sha512":"c9802b60e12eeb6216b427beae590c6b556332534aa121cb199ab6d4aa4d5fc5d8cad9571e15c3e488b1e90bc742799970c8b9b0849937c3c002970cf0248cda","ssdeep":"3072:B6KnpxWi4uwbFc3zgJCRj17Fg+J4R2XSyzkNUWBTVzZipV8:NzWa6y0JY7TQYS3DFpZcV8","tlshash":"9ad312b50c7605a06f573455f2ebf18fcac7096903edc6ad57baa011bf873092ba704a","first_seen":"2025-05-04T13:12:00.402773Z","last_seen":"2026-04-04T01:48:19.964941Z","times_seen":487,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":94,"dns":4,"connect":0,"send":0,"wait":26,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/worksans/v23/QGYqz_wNahGAdqQ43Rh_eZDrv_0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/worksans/v23/QGYqz_wNahGAdqQ43Rh_eZDrv_0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://streamlord.za.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48172\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Aug 2025 09:59:45 GMT\r\nexpires: Fri, 07 Aug 2026 09:59:45 GMT\r\ncache-control: public, max-age=31536000\r\nage: 87295\r\nlast-modified: Thu, 29 May 2025 23:38:46 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48172,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48172, version 1.0","md5":"c285ff9337531c8844a85a72ec8956d2","sha1":"dd64ed9586fea40aaa156fec6305231b0c5c524d","sha256":"13c7094295f54425e2f21aeadcbe7f240bd0b08491c3aae2e506787b647084f1","sha512":"9a7e39aec6213faf18b2fcedeb719ffbad70f0940e850543dcc8812f0b4a652a5ad5c8498bbad008dd1bc5626646bdba7419cbc121d0238b53f4752b42aa6bb4","ssdeep":"768:Vg9xaUbLS6s8vOvrkLMIaQIe0j5bSCFfT2Is8nnMsJnNfuLutgVeBYmml0CJUUjQ:V/L6stvAFaQh091fT2ponMsbcu+VMmlG","tlshash":"2123f256dd0172bccdb8cb79090d237b13aa0026145e89752c6bd2329bb77af50f7635","first_seen":"2025-06-04T22:40:43.952274Z","last_seen":"2026-04-02T01:16:44.593208Z","times_seen":744,"resource_available":false,"data":null}},"time_used":647,"timings":{"blocked":317,"dns":1,"connect":24,"send":0,"wait":8,"receive":4,"ssl":240},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamlord.za.com/img/icon.png","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"streamlord.za.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 08 Aug 2025 07:22:25 GMT","end":"Thu, 06 Nov 2025 08:22:19 GMT"},"fingerprint":{"sha1":"D4:E5:27:59:27:89:B3:8B:D2:E1:40:F5:9E:4D:88:6C:F1:7D:17:1C","sha256":"1B:09:EF:04:4F:BE:41:36:66:DD:76:5D:18:E2:1F:63:B3:33:F5:E4:26:40:C6:F1:0C:18:E3:3E:E4:FD:50:BD"}}},"request":{"raw":"GET /img/icon.png HTTP/1.1\r\nHost: streamlord.za.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://streamlord.za.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\ncontent-type: image/png\r\ncontent-length: 2724\r\ncf-cache-status: MISS\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400, must-revalidate\r\netag: \"73d4c9d3f1a23e66e6e030a09077d7c4\"\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=RyRDjEaCRVAq6UVtVqZ9w2eqHsncm1VhrDAtnCHW8S2DM3gLyPeQQqYHFKR9el%2F3NpciqNKEH8OWn%2BMp8pySCuWPy7Iik80ejds9cKtf9UH8FKuhgeAh0%2BRhzqI6X3RNWcb26g%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncf-ray: 96be3f895f7c5688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2724,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 225 x 225, 8-bit colormap, non-interlaced","md5":"cf30df6dba1d398d11efe6d4a2f7e224","sha1":"1c2e02148b6966fb4b9c2d2a676f05ce7af99644","sha256":"59f319bdecbc8fbd19c6d051805694fb5d1de3214a37b2fc6987afeb0590b435","sha512":"a5e5701144475d7480753ffb10e11238d95064b07df650ff56d6c3eac0e19b9d026a76e21005041831275e1d34fe18da731eeaea5a828bc7edfbaf5ea62ecd8d","ssdeep":"","tlshash":"81515bac5acb5c08ae8fdce493060f0e9e7d112a85703c91a3a52579ac733d557943bd","first_seen":"2025-08-08T10:15:06.102866Z","last_seen":"2025-08-08T10:15:06.102866Z","times_seen":1,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":97,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"streamlord.za.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"streamlord.za.com/","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-08T10:14:39.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"streamlord.za.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 08 Aug 2025 07:22:25 GMT","end":"Thu, 06 Nov 2025 08:22:19 GMT"},"fingerprint":{"sha1":"D4:E5:27:59:27:89:B3:8B:D2:E1:40:F5:9E:4D:88:6C:F1:7D:17:1C","sha256":"1B:09:EF:04:4F:BE:41:36:66:DD:76:5D:18:E2:1F:63:B3:33:F5:E4:26:40:C6:F1:0C:18:E3:3E:E4:FD:50:BD"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: streamlord.za.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=0, must-revalidate\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ouCuE%2BCigZPLKfvwyb20CCd9GmAEikDhQvq2eIDPH7MQAw3%2BRJKJFACEut%2BaNrFlLlEgPiETuXyhPdBGPh2xOnCGsCu1fDCiZDShFfINEaGMVVC0TRq%2BkXtDOOxp8xC1CTryrA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96be3f833ef35688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27156,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1479)","md5":"35c44823295f095e7e0e43d7a8743882","sha1":"0df37c1cd4205a427b08afe534ba1ee480a042f5","sha256":"2412d24008fc9c3b2f9500ac3c9b81710e75415ccff2c44d8b08d5bd27fc40d3","sha512":"e4afd613de9beafeebeb1a1a1a824e5f8b9503fdaefee474967c0c0066fc0c0dc49ab5ebcdaa735b53b43dc5c85e89d172f1d0be50d926a36c1888d63a022127","ssdeep":"768:7HxJodOdDkpsKqNHN69lwp/t5j2kPc4G7:z1DkpwNHN6yzC","tlshash":"71c2e806e7f8224e1f224435ae453f5b6e99c06ff30a559138ddc0bd2fc4a4a827779a","first_seen":"2025-08-08T10:15:06.104188Z","last_seen":"2025-08-08T10:15:06.104188Z","times_seen":1,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":82,"dns":57,"connect":1,"send":0,"wait":139,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"streamlord.za.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"streamlord.za.com/img/poster.jpg","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.226Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"streamlord.za.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 08 Aug 2025 07:22:25 GMT","end":"Thu, 06 Nov 2025 08:22:19 GMT"},"fingerprint":{"sha1":"D4:E5:27:59:27:89:B3:8B:D2:E1:40:F5:9E:4D:88:6C:F1:7D:17:1C","sha256":"1B:09:EF:04:4F:BE:41:36:66:DD:76:5D:18:E2:1F:63:B3:33:F5:E4:26:40:C6:F1:0C:18:E3:3E:E4:FD:50:BD"}}},"request":{"raw":"GET /img/poster.jpg HTTP/1.1\r\nHost: streamlord.za.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://streamlord.za.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 3128847\r\ncf-cache-status: MISS\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400, must-revalidate\r\netag: \"cc629265193dca981002696dd17b83c5\"\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zEwKuvF4Plhko4xE4YFSKxUntKEw8vSGZ9NrbqLEhyXxPSz0jp69CDvnRPARJZqBNSqP4glapLLk1htzWenqnT0aRVjmu1ghS9oatSwdkGewtuI4ZAL7z6KyLOgBZuEJakrfWg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncf-ray: 96be3f856a215688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3128847,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 1536 x 1024, 8-bit/color RGB, non-interlaced","md5":"ba1f95f1c808f5aeb513b35bebdf7c45","sha1":"7e88b7f1b2eba6c7823285cbbe42f19259ab5937","sha256":"98dcb65a950ecb58e4de697f97197d98ea5a60467a70e774587143eb9036d1b8","sha512":"d17cf26ecc8b2a070ec41f592ce7726bbf5960149c7367646faaa42b85096bec51e3ad090813eef4560a685aae292b42352019b151affe37e7bf9ab397bdcb7f","ssdeep":"12288:02vHCYkMkDwRU7JqtFH9kALXnezEBG9AH5wZT2HiP1VsBRuBqPx5ouSlh/6f06M8:NkkaNydkAXn9EyA2H2u0+7cOujkyHS","tlshash":"4c2533d21603308ad86ad5bad1bad07ada59b7e46d757c887cfb80c194dd1cc36cbc12","first_seen":"2025-08-08T10:15:06.105678Z","last_seen":"2025-08-08T10:15:06.105678Z","times_seen":1,"resource_available":false,"data":null}},"time_used":496,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":267,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"streamlord.za.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"streamlord.za.com/img/intro.jpg","fqdn":"streamlord.za.com","domain":"streamlord.za.com","tld":"za.com"},"ip":{"addr":"104.21.48.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://streamlord.za.com/","date":"2025-08-08T10:14:40.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"streamlord.za.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 08 Aug 2025 07:22:25 GMT","end":"Thu, 06 Nov 2025 08:22:19 GMT"},"fingerprint":{"sha1":"D4:E5:27:59:27:89:B3:8B:D2:E1:40:F5:9E:4D:88:6C:F1:7D:17:1C","sha256":"1B:09:EF:04:4F:BE:41:36:66:DD:76:5D:18:E2:1F:63:B3:33:F5:E4:26:40:C6:F1:0C:18:E3:3E:E4:FD:50:BD"}}},"request":{"raw":"GET /img/intro.jpg HTTP/1.1\r\nHost: streamlord.za.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://streamlord.za.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 10:14:40 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 103996\r\ncf-cache-status: MISS\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400, must-revalidate\r\netag: \"fa4de3f4ba886bca0deb82b5923534a1\"\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=kxgGec%2BMx7zJWUmcrNvBvdegXI9u1039wfz2JaFsCdaulgF9s1iSdQk76IKQCbJB4HmJnn2UMNFG5Wjil9%2FJKYUrItRQjfyiA9VILKqukhB6DrILirIctcXiITQrhJqKVGlxXQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncf-ray: 96be3f86cc4d5688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":103996,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x1067, components 3","md5":"0ffe19a239e16e7b296a62fcebcb82a1","sha1":"dcf8db5355884f666a8f30d5abc03b88937623b1","sha256":"fbe0a3182961098cc2f002a2281ba5e06e2bbeb9d0563cccdfe938e0324e7b52","sha512":"9153c9270d05ad1b1cf9afe9692038a05b16e939b15965d8cfd778fb2fd7bc9c0118da5f8cfd263972ac28aede403c78fc5ceb5cd5ec863a84e4576f2d6f886f","ssdeep":"1536:umr9V6m8mS0UwUotanOvjcIl/CF294/sbUbxetM+C4KsichKQZd5U4LcUw:BruZEUwUo+8Dl/Cf//xetxiQZDeR","tlshash":"aaa3124bb58ab494ed4a14fa35de0a93670b0452d2c9b7cf6abcf53980e40127e3b534","first_seen":"2024-12-17T13:40:20.259302Z","last_seen":"2026-03-17T17:38:12.837997Z","times_seen":51,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":118,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"streamlord.za.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}