{"report_id":"48c3d303-f07a-42b4-9f6f-3df281d38c0e","version":0,"status":"done","tags":[],"date":"2026-06-28T15:13:33Z","url":{"schema":"https","addr":"derlwynltd.com/","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"derlwynltd.com/","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"title":"Ty Derlwyn Limited | Business Support Services Wales","dom":{"size":45195,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (44247)","md5":"6ea1816b39c6b4118eea73b5342a003b","sha1":"7db7645f79df3a7aeec2d8330f4a96badd3140df","sha256":"7a861e6e5744f43ad8ef282c2f5774dc9700efff33e57271cf7ae297b5fdeab3","sha512":"19192f316d1500bde58b12eccc1811a9bfed512b975bddcb910fe0e97da1cd4d4f712a3f6daa3c35391b08f531cb651272e4aaee87a06eb35a6c578ae0fd9c07","ssdeep":"768:tiQqa2ygdaM5ldJQc7daM5ldJQc7daM5ldJQc7daM5ldJQckIdDkvfONcqxLLK3k:C5DsfONo0","tlshash":"8d135421b485983e52b38bd1f1f37a322479a2cde6075425fa6c36d003c2db9d7635da","dom_hash":"domhashedea63b6683894fe963c7a1f0302713e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"derlwynltd.com/","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T15:13:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":11548,"sent_data":610,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"derlwynltd.com","ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2026-06-16","domain_rank":0,"first_seen":"2026-06-28T15:13:34.239247Z","last_seen":"2026-06-28T15:13:34.239247Z","alert_count":8,"request_count":8,"received_data":1211625,"sent_data":3949,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":6,"received_data":231176,"sent_data":3434,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"derlwynltd.com/assets/index-yXu08YbS.js","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"808c62185d6634ab826efdde673d8dc5","sha1":"209c1a02cef74797d8484fa2f66eca584224bf1e","sha256":"0443fc5b0102b7cce1ca2f5d14935cc2f8dc8abb5620a7c77e2940e9613f2400","sha512":"253ee7549c887e5c90a8886c61f238091af962cac0e7faf57d028d4226e2ac5d7d44c5dea2fe6bb39a73168efe35fbdf3aec386f2563f18f21984bcacd39aaa8","ssdeep":"6144:PXOa4VL9U7kBvHPUiW3B94ND7D9mzBS19HL8v98L2:P+WLR9XzC9HLi8y","tlshash":"77a46cec719939279ab346e0147f1407723a1aaa940c4820f8a8f9f8277456d5277fff","size":458904,"data":"","first_seen":"2026-06-28T14:35:55.105083Z","last_seen":"2026-06-28T15:13:37.660678Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"derlwynltd.com/abergavenny-town.jpg","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.574Z","timestamp":1782659589574,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /abergavenny-town.jpg HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:02 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 189879\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":189879,"size_decoded":190124,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1344x768, components 3","md5":"4d7351171b8ca1b7b8689194d629a72b","sha1":"cd3910932dcd99123eff8d198fab8d7070d12e24","sha256":"713ac6318e2dd82fbcf88dd4df567d49d0186eeb5e0231cfc9de21a2a74a8bab","sha512":"3dfa6b4d4d9504ea3469f5a72de64289cbbc3d6ee02bf62269e2b3b5795bc7b7bc120d1c7300bc0803cca8ec31f09342e98f9ffc991951be5bd35a361b10eef6","ssdeep":"3072:30yZhpN9wGK75XyCDCPPtWV015jnnJEbzLaKNncZQ:30yZhpN9q5XkPVjnibzLNci","tlshash":"690412ad316924f2bb70e2716edc88abbd337898e5ec34fd181850f1ca41f94e269517","first_seen":"2026-06-28T14:35:55.118228Z","last_seen":"2026-06-28T15:13:37.654205Z","times_seen":2,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":39,"send":0,"wait":38,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.614Z","timestamp":1782659589614,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 04:37:42 GMT\r\nexpires: Fri, 25 Jun 2027 04:37:42 GMT\r\ncache-control: public, max-age=31536000\r\nage: 297327\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":36932,"size_decoded":37745,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-06-29T14:34:14.480709Z","times_seen":28255,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":45,"send":0,"wait":23,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/crimsonpro/v28/q5uDsoa5M_tv7IihmnkabARboYE.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.616Z","timestamp":1782659589616,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/crimsonpro/v28/q5uDsoa5M_tv7IihmnkabARboYE.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48200\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 28 Jun 2026 12:10:34 GMT\r\nexpires: Mon, 28 Jun 2027 12:10:34 GMT\r\ncache-control: public, max-age=31536000\r\nage: 10955\r\nlast-modified: Wed, 10 Sep 2025 17:04:05 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48200,"size_decoded":49012,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48200, version 1.0","md5":"de9c1d8bbc46453f436992a92d19e308","sha1":"a62fce6278f8a06dbd16d706fff2d274d7706041","sha256":"20ce4189b9e41b3439a2a36dd63deff44b6d91182532202cb96b65521b4a3c23","sha512":"d28ff369a07b81467cf76a57d2502df36ec4e9ca93436eb42a46b143380ab6f5af8027fc6a983b524f3c9ed964352f56fe076a04748365e18604ac4caa2f8204","ssdeep":"768:aU9ybgTkcwloB4H3hEObgFfWe2axJ5MVpa4N9fhqX62voGpAfQsm3mt44ou5i0X:aU9ybgTbwloBqNDFa6ba4N9fTu0gwR0G","tlshash":"e323f16e800f39eecd806ed5e3d9e6dcbdb605c17a3a2c55612fd70842525708527be2","first_seen":"2025-09-16T07:04:25.689827Z","last_seen":"2026-06-29T01:32:45.992065Z","times_seen":994,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":61,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/hero-welsh-countryside.jpg","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.567Z","timestamp":1782659589567,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /hero-welsh-countryside.jpg HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:03 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 122223\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":122223,"size_decoded":122468,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1344x768, components 3","md5":"1c9d561a2be8e18cb640c81a98b91f1a","sha1":"affb085c84cb15e87c7261591edb913047b0c7b5","sha256":"47aa95389241a108a37f04be668781080eaf3b87b8f257ac2138a6f0cc634127","sha512":"8d3d1197d0df58e7e52ff44a969e9e55cf5aa5c9eab45aa5c92544b1b9d3acf9fef0175909a662ff19ea8785d1047279497df7f60b070b5b3d78035a01e6625d","ssdeep":"3072:BQZzdTUJ24lGS9GsKyP+sz44ZpZA570Gt7t2zdbTRf20:BizGndtP+szvZpZQT7tadXP","tlshash":"98c3120a1d3127628e432eafb6d48254f7d95c0e3447b2bfa0fea1c985462f641de6cd","first_seen":"2026-06-28T14:35:55.114936Z","last_seen":"2026-06-28T15:13:37.656402Z","times_seen":2,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.621Z","timestamp":1782659589621,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 04:37:42 GMT\r\nexpires: Fri, 25 Jun 2027 04:37:42 GMT\r\ncache-control: public, max-age=31536000\r\nage: 297327\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":36932,"size_decoded":37745,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-06-29T14:34:14.480709Z","times_seen":28255,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":42,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T15:13:08.632Z","timestamp":1782659588632,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:08 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:04 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 984\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":984,"size_decoded":1226,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"d76f73b587c2a6af1d86f8d813a67e20","sha1":"8cfb58ebb278dbd8f0a6c60eb030ac5a4006c837","sha256":"d69c50d6906be4f7405ef637e144e7e929fbaa730442a340ef62bc04dfe3eeba","sha512":"14c4bee84b1428eb045dfe0cc120b82e05b6d5fb49bbdb8ec1d261c381d247ac347d342c11c245224869f5a02d7f023775452d263328c91c47c60540b6c4220c","ssdeep":"","tlshash":"731110e240a48914535043e17c91b926be9b934f47ca6c48f5bb60f9cfc47c1c9af8b9","first_seen":"2026-06-28T14:35:55.098869Z","last_seen":"2026-06-28T15:13:37.657144Z","times_seen":2,"resource_available":true,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":47,"connect":22,"send":0,"wait":22,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Crimson+Pro:ital,wght@0,400;0,500;0,600;0,700;1,400\u0026family=DM+Sans:ital,wght@0,400;0,500;0,600;0,700;1,400\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.306Z","timestamp":1782659589306,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:10 GMT","end":"Mon, 31 Aug 2026 08:38:09 GMT"},"fingerprint":{"sha1":"8A:2F:DC:6F:C0:09:07:D3:E5:9C:B7:EE:C2:C4:63:DC:59:36:B5:1B","sha256":"64:7C:E4:55:AB:5C:58:7E:89:F1:19:3B:95:DB:7B:4B:E6:75:42:2C:0C:51:2E:66:85:F5:BB:51:58:08:39:19"}}},"request":{"raw":"GET /css2?family=Crimson+Pro:ital,wght@0,400;0,500;0,600;0,700;1,400\u0026family=DM+Sans:ital,wght@0,400;0,500;0,600;0,700;1,400\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 28 Jun 2026 15:13:09 GMT\r\ndate: Sun, 28 Jun 2026 15:13:09 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10864,"size_decoded":1450,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"3ae427762e43ebe2e6a59ccf7ad3b1ed","sha1":"7764accfde0c9247b62ecdc82fdc587bea418e5b","sha256":"35a132f4346e4ee5b278658fe43a2884bdba8f8f968ea5ebc6a1ee8f9423c65c","sha512":"9f9da8f92a09e4c2cd18b14644c34b06e6cd7a6b55831b7bfd96ad79fbbdbc3bd87807e2993f6e44c1721072e794b264b5ea20c902bcc1bf1f755243cdf28262","ssdeep":"192:cUO8fO8SRO83M8b8U/8PT808U48PW898UR8P18+8Ui8xOCVOHwD+rw8+Owl+NwGo:cUnfnGn3JQJPIRIPv+vP2X2xPuis+3","tlshash":"1022fc81043ba500db875dc663ce7e32ee5ea1507444d878affe18ccad6ad2a5326b1d","first_seen":"2026-06-28T14:35:55.102239Z","last_seen":"2026-06-28T15:13:37.658136Z","times_seen":2,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":15,"send":0,"wait":35,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/assets/index-PFOhyyZL.css","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.310Z","timestamp":1782659589310,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /assets/index-PFOhyyZL.css HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:04 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 89969\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":89969,"size_decoded":90212,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"6c689e1d037c18b01f017cc47b835382","sha1":"1818ccb9ea45d1c35f6f9f30a11a0d443293aefa","sha256":"5b208c5985e3557ac7139549bd015eced38daf9c75dc27659f5a13a532d4c078","sha512":"3b410ae29e5681f925cc6547383f8d561df2ec06886a8f092217c87e0e194aeabd40ff2a49773acdc49f2b8ade93066ef5e8d946a443eade283f250d057a9463","ssdeep":"1536:9hgeIxkT2OBs2iGpeGKijmBjcmOPVQr5yDlpFAd9:9hgeIxkT2iiGpeGKijmlcmOPVQr5IpFA","tlshash":"3b93851a791d613e3c2780f9c3ccb9ec911ab0c0de3e05f9be9a52215ac27f569b7518","first_seen":"2026-06-28T14:35:55.12003Z","last_seen":"2026-06-28T15:13:37.65887Z","times_seen":2,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":22,"send":0,"wait":23,"receive":67,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.623Z","timestamp":1782659589623,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 04:37:42 GMT\r\nexpires: Fri, 25 Jun 2027 04:37:42 GMT\r\ncache-control: public, max-age=31536000\r\nage: 297327\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":36932,"size_decoded":37745,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-06-29T14:34:14.480709Z","times_seen":28255,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":27,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/crimsonpro/v28/q5uSsoa5M_tv7IihmnkabAReu49Y_Bo-HVKMBi6Ue6s8fNE.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.627Z","timestamp":1782659589627,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/crimsonpro/v28/q5uSsoa5M_tv7IihmnkabAReu49Y_Bo-HVKMBi6Ue6s8fNE.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 19104\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 11:24:16 GMT\r\nexpires: Fri, 25 Jun 2027 11:24:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 17:01:19 GMT\r\ncontent-type: font/woff2\r\nage: 272933\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":19104,"size_decoded":19917,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 19104, version 1.0","md5":"61e7977b89af43f920d63b4c9c218ec8","sha1":"42539f3feb7001e52624f19488a5dac492ee2739","sha256":"1fac78d865686e4e1236e5e599f02c8afe05dd59d04344553cc45a160d53ac63","sha512":"ad82ad2d4a94e99321330cbe94bd09818fc4f92de67e65051239e59b3e33176774dad05a06cb2e8c832ef22ff5c8037468e8c0f7d6468ade5001d04050578f7f","ssdeep":"384:p9L2BEJ8xhsUTpezyy+w6avoKJUEuXWDN/ygMks5upYw4ViUw8:3LAxhChT3vbjN/+YGwgB","tlshash":"a482e11a8dc6d165f4f370fad9374117388fb334536389c597d02feb8614b889863849","first_seen":"2025-09-14T11:07:50.685404Z","last_seen":"2026-06-29T07:06:20.565753Z","times_seen":47,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":58,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/assets/index-yXu08YbS.js","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.309Z","timestamp":1782659589309,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /assets/index-yXu08YbS.js HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:04 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 458904\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":458904,"size_decoded":459154,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (42665)","md5":"808c62185d6634ab826efdde673d8dc5","sha1":"209c1a02cef74797d8484fa2f66eca584224bf1e","sha256":"0443fc5b0102b7cce1ca2f5d14935cc2f8dc8abb5620a7c77e2940e9613f2400","sha512":"253ee7549c887e5c90a8886c61f238091af962cac0e7faf57d028d4226e2ac5d7d44c5dea2fe6bb39a73168efe35fbdf3aec386f2563f18f21984bcacd39aaa8","ssdeep":"6144:PXOa4VL9U7kBvHPUiW3B94ND7D9mzBS19HL8v98L2:P+WLR9XzC9HLi8y","tlshash":"77a46cec719939279ab346e0147f1407723a1aaa940c4820f8a8f9f8277456d5277fff","first_seen":"2026-06-28T14:35:55.105083Z","last_seen":"2026-06-28T15:13:37.660678Z","times_seen":2,"resource_available":true,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":112,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/workspace-home.jpg","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.569Z","timestamp":1782659589569,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /workspace-home.jpg HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:03 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 144067\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":144067,"size_decoded":144312,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1344x768, components 3","md5":"c1343a4fa20c78a19f2ac14394000954","sha1":"5cd2e3b6af161ff35963015428f28423033fd594","sha256":"0fb0de719b3397c0bd14fcf75b61924478da77d37a46caabc45a45fa43ac62fb","sha512":"b4c365b2a04272ae63e3b901b34c607f36eaf37b8949d1f29fb94a100b5bd34bf0674e664f5bf5f26f43565bec1c01bad027518d0f23aaa937aab184b8182c71","ssdeep":"3072:wxR90z5hzYQ3Mfi9XSwU4fGOfUrUh6SEI24KzD1V9+7J/By:wnaz5hzvL/7f6re6f4K/r9AJ/Y","tlshash":"b0e312c47385115316f7c16c92605b7be2b072223ef17fa0dc7af26550ac999a3be4b2","first_seen":"2026-06-28T14:35:55.116636Z","last_seen":"2026-06-28T15:13:37.661406Z","times_seen":2,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":40,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/crimsonpro/v28/q5uDsoa5M_tv7IihmnkabARboYE.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.629Z","timestamp":1782659589629,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/crimsonpro/v28/q5uDsoa5M_tv7IihmnkabARboYE.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://derlwynltd.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48200\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 28 Jun 2026 12:10:34 GMT\r\nexpires: Mon, 28 Jun 2027 12:10:34 GMT\r\ncache-control: public, max-age=31536000\r\nage: 10955\r\nlast-modified: Wed, 10 Sep 2025 17:04:05 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48200,"size_decoded":49012,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48200, version 1.0","md5":"de9c1d8bbc46453f436992a92d19e308","sha1":"a62fce6278f8a06dbd16d706fff2d274d7706041","sha256":"20ce4189b9e41b3439a2a36dd63deff44b6d91182532202cb96b65521b4a3c23","sha512":"d28ff369a07b81467cf76a57d2502df36ec4e9ca93436eb42a46b143380ab6f5af8027fc6a983b524f3c9ed964352f56fe076a04748365e18604ac4caa2f8204","ssdeep":"768:aU9ybgTkcwloB4H3hEObgFfWe2axJ5MVpa4N9fhqX62voGpAfQsm3mt44ou5i0X:aU9ybgTbwloBqNDFa6ba4N9fTu0gwR0G","tlshash":"e323f16e800f39eecd806ed5e3d9e6dcbdb605c17a3a2c55612fd70842525708527be2","first_seen":"2025-09-16T07:04:25.689827Z","last_seen":"2026-06-29T01:32:45.992065Z","times_seen":994,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":53,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/favicon.ico","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.778Z","timestamp":1782659589778,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":555,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-29T13:46:02.621019Z","times_seen":42533,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"derlwynltd.com/derlwyn-tree.jpg","fqdn":"derlwynltd.com","domain":"derlwynltd.com","tld":"com"},"ip":{"addr":"178.238.236.172","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://derlwynltd.com/","date":"2026-06-28T15:13:09.572Z","timestamp":1782659589572,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.stantonholdingltd.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 18 Jun 2026 14:01:00 GMT","end":"Wed, 16 Sep 2026 14:00:59 GMT"},"fingerprint":{"sha1":"FB:5C:42:0E:2A:65:5C:63:4A:FF:71:8F:48:95:FD:0E:05:06:DE:39","sha256":"66:07:C5:C2:BE:66:C2:A8:0F:0D:73:63:5A:E1:3A:FB:C8:10:0C:4B:1B:21:CC:DF:6B:68:4A:97:79:D7:D9:6A"}}},"request":{"raw":"GET /derlwyn-tree.jpg HTTP/1.1\r\nHost: derlwynltd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://derlwynltd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 28 Jun 2026 15:13:09 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 16 Jun 2026 17:09:03 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 203328\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":203328,"size_decoded":203574,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1184x864, components 3","md5":"3debb17e5c2bb62e0c68337fe30ecb8b","sha1":"37a4abdb7cc1b5d0a840a3f0872d4da380eb03be","sha256":"785abbecda5567939778b31d59c3a1738d9be9c169407e0d30371552e4ac1c05","sha512":"9b0a3901905456aa4a5dcef3e03b6fed2b185472e16f49aac4f48e03901dbfffc45ae78b34427748ab0706b7d0200bc6092f22c1b32c7f75271c9f01b2ae4597","ssdeep":"6144:n6eXjPDcg00vjVNm7MgQ8GYXSfIK/rIbNeFdz:n6eXrfzJAoB8GYcxzIbux","tlshash":"1014233396b3ac2c3f4bd8147663ab2d4a9a248211507cda7b3a1821d273dde46f3d94","first_seen":"2026-06-28T14:35:55.107556Z","last_seen":"2026-06-28T15:13:37.662605Z","times_seen":2,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":39,"send":0,"wait":29,"receive":92,"ssl":41},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"derlwynltd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}