{"report_id":"571ea146-858b-4fb1-9d2a-07c595fe81e6","version":6,"status":"done","tags":[],"date":"2025-12-11T05:55:29Z","url":{"schema":"http","addr":"banghotties.com","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"172.67.154.13","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vnljag.hottzone.com/?s1=206556\u0026s2=1993171\u0026s3=42864\u0026s5=backuser\u0026click_id=mlClick-4ekiMN9t\u0026iexpp=1\u0026j1=1\u0026j9=1\u0026utm_source=1e3a4e532f1c7040\u0026ban=other","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"title":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","dom":{"size":34288,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8964)","md5":"05afb242bc8af33f2de3bba903b1207f","sha1":"60d5345e1252cd18e591aa9847d2282f91600abb","sha256":"017ed95976624cac8b687d2df4e37b8645264770f18a4b3e768e0fee64a904e3","sha512":"8a2e5f8397c1099591fd6191661a15c7d6e8e061f1d41c19cf4110209862de1b866d5f1ed35909b525faf2619102b0320f1b136c1ef901b615bab42220d471d9","ssdeep":"768:Q7sYcppSti/3XqqocDvv2FrJqZdhxVHxURU5vCkAJ3OI:Q7diSdYXyrwxURU5qk6","tlshash":"f2f2d9692ed26636539368bd5e7fe249b231501b4909cc04fe4ca2842f94e3ac7f1bf5","dom_hash":"domhash813e54e855e978207fefe43dacb506ab","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"banghotties.com","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"172.67.154.13","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-15T05:55:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"i.imgur.com","ip":{"addr":"199.232.192.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2009-01-09","domain_rank":3309,"first_seen":"2012-05-21T08:09:36Z","last_seen":"2025-12-08T06:46:16.982799Z","alert_count":0,"request_count":1,"received_data":7771,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"banghotties.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-06-10","domain_rank":0,"first_seen":"2025-12-11T05:55:30.909657Z","last_seen":"2025-12-11T05:55:30.909657Z","alert_count":0,"request_count":2,"received_data":13966,"sent_data":921,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-07T22:17:02.440237Z","alert_count":0,"request_count":2,"received_data":8491,"sent_data":958,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"true-date.eu","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":3946329,"first_seen":"2025-03-28T05:15:02.945316Z","last_seen":"2025-11-23T05:43:18.480948Z","alert_count":15,"request_count":5,"received_data":42391,"sent_data":2682,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"cdn-dimi.akamaized.net","ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2014-03-18","domain_rank":1026219,"first_seen":"2022-07-07T13:18:25Z","last_seen":"2025-12-10T12:33:17.854954Z","alert_count":0,"request_count":10,"received_data":6368616,"sent_data":5081,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"www.gstatic.com","ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":146047,"first_seen":"2012-05-29T15:36:17Z","last_seen":"2025-12-07T22:22:10.335339Z","alert_count":0,"request_count":1,"received_data":41658,"sent_data":446,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn-adef.akamaized.net","ip":{"addr":"23.36.76.194","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2014-03-18","domain_rank":1909875,"first_seen":"2018-02-06T07:56:01Z","last_seen":"2025-12-10T15:46:19.627868Z","alert_count":0,"request_count":1,"received_data":686967,"sent_data":536,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"vnljag.hottzone.com","ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2025-10-13","domain_rank":0,"first_seen":"2025-10-19T21:38:28.723942Z","last_seen":"2025-11-27T17:53:22.900772Z","alert_count":9,"request_count":3,"received_data":70113,"sent_data":2007,"comment":"","tags":null,"fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-07T22:13:56.807982Z","alert_count":0,"request_count":4,"received_data":166535,"sent_data":2182,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ipapi.co","ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":7936,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2025-12-09T05:56:54.773619Z","alert_count":0,"request_count":1,"received_data":2482,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-12-07T22:19:32.033314Z","alert_count":0,"request_count":1,"received_data":20801,"sent_data":457,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"1b66d50ab1a4c15663d9f56d8b96e350","sha1":"506f86d41872b0b269d70ee94c1d79b8bb340aab","sha256":"79c57d53bcdcdefb6ec60110bc3387bc6e30037ee5ca85d48688014d5a5304dd","sha512":"e0a7b55aa8c5e2c991c25a095e8a1886d6626cec408c2d8aed9a85712404115c5929c99c50473e698c097c105331a25ea6962d90aa2f2623e8e8e793c53bc4b4","ssdeep":"","tlshash":"ae413f7a3eeb177029a778b84a6ba64a7d118103470c5c75bacc42030f94f3943f1f52","size":2218,"data":"","first_seen":"2025-12-11T05:55:35.834461Z","last_seen":"2025-12-11T05:55:35.834461Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e139df0030e1a9befc5797bef2a73142","sha1":"4bbd2412da290248c8463fdfbad5fd5c7c8f9b51","sha256":"803a11f2010df19be69231d4e4895e79094904a45454561d59b8ca77f64a0437","sha512":"4e193073e4aba4a50cb5caf048fe855c4d0b66fa972a962816ab8f4a85eb69fd71f456ed27485635dc74d3b27355379b462ff53c1d9c94e42ec07dfcfa970579","ssdeep":"96:JzfyC2ncmPGTg+NuWjP+bKuB7bp+zZgDUeU7o7efKMzMRUe3D:lcnZPkg+YWjwBAzFtiMzM/3D","tlshash":"0481eddc6fe02161bb9a5bbb653750dec11aa8892f4b498fc100345c68b6d0bd3f56f1","size":4147,"data":"","first_seen":"2025-12-11T05:55:35.836881Z","last_seen":"2025-12-11T05:55:35.836881Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a6930622def7b84d1c2c54f320f27f49","sha1":"82640570c5f2f3a184962df1bfaed93ab0aacfff","sha256":"e366d171bd2bdf402c409de5e54cbbbdc2f67215aa1a764a43655273fc4350a7","sha512":"e60f2e4f5196ea2d1dfd61c1df27676ab0f990d1420c46782a9852ba712e0c58ace26586f16fb0c6358b383178a6278392666da37b2087fe93a969e59998b5da","ssdeep":"96:+Hu++qUXcXDH0zPnMtmN5o3vER34v85kDH56YnHN2NuH78OVZTTTBA/6GCfHe9bI:IL+qocTH2nMt05o3vER34v85kDH56Y8i","tlshash":"1fa144105d4891b853a20ffb761bfa93ebba588a3940cd1df310f9607a65522f8ea530","size":4741,"data":"","first_seen":"2025-12-11T05:55:35.838893Z","last_seen":"2025-12-11T05:55:35.838893Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/js/translates.js?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ec06d331bc9038813e31d249de27101","sha1":"5f91a3abc9169c9fc5c198506d8f4cd797ed6f64","sha256":"80733b6bd77a2f3448630e47f1c874b06f3b750991da1cdae31a693f2f926a57","sha512":"9181393f51bd8ecc0b25c5742542afa24d8eda55cc6da6dbed7e0b6d52c91dcb0eacef23f213421d659c648cb9eab7e8bd39ca80475f141d72a66dca8af96de2","ssdeep":"384:fhKPUHN0S5HdJYp3+SnmrgU7/LhsYJvs3q/87+8W+:fhoUSixsmrFjJvKV","tlshash":"09825e374a8b13b5c0b0d6269206b816f469a37f9f55ee27387d24180fb2c3481ef5e8","size":18065,"data":"","first_seen":"2024-12-22T05:28:40.844271Z","last_seen":"2025-12-11T05:55:35.828639Z","times_seen":45,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"moz-extension","addr":"moz-extension://afd36e3c-6115-4459-8b56-4bb832c26172/shims/firebase.js","fqdn":"moz-extension","domain":"moz-extension","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"32d439c9ec8c789e843ae58b6774681c","sha1":"deb2c661dacf46eb3a1eacbba3e430dcf10cc395","sha256":"f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6","sha512":"a465cd7be378feb36cce002dcf2d8bffb2b3c976a1f222afb1842f395cd027f50d5855ba00baa0b0ae2c519cee87201dce5f98ec80a466858acd4835e150543d","ssdeep":"","tlshash":"7141dd19a8746bb31533f4651b5b2402f11a80232929fcf83bac97a41fda45e80b769f","size":2341,"data":"","first_seen":"2023-05-05T23:38:25Z","last_seen":"2026-04-05T08:47:42.32868Z","times_seen":18887,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e2898beab1505a629bf1254fbdf9ed8","sha1":"f17ac22f600d694ae4341c4da46576e3fec0e6f4","sha256":"00d770fea1249b4be3f55a037a9edd20c1fe55bda8ab1e4b6251e56cd74cd05b","sha512":"f4897b323c78eab01815bbdb302ebf286e8c43a0faa2bbeb4504d7329e0a68ebd6a832e71e3d1f4358d5b77937faf77e3411027c0e2d9b812011f88643ee6ca1","ssdeep":"384:mcaM4MIyXfihMRfF0Fg0ABMsVaAkdB2NAXtICZDzU:EM4MIyqqRfF2DKUYYICZDzU","tlshash":"da92d7ccf7e2b062539350b8443f310ba33e2558984c80a8b659e5e66df690f616ff79","size":19780,"data":"","first_seen":"2024-08-13T13:55:42Z","last_seen":"2026-04-05T06:05:37.478128Z","times_seen":3385,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"78a93fba834e51562cc0c1643de4a304","sha1":"2bf106e16eb1752230a8499285b73ae6d8dcbcc2","sha256":"d684c6105ece5706298f7778d19bc9881449a39196f92c000254f4ce6fdd368e","sha512":"c39e9046f82f671fd428b4374c39e3f559d816c495e4cadc5477d91f7502467aee06a91fd13ca882f68c417309be3b061f64dc57109574ff3eeb90a7183d1c34","ssdeep":"","tlshash":"0651003d2da2702da15370282e5f984c7175422b6025d944fe0e96906f50bbaa8eefce","size":2524,"data":"","first_seen":"2023-06-30T16:46:16Z","last_seen":"2026-04-05T04:36:39.870717Z","times_seen":4535,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9320f4c96e69f35f385a133e36bbd45b","sha1":"1a8a6158a2943e5365e77252699c086679e59096","sha256":"49b4b8d0ea6f5e9f18d0b2a583888720be163311f5c18203dec0d7dd23f2fddd","sha512":"3f4a7f3c5d803c5c3338218c19480095acf7d8fed89818b6ffe3ff71b90c6eb70a79155fa9b01f397abd8a34cce46517862e0a576d0de16261903ef3fd63abdb","ssdeep":"","tlshash":"07117b6905aa1470452bb075ab8ee1c936f7746709099c50bd1c068e9fa0eb91ff4be4","size":858,"data":"","first_seen":"2024-07-29T15:17:13Z","last_seen":"2026-04-05T06:05:37.492207Z","times_seen":3588,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"36694e25f34a218286849d5e00dafc83","sha1":"bf8f9f6646140ba3a75256df4f3382a0cce842db","sha256":"c41360eca2f0c5aa5a54c96334df5d913aa6aeef4575669a8c8f49eda097b8e1","sha512":"29baaf4f16e3edfba2bd8b758b1ceb6311445403e0d1d87d4cc36453f1dfcd88bb11f18edc66b46a32bd9f213d3e950b9a2f37290919e0069e7cf52f8ab8aef3","ssdeep":"","tlshash":"b2e0c0f106ff469415b00c1f90a9978bad011d1b8c082830b0c46a9c0feee1f87c0ef5","size":351,"data":"","first_seen":"2025-12-11T05:55:35.842724Z","last_seen":"2025-12-11T05:55:35.842724Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"f65995f00abb18d6499565439b7bddb6","sha1":"81da65b6f2a143f571a4bf1cb275d058d93ba3e6","sha256":"3342a855bbadff70c8f7c11377da16317d481f7ac98eda9630f870e8eb4785b7","sha512":"27e2d71649d212b7f69c650469f1e536b48a938dd0ab09108757ead9129a8fac5625bfc45a48026d539520e913dff0af1d87cc3a47056c70be4a9c787829aa55","ssdeep":"192:+E4mit5+mnLX9ReZ5Babnw+HKqZOIrCcQIzKkbjinoSfuLu9igFc4iH/5hxURUci:r4Lh+5BwqqZdhxVHxURU5rrsM","tlshash":"9662629d26e76b739267747c4eafd1083631612b480d9c04be0c93812f5893d87f6bba","size":14814,"data":"","first_seen":"2025-12-11T05:55:35.844097Z","last_seen":"2025-12-11T05:55:35.844097Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banghotties.com/","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"af39efb026f4649b571c8c4b23ee75c2","sha1":"9ed5498eb1f12e2445766d7054590693b8462218","sha256":"364a348f330faad7380ec885c6987b764aa034f0db1b06956627087cf3e802ef","sha512":"dba42ccd7f56237c398e57ce5d1d992af0b994f39189634baaf5dd047efbbc6f268643d2b558fec3f7b6eee1719c2451b1dd7a845d8a8361229be324efdbea97","ssdeep":"","tlshash":"bb316af3900414e70e408069f95baa08b71a256f7dc1e6c8f70e6b86cf7c54b71f669a","size":1808,"data":"","first_seen":"2025-12-11T05:55:35.845531Z","last_seen":"2025-12-11T05:55:35.845531Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/a/Em0PUj0Lcw3G0","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"28fd9e38a78e04f825cd79da4178aa5a","sha1":"d1a6c3ff7f275c7e51d9fc16d7670f875e01521f","sha256":"22d0ae8d917028590401793e16c29d79b0fda4e95152a0a5af812b5f0a97b91a","sha512":"0dd9066d91693f2c31b7b28ad896e9971a47d7156b9300ef5d8c0c7e985c91add72a47016c1c658b467456f675924729cd8dc908b08a79b5700080b855cf16e8","ssdeep":"","tlshash":"85d022f69eb3c0c47e3208a6052a41e953c23177480cc468f8c263143fc39032a840c9","size":207,"data":"","first_seen":"2025-12-11T05:55:35.846761Z","last_seen":"2025-12-11T05:55:35.846761Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/js/pjsof/subscriber.js","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":false,"md5":"bda5a5c5c1930a0d30ecb0792764f214","sha1":"3af671e1db6fb2a4b8c573b760ac997dda79ddfc","sha256":"f82cb2a4862cd6daef201160deb7a92f78901fc36ab4f3535555f9fdfa82629b","sha512":"5a4cf5ed761c4c03fdbf6523056527bd0a513354a49a6c5f0c7d4ec7b6ce648349374d8ea4132cd2ff49f064e8a8724740ed31f216379ec6b660629ef623e7af","ssdeep":"384:6jTBiAa/4Rdn6KJ70cy1xTuqkkRidIPBBaDX61ZGAxA34LpK8AqESrwYkyw+4iy:6jTBi7/Gdn6KFzyfVkkuIPnaDX6HRLLg","tlshash":"c292d6863fc4e55d13ee977bb61731d8e4132626154808ced44bf9e0b8f461beae6930","size":20066,"data":"","first_seen":"2025-11-05T10:25:32.422483Z","last_seen":"2026-04-05T04:36:39.852967Z","times_seen":1198,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/sandbox%20eval%20code","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"239166f4d1bda569909c9af241098419","sha1":"ad3987a93224de5c735c7c380daf5bfaecf60ac8","sha256":"255566913e81e0587539abba68839777480779575271b734e817e7093f4dceec","sha512":"f4101528680ef26d4c38336e31d905393324e907c2d5210fd6397419e361460166a3dd44a2eb152e29d4c026c601654ea579bad6ac9608a9cd7cdf0072798ead","ssdeep":"","tlshash":"78b09b135691656d5f1065f575115007d1d9f7055bf79407b006007f1440f9a295d2d0","size":123,"data":"","first_seen":"2023-05-05T23:38:25Z","last_seen":"2026-04-05T08:47:42.332039Z","times_seen":15733,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/js/pjsof/utils.js","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc9ac641919a03f961b83be02c601042","sha1":"4ca74c7495413aaf37b996a3d4e50fd176216377","sha256":"c750026ab549e257c640c6559612930de0ad5045b69f653c3bb09b483bb9e91c","sha512":"90a7dd352b8b9370cec4d91ef8107e5404be876135e772ec39cbbc0949092cc6489c6fea3e8c6b3ca6ce600fdaa732411bbdd0b6d32b2908fc646c8c98d8d861","ssdeep":"384:UzVgLqAmo0foe9bvtXmvHA9JwC1GLTozo:UzVgLqAmo0foe9bvZb9JwGzo","tlshash":"424285d07ed6588543f113a7933f20ddd6b98d6a3a908887f0117c51b8e4b2aeb939b0","size":12806,"data":"","first_seen":"2025-11-05T10:25:32.456915Z","last_seen":"2026-04-05T04:36:39.848924Z","times_seen":1198,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banghotties.com/","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fa0183fd5342f6898e6b064febada426","sha1":"6b4924e75fbd020333703bb49966b1a712fa6867","sha256":"bb8323be3f114e1af500c80ad0c7ae934007d688eeda08db7f54f7779aaff223","sha512":"7083a840ad8eb64f1ca4e223ca0030e81c64e116cdae27c894c60e30b895b7f5002e680d594de6949cd8fb938ff5c48255e273a2e7a6e41f1ae1fba5959372dc","ssdeep":"","tlshash":"0c31028a72f9144217f7a0afb7cb3806e0a6c10b28ddcd84f95e43450f027b4d7865ea","size":1779,"data":"","first_seen":"2025-12-11T05:55:35.848996Z","last_seen":"2025-12-11T05:55:35.848996Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/js/jquery.min.js?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"709e924e9a75c685d38ed5ba5d5d1ecb","sha1":"c422818da9af92da13a64d10d86b92db3c50bc72","sha256":"7e026c374c5586265b626407e2272066b52cb84e656c64e3546b7ef7d5eb4113","sha512":"a34ee1f41328cdeaf405554b7b9ed984279cb0a21c68de2be1cf66f297166d339c2de11b375d7514a690b43f0c29a9462cdb8bbefe434635b21fab0848f1e028","ssdeep":"1536:dBiBXM2erOCzqSBxUMPW/KYddaB2PdOrW9pMEZyztB5A89KKjOXRTlRkikH5:1oOrW/eZjYK1ikZ","tlshash":"15e3a5ddbcf774a29667a07e09af9009b035450b284dcc00b96ce0e5af7165942ebfed","size":146959,"data":"","first_seen":"2024-12-22T05:28:40.847069Z","last_seen":"2026-02-04T00:00:28.809282Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b183329c90af8d64337b925c208e7a14","sha1":"9f5a49eab81c119d28416ba96f0390fdbc5a4565","sha256":"8e494f1321a6b31f3f2c5b67d5ed2242260adae69ac403bf87daba0aa6f0d9cf","sha512":"934db2e71193d93f6d271360e1ff09da2a2e38ef2d7a003fa65fef63fbbf81c3059db3b5b6e7a8ebe352d852285a281d356e9959f483378a2e21aaecade69586","ssdeep":"768:5NTKEXXgb0hlg40MrseYmrfnybAglt/B14IfHa0sCN:vTKhb0YxMrkEnQAwdRfXrN","tlshash":"390362ccbac3b51a8393a1fe54bf5146b63f7c18a40e4500fa69d5da7c7a009c637ab4","size":40767,"data":"","first_seen":"2023-03-07T01:17:49Z","last_seen":"2026-04-05T06:05:37.489539Z","times_seen":3526,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/js/envoirment.js?id=a535a99b3fccb8f0756a","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b85f0470d60daf3926bf85503691e9cf","sha1":"b660cd213ebd973463a97579ad59a38a213d940a","sha256":"684fc33b50379d5a198f76a3e0cadadc7c721fa9177c178928778e1e09bbdda6","sha512":"293f419e1d6c3b7dff85adba3798dc4465b911740f7391434377aa173d9d87278c9cd133eb9262ac61d9ab5d518ac3882a32b11cefcdf6a9d64178a0b2599d4f","ssdeep":"384:HCHRnoLghXQxSCNO/Xb/DgTjwt9fEYgALYivE3b5IORv1QpjXuBsb8UeKrFsBn0Y:HCHRnCtS/XAiaALYZryOTQpzaUeTdx","tlshash":"9ee21a5d75db20394372b6e4212fd408b07a5a80704d8880ebbad9942df9e5b713ffe9","size":32799,"data":"","first_seen":"2025-12-04T07:16:16.051219Z","last_seen":"2026-04-04T07:00:53.745124Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"i.imgur.com/82iM732.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.192.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://banghotties.com/","date":"2025-12-11T05:55:03.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /82iM732.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://banghotties.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nlast-modified: Wed, 25 Jun 2025 14:40:11 GMT\r\netag: \"f079d74917b3368183f72fd60c046ef7\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: Fwy8rYNSZd7nPHD64QQaFa0RXe8B9spJCGiqRKF9zoLm7YVOB-4tBw==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\nage: 1048966\r\ndate: Thu, 11 Dec 2025 05:55:03 GMT\r\nx-served-by: cache-iad-kiad7000109-IAD, cache-hel1410032-HEL\r\nx-cache: Miss from cloudfront, HIT, MISS\r\nx-cache-hits: 76, 0\r\nx-timer: S1765432503.080489,VS0,VE106\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 7014\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7014,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"f079d74917b3368183f72fd60c046ef7","sha1":"311479a0c271b1cdeb810c162cc5f24fd8087c82","sha256":"62ede5db7480c238ce70dda57b83f3eab12e68d5a2a584fea27b59dbfafb636a","sha512":"6585872c910183cff8087e54ed15e1b66f922f2fe0245a48ce55bdee6a5b0f9a8cac8d09ae1c6f5a6d9bca56edbcf34a9bbbbfd9e03498729bc892a4af8b5011","ssdeep":"192:XJwa+G69k4ghrYcUJ0hYzCuzDBDtsuHpEgK0FwRXwXfcnSoN:XcG+k4iMhJ0qzCuB+uHdrwRXefcV","tlshash":"08e19f0887fd63081295d975ae1eab31124be1fd56c11bb8f8b7c090cb79b5a87316b1","first_seen":"2025-12-11T05:55:35.799403Z","last_seen":"2025-12-11T05:55:35.799403Z","times_seen":1,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":72,"dns":27,"connect":13,"send":0,"wait":121,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-adef.akamaized.net/landings/288192/1723465955/images/mob.mp4","fqdn":"cdn-adef.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"23.36.76.194","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://banghotties.com/","date":"2025-12-11T05:55:03.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/288192/1723465955/images/mob.mp4 HTTP/1.1\r\nHost: cdn-adef.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nReferer: https://banghotties.com/\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nx-amz-id-2: AbBn3iBqOFtgg4j1zu3uF7HVApUoL75trVBHIuqSPVGDsspymPNvSA4E+NMR9cuB71N01xwnYKA=\r\nx-amz-request-id: N2GYJ4MAET9XD1WJ\r\nLast-Modified: Mon, 12 Aug 2024 12:32:37 GMT\r\nETag: \"c9892b79019c84d14aade89f67aec16a\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: video/mp4\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:03 GMT\r\nContent-Range: bytes 0-686494/686495\r\nContent-Length: 686495\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":686495,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"c9892b79019c84d14aade89f67aec16a","sha1":"0a11fe209ced56fa96c48203780cb07efa32e1dd","sha256":"d32e2c384d70e4a108879fa0541debc2f9dbaec6c601636689800cb45c55707a","sha512":"25654a39696ea0ea98c4de450049e9c2e60818df5168dec3ece1595e1c168a643ce40babc7e3ed92c3c1865a0c9f3f6556252d3153cc83e8e0a5adc664650d75","ssdeep":"12288:FgLoINhEidgOAHlFJdlOAy+k6L6AMnBx0YUM3E2UyMk5GGc6:FOgufAJdY+kSynBx4BeMKGX6","tlshash":"00e4230517c904d5d8ee2b74628d07f273a9d365ede63edf701a3a0436a989cfdac806","first_seen":"2024-05-02T14:45:08Z","last_seen":"2026-02-09T08:18:24.131952Z","times_seen":614,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":126,"dns":95,"connect":1,"send":0,"wait":3,"receive":28,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banghotties.com/favicon.ico","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://banghotties.com/","date":"2025-12-11T05:55:03.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"banghotties.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 21 Oct 2025 14:30:59 GMT","end":"Mon, 19 Jan 2026 15:30:55 GMT"},"fingerprint":{"sha1":"8B:BC:8F:61:F0:7A:27:91:E5:5D:DD:36:9B:FC:97:04:57:37:09:BC","sha256":"D9:1F:F8:F8:4C:DD:4A:A6:1D:D7:36:0C:D7:A7:CD:A5:7C:2D:08:81:97:1A:AF:1C:9A:AA:9D:51:71:5E:99:1D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: banghotties.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://banghotties.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:03 GMT\r\ncontent-type: text/html; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=120, must-revalidate\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xMP64zMcf8eYdB%2BAQ%2FdU3aGO80y5%2B5bue2Ik9CLF11tH%2FsGLFUaw7CPwHnV7UT7OpQHeXVUQP%2F%2BtEJCOL3ogynjlxwxO8qtvbkZ5aKo%3D\"}]}\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb1a883456ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6242,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"2c522b747d35002f62660f3b30c8661b","sha1":"e8f7715213bb0f983668a831113df3119afd0c69","sha256":"bac63d03e56e7b1373609aa56cc6dc9160af74c92a2841f7a9dc28eafdacd560","sha512":"f0250c14d5719f7145467d1bb4efbe0d2ad2bdce94e79626ac22178adab81c4199e4115d3e33244f14b3c3a1d267977ec35353078c7bb18cd8926cfd856c866d","ssdeep":"192:LlqlH7MMU6Q1/bmRJRL1PO7Zq/gNOTWHTR67aDvDpV:LbAJZ1PO7Zq/gNOTWHT1D77","tlshash":"68d196d361c610835a4380a9ff9b7704722dd00baacacdc8bb8e6b45cf5539965d77c8","first_seen":"2025-12-11T05:55:35.803225Z","last_seen":"2025-12-11T05:55:35.803225Z","times_seen":1,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-11T05:55:06.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.hottzone.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Oct 2025 07:34:43 GMT","end":"Mon, 12 Jan 2026 07:34:42 GMT"},"fingerprint":{"sha1":"BE:BD:E6:08:C4:F6:A5:3F:12:AC:E9:C8:97:BD:1E:3B:B1:9E:CA:09","sha256":"75:5E:C7:AF:69:3E:9D:24:B5:35:A4:A9:52:16:BC:0B:BF:65:4F:AB:B8:F8:CF:72:82:06:C0:13:A1:2F:21:1D"}}},"request":{"raw":"GET /?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t HTTP/1.1\r\nHost: vnljag.hottzone.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://true-date.eu/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 11 Dec 2025 05:55:06 GMT\r\ncontent-type: text/html; charset=utf-8\r\nset-cookie: unique_id=693a5cba00025b24; Path=/; Expires=Mon, 09 Feb 2026 05:55:06 GMT; Secure; SameSite=None\nunique_id2=693a5cba0003832d; Path=/; Expires=Wed, 11 Mar 2026 05:55:06 GMT; Secure; SameSite=None\n693a5cba0003832d_c=1; Path=/; Expires=Wed, 11 Mar 2026 05:55:06 GMT; Secure; SameSite=None\nref_token=206556; Path=/; Expires=Sat, 10 Jan 2026 05:55:06 GMT; Secure; SameSite=None\nimpression=; Path=/; Expires=Thu, 11 Dec 2025 05:55:06 GMT; Secure; SameSite=None\n693a5cba0003832d_sl=[292481]; Path=/; Expires=Thu, 25 Dec 2025 05:55:06 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36077,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8964)","md5":"27d79a0311277760ca40b053601bd649","sha1":"fdbba6f1e4e1b689a0be5b4dbfe2dfd523b1e2d5","sha256":"c1a5252530ecbd8fb3a1efade0e75ee4fada5d20ce167aa27d4ac0c3a638ebc2","sha512":"43ad3c71832628dd9b6a35badf57a2144e2e4a7ea56e4afe13c6c162811566dd334df6809b09113826570195b0580d0a7118ff7c21dfd07198cadda220ab056b","ssdeep":"768:s7vcppSti/3XqqocDvv2FrJqZdhxVHxURU5vm/Sgh:s7diSdYXyrwxURU5c","tlshash":"5bf2d8682ee22676539374be5e3fe249b261502b4909cc04fe4c62843f94e39c7f1bb5","first_seen":"2025-12-11T05:55:35.80557Z","last_seen":"2025-12-11T05:55:35.80557Z","times_seen":1,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":254,"dns":151,"connect":32,"send":0,"wait":67,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Rubik:ital,wght@0,300..900;1,300..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:58 GMT","end":"Mon, 19 Jan 2026 08:34:57 GMT"},"fingerprint":{"sha1":"56:14:7E:EF:FA:D2:CF:DD:3B:30:9C:AE:7A:C9:AD:9E:A7:87:3D:E9","sha256":"72:DD:0F:82:4D:8A:09:2D:BB:5B:E6:1B:6F:09:F8:1E:BD:BD:D3:3E:B8:A4:8C:B9:49:13:4D:DC:D7:EF:EA:77"}}},"request":{"raw":"GET /css2?family=Rubik:ital,wght@0,300..900;1,300..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn-dimi.akamaized.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 11 Dec 2025 05:55:07 GMT\r\ndate: Thu, 11 Dec 2025 05:55:07 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5313,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (649)","md5":"d23c245db387dad561e166fe2cea137e","sha1":"48001732790c4e182848658fe1c833d05ec49066","sha256":"c81ea5686e94374f23dd7065b79ea600176e6d1cf215ce9386b729e424c86870","sha512":"64e48d866d1c0036af33eb83fd6c84117154e39871e7061427a6faff5790c79f8bfc1b86852207c6e90a11b2765bb910d3acb8a42363d37fec0499632a41fe8e","ssdeep":"96:dQYgiamA0Zl8DCK9cHoQYgiaiwQYgiaeBFZSQYgiawJQYgiafJc+uJQYgiacNUQV:jINClkIisIvIQI7GIDhClasCs/Aop","tlshash":"dab1bde5481e5044ff472c8263ce6d27de0ea3553494856dabfd0a9aacabc2232647cd","first_seen":"2025-09-12T13:02:42.56913Z","last_seen":"2026-04-05T03:09:17.931258Z","times_seen":1226,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":65,"dns":1,"connect":7,"send":0,"wait":21,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubikvinyl/v1/iJWABXKIfDnIV4mQ5BfjvXXZzI0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/rubikvinyl/v1/iJWABXKIfDnIV4mQ5BfjvXXZzI0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vnljag.hottzone.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 74408\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 10 Dec 2025 13:05:39 GMT\r\nexpires: Thu, 10 Dec 2026 13:05:39 GMT\r\ncache-control: public, max-age=31536000\r\nage: 60568\r\nlast-modified: Wed, 07 Dec 2022 17:48:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":74408,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 74408, version 1.0","md5":"432d4d8c016930f90045534edbe3c2df","sha1":"6b44c4c6545d256d2389d69c2b5af0099a193123","sha256":"1b6f4b4c64f4d76413604d364db2e26b24a478f1216002f79f2a035b7fd7d7e4","sha512":"81105986c99a59bb820e43b6b6e1c837968de7d7815b79703558d4c8e49fccae849fae6990341e4436a784db5a4762d666b5bf2e9d1f9c98a0604ee1d487373b","ssdeep":"1536:v9OQCx+r9s65UlEK8nCFBxxmLKwRKWXXljqfLteEofL9k:lOUyZ7Ceo7RKWHljqRhoTK","tlshash":"2f73029e59c3203fc0dc2b0b11a4216676e2d961e4e79a78f4e063a68dcc75b7314bec","first_seen":"2023-05-21T12:46:30Z","last_seen":"2026-01-03T09:03:34.166963Z","times_seen":23,"resource_available":false,"data":null}},"time_used":561,"timings":{"blocked":267,"dns":1,"connect":163,"send":0,"wait":15,"receive":9,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banghotties.com/","fqdn":"banghotties.com","domain":"banghotties.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-11T05:55:02.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"banghotties.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 21 Oct 2025 14:30:59 GMT","end":"Mon, 19 Jan 2026 15:30:55 GMT"},"fingerprint":{"sha1":"8B:BC:8F:61:F0:7A:27:91:E5:5D:DD:36:9B:FC:97:04:57:37:09:BC","sha256":"D9:1F:F8:F8:4C:DD:4A:A6:1D:D7:36:0C:D7:A7:CD:A5:7C:2D:08:81:97:1A:AF:1C:9A:AA:9D:51:71:5E:99:1D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: banghotties.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:02 GMT\r\ncontent-type: text/html; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=0, must-revalidate\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lr%2F5z1j2bUBTYBywiVr7qh7grvEBuAqJZeDuCxNaRJuIIOLasPpq4eeOsTug1foYMunxDVV9Hxrj5RaPq5U5%2B%2FYWOKnfZQgZESzixBQ%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb158c3856ab-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6242,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"2c522b747d35002f62660f3b30c8661b","sha1":"e8f7715213bb0f983668a831113df3119afd0c69","sha256":"bac63d03e56e7b1373609aa56cc6dc9160af74c92a2841f7a9dc28eafdacd560","sha512":"f0250c14d5719f7145467d1bb4efbe0d2ad2bdce94e79626ac22178adab81c4199e4115d3e33244f14b3c3a1d267977ec35353078c7bb18cd8926cfd856c866d","ssdeep":"192:LlqlH7MMU6Q1/bmRJRL1PO7Zq/gNOTWHTR67aDvDpV:LbAJZ1PO7Zq/gNOTWHT1D77","tlshash":"68d196d361c610835a4380a9ff9b7704722dd00baacacdc8bb8e6b45cf5539965d77c8","first_seen":"2025-12-11T05:55:35.803225Z","last_seen":"2025-12-11T05:55:35.803225Z","times_seen":1,"resource_available":false,"data":null}},"time_used":309,"timings":{"blocked":55,"dns":31,"connect":1,"send":0,"wait":198,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://banghotties.com/","date":"2025-12-11T05:55:03.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 21 Oct 2025 08:31:42 GMT","end":"Mon, 19 Jan 2026 09:31:40 GMT"},"fingerprint":{"sha1":"18:54:BC:32:F5:78:9E:49:22:F8:83:70:B5:69:C4:53:F0:B0:C2:36","sha256":"85:63:48:DD:A0:B5:06:15:E8:95:A8:A5:FE:8A:2E:A0:80:42:CE:75:9D:8E:2D:D7:B4:63:F1:93:4C:24:32:59"}}},"request":{"raw":"GET /json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://banghotties.com/\r\nOrigin: https://banghotties.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:03 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nallow: POST, OPTIONS, OPTIONS, HEAD, GET\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://banghotties.com\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.stripe.com https://*.paddle.com https://www.google.com https://www.gstatic.com https://maps.gstatic.com https://maps.googleapis.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://*.paddle.com https://fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: https://ipapi.co https://maps.gstatic.com https://maps.googleapis.com https://*.stripe.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://www.google.com https://*.stripe.com https://*.paddle.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/; connect-src 'self' https://ipapi.co/ https://*.paddle.com https://*.stripe.com https://maps.googleapis.com https://www.google.com/recaptcha/; object-src 'none'; frame-ancestors 'none'; base-uri 'self'; form-action 'self';\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1S%2BCfwu97WU4%2FYjr%2F9fddzuDdxNrBZ8v8lPiB9AW5WFrp%2FQzr%2Bm%2FaGhpOR6yZRkz218bDNGGOKY6oFmrj6tV2YOido3Xg7o%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb185d1749c5-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":744,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"10f032b6d95dce6b7abbaae68787b67f","sha1":"7e2a30920ac65465c5c5daf94e45dc8435a3efcb","sha256":"596cbcdd96c9bd505a58fa6a6a66d20081f7e416e6e84646d083483c90c8f1e2","sha512":"8bed577d29f9d8c5aa17db8afae8e822d1209302d99aa2d8d3e49d00b1b107a20b5916fc07dc360d371d6980c92012f8ffa999673f10e696b06d6d333b437a51","ssdeep":"","tlshash":"d701df78e4680ebb9cb9135cb4386907123422075e56398e7fd49b8d0f8e8bf30b525e","first_seen":"2025-12-03T13:37:35.146543Z","last_seen":"2025-12-17T08:02:12.429433Z","times_seen":614,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":41,"dns":22,"connect":1,"send":0,"wait":231,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/favicon.ico","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://true-date.eu/a/Em0PUj0Lcw3G0","date":"2025-12-11T05:55:05.525Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-date.eu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 03 Nov 2025 18:04:02 GMT","end":"Sun, 01 Feb 2026 19:00:06 GMT"},"fingerprint":{"sha1":"3F:56:EC:BF:F8:AC:FE:EF:D4:1E:23:00:D7:E5:DB:49:26:F3:32:08","sha256":"F6:B4:1F:13:CC:70:32:B6:5B:BF:04:80:95:D0:70:5B:65:1D:47:41:D4:F4:FF:A0:14:9C:47:B0:36:93:B7:94"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: true-date.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://true-date.eu/a/Em0PUj0Lcw3G0\r\nCookie: 11868452804c8a2bb86650b580125ff5=11868452804c8a2bb86650b580125ff5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ndate: Thu, 11 Dec 2025 05:55:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlocation: https://true-date.eu/inactiveprogram\r\nserver: cloudflare\r\ncache-control: private, must-revalidate\r\npragma: no-cache\r\nexpires: -1\r\ncf-cache-status: BYPASS\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M5yEjUq%2Fds48sWUBefJStNB1xH3Iy8TG0FBLIW9vOIO8qOcCZJrmzydXfoXyejGvE5T%2FgwaafJookn6fj8dXD%2Bk7LvyvqNXBZ89dyg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ac2bb278f7176ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2134,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":225,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":221,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/finger","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://true-date.eu/a/Em0PUj0Lcw3G0","date":"2025-12-11T05:55:06.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-date.eu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 03 Nov 2025 18:04:02 GMT","end":"Sun, 01 Feb 2026 19:00:06 GMT"},"fingerprint":{"sha1":"3F:56:EC:BF:F8:AC:FE:EF:D4:1E:23:00:D7:E5:DB:49:26:F3:32:08","sha256":"F6:B4:1F:13:CC:70:32:B6:5B:BF:04:80:95:D0:70:5B:65:1D:47:41:D4:F4:FF:A0:14:9C:47:B0:36:93:B7:94"}}},"request":{"raw":"POST /finger HTTP/1.1\r\nHost: true-date.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 1293\r\nOrigin: https://true-date.eu\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://true-date.eu/a/Em0PUj0Lcw3G0\r\nCookie: 11868452804c8a2bb86650b580125ff5=11868452804c8a2bb86650b580125ff5\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1293,"data":"{\"mlClick\":\"4ekiMN9t\",\"canvas\":\"5921f93337b49fea631c2e938e5a1905\",\"webgl\":\"25c16cf39fea6a8ff755f3e1c922a337\",\"hash\":\"75ad0d226566107bea50b23a85a31aa4\",\"ua\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"lang\":\"en-US\",\"colorDepth\":24,\"screenResolution\":\"1280x1024\",\"availableScreenResolution\":\"1280x1024\",\"timezoneOffset\":0,\"timezone\":\"UTC\",\"platform\":\"Win32\",\"hasLiedLanguages\":\"false\",\"hasLiedResolution\":\"false\",\"hasLiedOs\":\"true\",\"hasLiedBrowser\":\"false\",\"adBlock\":\"false\",\"webglVendorAndRenderer\":\"Mesa~llvmpipe\",\"cpuClass\":\"not available\",\"deviceMemory\":\"not available\",\"webdriver\":false,\"hardwareConcurrency\":48,\"sessionStorage\":\"true\",\"localStorage\":\"true\",\"indexedDb\":\"true\",\"addBehavior\":\"false\",\"openDatabase\":\"false\",\"plugins\":[[\"PDF Viewer\",\"Portable Document Format\",[[\"application/pdf\",\"pdf\"],[\"text/pdf\",\"pdf\"]]],[\"Chrome PDF Viewer\",\"Portable Document Format\",[[\"application/pdf\",\"pdf\"],[\"text/pdf\",\"pdf\"]]],[\"Chromium PDF Viewer\",\"Portable Document Format\",[[\"application/pdf\",\"pdf\"],[\"text/pdf\",\"pdf\"]]],[\"Microsoft Edge PDF Viewer\",\"Portable Document Format\",[[\"application/pdf\",\"pdf\"],[\"text/pdf\",\"pdf\"]]],[\"WebKit built-in PDF\",\"Portable Document Format\",[[\"application/pdf\",\"pdf\"],[\"text/pdf\",\"pdf\"]]]],\"touchSupport\":[0,false,false]}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:06 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\ncache-control: private, must-revalidate\r\npragma: no-cache\r\nexpires: -1\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aEtXPcHCEf5OC2%2FHMt6StR%2Fp82Kqcp8vlcny4ZlrGM7YN7WPzWfGJX2FAfdXGfVEmU4UkwofjAi07NdGGkcHT54cmnygiJk7ydopgQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb2b6dde76ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5820854f62a6eb3d38ba7ba0d1b3ea75","sha1":"639df0b84fe699b4a290a713fd6b9a94bd4deb95","sha256":"912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d","sha512":"4452c0a26fa81357f95bf6160c3f5d35ff39f62e03d5faa1e69eb9dfdcb2c83eda4235463ee4065dceb534cc497891a05535467337ad84693e5fa48c317dbbbb","ssdeep":"","tlshash":"f67000020000208008803c0000000a203ae00aa0822a00c0802c00288e08088f08a000","first_seen":"2023-03-13T15:21:35Z","last_seen":"2026-04-05T08:36:19.350373Z","times_seen":88414,"resource_available":true,"data":null}},"time_used":232,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/js/jquery.min.js?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/js/jquery.min.js?1758012018 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: hqHJvmDtPdqM48TaxrGjvO9MYd0W08D3Pb63ltLobGQ9IECDFH4Ag71hYfGV1/2MljBbTYUgeeMJyjKekrszMtEIWnmag77k\r\nx-amz-request-id: 5R1GBVMG4VBFVQAC\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"709e924e9a75c685d38ed5ba5d5d1ecb\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: application/javascript\r\nServer: AmazonS3\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nDate: Thu, 11 Dec 2025 05:55:06 GMT\r\nContent-Length: 35199\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":146959,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (701)","md5":"709e924e9a75c685d38ed5ba5d5d1ecb","sha1":"c422818da9af92da13a64d10d86b92db3c50bc72","sha256":"7e026c374c5586265b626407e2272066b52cb84e656c64e3546b7ef7d5eb4113","sha512":"a34ee1f41328cdeaf405554b7b9ed984279cb0a21c68de2be1cf66f297166d339c2de11b375d7514a690b43f0c29a9462cdb8bbefe434635b21fab0848f1e028","ssdeep":"1536:dBiBXM2erOCzqSBxUMPW/KYddaB2PdOrW9pMEZyztB5A89KKjOXRTlRkikH5:1oOrW/eZjYK1ikZ","tlshash":"15e3a5ddbcf774a29667a07e09af9009b035450b284dcc00b96ce0e5af7165942ebfed","first_seen":"2024-12-22T05:28:40.847069Z","last_seen":"2026-02-04T00:00:28.809282Z","times_seen":48,"resource_available":true,"data":null}},"time_used":105,"timings":{"blocked":45,"dns":18,"connect":3,"send":0,"wait":10,"receive":1,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /firebasejs/8.2.2/firebase-messaging.js HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"firebase-js\"\r\nreport-to: {\"group\":\"firebase-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/firebase-js\"}]}\r\ncontent-length: 10840\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Dec 2025 10:00:03 GMT\r\nexpires: Fri, 04 Dec 2026 10:00:03 GMT\r\ncache-control: public, max-age=31536000\r\nage: 590104\r\nlast-modified: Thu, 07 Jan 2021 21:51:17 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40767,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (40719)","md5":"b183329c90af8d64337b925c208e7a14","sha1":"9f5a49eab81c119d28416ba96f0390fdbc5a4565","sha256":"8e494f1321a6b31f3f2c5b67d5ed2242260adae69ac403bf87daba0aa6f0d9cf","sha512":"934db2e71193d93f6d271360e1ff09da2a2e38ef2d7a003fa65fef63fbbf81c3059db3b5b6e7a8ebe352d852285a281d356e9959f483378a2e21aaecade69586","ssdeep":"768:5NTKEXXgb0hlg40MrseYmrfnybAglt/B14IfHa0sCN:vTKhb0YxMrkEnQAwdRfXrN","tlshash":"390362ccbac3b51a8393a1fe54bf5146b63f7c18a40e4500fa69d5da7c7a009c637ab4","first_seen":"2023-03-07T01:17:49Z","last_seen":"2026-04-05T06:05:37.489539Z","times_seen":3526,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":52,"dns":7,"connect":21,"send":0,"wait":22,"receive":2,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/images/bg-newyear_2.png","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/images/bg-newyear_2.png HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn-dimi.akamaized.net/landings/292481/1758012017/css/general.css?1758012018\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: QjGZo1Uy1nAPa6J1fZRcKAzaQsg0n18DohgPgGtR85NXEa6pYxRn96SGkvNnP90DLnO8B1NqIdw=\r\nx-amz-request-id: XDQQNMVN6DYXYW7F\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"66ea06f33cc63e2b609916ff91e233b8\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/png\r\nContent-Length: 151515\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":151515,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2880 x 1620, 8-bit/color RGBA, non-interlaced","md5":"66ea06f33cc63e2b609916ff91e233b8","sha1":"5f000b673c9442387c4980d71d04a05041c3c50b","sha256":"073ca7d2c103dadca249bc7a64251cd666ba8149b69737df49864b57e702b98e","sha512":"1a0364b96ce6918147ed2ea15e39d5960fe50e822a202e0fa331fcd73cf3c9e31a96f2d82d47b5091ecadab04f485cc2de940428c376765e73110393ada2473f","ssdeep":"3072:IFOYTtU+wHL67Q8dYtlzNjKR0Mvq4iIn04YAglZUOGUBxApNH9cbZdnx:oR2P3lQRS4P04Yzf/fnx","tlshash":"70e3013a86011541eee50238883f5fac7ff9a81b90946f2f87b5e665eedf3c4081d045","first_seen":"2024-12-24T12:32:26.927114Z","last_seen":"2025-12-11T05:55:35.816812Z","times_seen":13,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/images/ico-snow.svg","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/images/ico-snow.svg HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn-dimi.akamaized.net/landings/292481/1758012017/css/general.css?1758012018\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Y1kzOOnCUw5N9W8jszpUNd1gjs1rOALYnk3vyKh7nLdSYHf6th/IchwcpgoZd0AP1LRNM3ORA3o=\r\nx-amz-request-id: EHDXFR9Z7TPC4EP1\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"4b58f2e4b9c251a6c03de6f6a392aad0\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 1195\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1195,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4b58f2e4b9c251a6c03de6f6a392aad0","sha1":"cc72316068e33f8c8d8e86f2e27ee65c19d3ec4e","sha256":"9186a8606d79aa0343265a10791842d69be6d176cac0055c98cbbc83b353c0a2","sha512":"752fe4d5d75b26896e2eb69dcd1ccbd93f641c92a38e0916c6ece61f1435e15c8e0fa1acda7298b119d4f7fffc247558252a8af11115b2eb06f18bd27cdb14a1","ssdeep":"","tlshash":"982177f627c8f7e0c661d77810179830347b3df07b99e24f8ce55291906100c4d22d8b","first_seen":"2024-12-24T19:01:23.805938Z","last_seen":"2025-12-11T05:55:35.817651Z","times_seen":7,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/css/reset.min.css?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/css/reset.min.css?1758012018 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: XXFkcd0npHZaFkwf7cN7wzFsvhroz8oNUhVq59BoahU7frFt6Ne5dMtTcXw1JHmAbNjEaUMrIYxZrIRZwLvK+KujxI6pRoQe\r\nx-amz-request-id: 5R1SNJ33YJYPS229\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"5823a2af31d45a1be59cc14787ccf37d\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: text/css\r\nServer: AmazonS3\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nDate: Thu, 11 Dec 2025 05:55:06 GMT\r\nContent-Length: 523\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":960,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (411)","md5":"5823a2af31d45a1be59cc14787ccf37d","sha1":"588e318486599ed652a4e39b71541bed16f4e7a0","sha256":"6a27882e475eb79de9b2c538c89f6aa2431825f4a61fe8171b0b225a197f3848","sha512":"e81dc80f3b61f8c1e79ec7737ff4a2df78a8289976d16e7ef1778ef1a756b3e0c1a9fd088337679ec1aca902a8a15d34afa03dde9ed07b841a3afe93109eea9d","ssdeep":"","tlshash":"a611847823b950e06f77c26127096a94f6708321444cc8fcfbb6d1290d9c06ae0b5fda","first_seen":"2024-12-22T05:28:40.841731Z","last_seen":"2025-12-11T05:55:35.818497Z","times_seen":37,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":52,"dns":20,"connect":1,"send":0,"wait":2,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vnljag.hottzone.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Dec 2025 12:45:22 GMT\r\nexpires: Fri, 04 Dec 2026 12:45:22 GMT\r\ncache-control: public, max-age=31536000\r\nage: 580185\r\nlast-modified: Tue, 09 Sep 2025 18:33:06 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15028,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15028, version 1.0","md5":"42df88898bab0fab4c59cd7590f670ed","sha1":"5a31376aff3fbaad3396224b7157d1294273b326","sha256":"6285243909b5d0b7d12b5795a99e37355e361ebfeef01b6f8bc95fbe46aa611c","sha512":"6df2554d7064157913f8f19bce08248edb1daaed201da4efdae927d3742a55a3f6584d07c94c5772fbd5222978b6857951054d6699dcdc8e16ba1c7b5bb3c1ca","ssdeep":"384:TzdHStVe4OxNyweZXvvMrcOYVGPfSGOPhz:TzdHS32yVZ/vMzYQHrKz","tlshash":"6762c090cbfdb6e3e93c26b44748fa853dd2fa205837e3d1afc2885170c071a36a5526","first_seen":"2025-06-04T19:39:20.238119Z","last_seen":"2026-04-05T09:19:49.125992Z","times_seen":1615,"resource_available":false,"data":null}},"time_used":532,"timings":{"blocked":255,"dns":1,"connect":8,"send":0,"wait":8,"receive":2,"ssl":255},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/images/video-web4.mp4","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/images/video-web4.mp4 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nx-amz-id-2: wKSNArKt2fxhclrtg+9W1+5nBjFu5kqxmfOuvOPw7lCqrn5BFntGmIW4yVD7124cuquyw17VSyU=\r\nx-amz-request-id: EHDRK104J4D2WMT9\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"49f692be556f4eddeb83781c6d1784f3\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: video/mp4\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nContent-Range: bytes 0-2011761/2011762\r\nContent-Length: 2011762\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2011762,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"b0de573e9c6f8839d1461630360aa9d4","sha1":"8d269b760aca9a52a9ac2cc71db60050abf58baf","sha256":"47c3f0afb21dd6f14597ea9394e7ff571ba7a60b3ffbaf597a2478bfb46a9764","sha512":"abf26a048afecd8c92f56182cbd0ecb0707f57269a25d0500f807220c23a3d57c31c7f93cb837d3f9950453cdfb9087a54a77a0c29604d7a77a007d042a64bc3","ssdeep":"24576:KM/P8aKTj9ityWkOQFpFI/CjOKw7jYdw0aNGy7c4T:r8aWgtyWbQpYCCKw7dOyrT","tlshash":"662533e5e3887201e81637b0d32e3fbb956590dca021647eb0a0cc945ed29fd5ce29de","first_seen":"2025-10-14T01:40:31.11541Z","last_seen":"2025-12-11T05:55:35.820272Z","times_seen":3,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/js/pjsof/utils.js","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.hottzone.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Oct 2025 07:34:43 GMT","end":"Mon, 12 Jan 2026 07:34:42 GMT"},"fingerprint":{"sha1":"BE:BD:E6:08:C4:F6:A5:3F:12:AC:E9:C8:97:BD:1E:3B:B1:9E:CA:09","sha256":"75:5E:C7:AF:69:3E:9D:24:B5:35:A4:A9:52:16:BC:0B:BF:65:4F:AB:B8:F8:CF:72:82:06:C0:13:A1:2F:21:1D"}}},"request":{"raw":"GET /js/pjsof/utils.js HTTP/1.1\r\nHost: vnljag.hottzone.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/?s1=206556\u0026s2=1993171\u0026s3=42864\u0026s5=backuser\u0026click_id=mlClick-4ekiMN9t\u0026iexpp=1\u0026j1=1\u0026j9=1\u0026utm_source=1e3a4e532f1c7040\u0026ban=other\r\nCookie: unique_id=693a5cba00025b24; unique_id2=693a5cba0003832d; 693a5cba0003832d_c=1; ref_token=206556; 693a5cba0003832d_sl=[292481]\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 11 Dec 2025 05:55:07 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 18 Dec 2025 05:55:07 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12806,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12806), with no line terminators","md5":"dc9ac641919a03f961b83be02c601042","sha1":"4ca74c7495413aaf37b996a3d4e50fd176216377","sha256":"c750026ab549e257c640c6559612930de0ad5045b69f653c3bb09b483bb9e91c","sha512":"90a7dd352b8b9370cec4d91ef8107e5404be876135e772ec39cbbc0949092cc6489c6fea3e8c6b3ca6ce600fdaa732411bbdd0b6d32b2908fc646c8c98d8d861","ssdeep":"384:UzVgLqAmo0foe9bvtXmvHA9JwC1GLTozo:UzVgLqAmo0foe9bvZb9JwGzo","tlshash":"424285d07ed6588543f113a7933f20ddd6b98d6a3a908887f0117c51b8e4b2aeb939b0","first_seen":"2025-11-05T10:25:32.456915Z","last_seen":"2026-04-05T04:36:39.848924Z","times_seen":1198,"resource_available":true,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/images/video-web4.mp4","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/images/video-web4.mp4 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nx-amz-id-2: wKSNArKt2fxhclrtg+9W1+5nBjFu5kqxmfOuvOPw7lCqrn5BFntGmIW4yVD7124cuquyw17VSyU=\r\nx-amz-request-id: EHDRK104J4D2WMT9\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"49f692be556f4eddeb83781c6d1784f3\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: video/mp4\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nContent-Range: bytes 0-2011761/2011762\r\nContent-Length: 2011762\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2011762,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"b0de573e9c6f8839d1461630360aa9d4","sha1":"8d269b760aca9a52a9ac2cc71db60050abf58baf","sha256":"47c3f0afb21dd6f14597ea9394e7ff571ba7a60b3ffbaf597a2478bfb46a9764","sha512":"abf26a048afecd8c92f56182cbd0ecb0707f57269a25d0500f807220c23a3d57c31c7f93cb837d3f9950453cdfb9087a54a77a0c29604d7a77a007d042a64bc3","ssdeep":"24576:KM/P8aKTj9ityWkOQFpFI/CjOKw7jYdw0aNGy7c4T:r8aWgtyWbQpYCCKw7dOyrT","tlshash":"662533e5e3887201e81637b0d32e3fbb956590dca021647eb0a0cc945ed29fd5ce29de","first_seen":"2025-10-14T01:40:31.11541Z","last_seen":"2025-12-11T05:55:35.820272Z","times_seen":3,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vnljag.hottzone.com/js/pjsof/subscriber.js","fqdn":"vnljag.hottzone.com","domain":"hottzone.com","tld":"com"},"ip":{"addr":"52.19.138.177","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.hottzone.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Oct 2025 07:34:43 GMT","end":"Mon, 12 Jan 2026 07:34:42 GMT"},"fingerprint":{"sha1":"BE:BD:E6:08:C4:F6:A5:3F:12:AC:E9:C8:97:BD:1E:3B:B1:9E:CA:09","sha256":"75:5E:C7:AF:69:3E:9D:24:B5:35:A4:A9:52:16:BC:0B:BF:65:4F:AB:B8:F8:CF:72:82:06:C0:13:A1:2F:21:1D"}}},"request":{"raw":"GET /js/pjsof/subscriber.js HTTP/1.1\r\nHost: vnljag.hottzone.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/?s1=206556\u0026s2=1993171\u0026s3=42864\u0026s5=backuser\u0026click_id=mlClick-4ekiMN9t\u0026iexpp=1\u0026j1=1\u0026j9=1\u0026utm_source=1e3a4e532f1c7040\u0026ban=other\r\nCookie: unique_id=693a5cba00025b24; unique_id2=693a5cba0003832d; 693a5cba0003832d_c=1; ref_token=206556; 693a5cba0003832d_sl=[292481]\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 11 Dec 2025 05:55:07 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 18 Dec 2025 05:55:07 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20066,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20066), with no line terminators","md5":"bda5a5c5c1930a0d30ecb0792764f214","sha1":"3af671e1db6fb2a4b8c573b760ac997dda79ddfc","sha256":"f82cb2a4862cd6daef201160deb7a92f78901fc36ab4f3535555f9fdfa82629b","sha512":"5a4cf5ed761c4c03fdbf6523056527bd0a513354a49a6c5f0c7d4ec7b6ce648349374d8ea4132cd2ff49f064e8a8724740ed31f216379ec6b660629ef623e7af","ssdeep":"384:6jTBiAa/4Rdn6KJ70cy1xTuqkkRidIPBBaDX61ZGAxA34LpK8AqESrwYkyw+4iy:6jTBi7/Gdn6KFzyfVkkuIPnaDX6HRLLg","tlshash":"c292d6863fc4e55d13ee977bb61731d8e4132626154808ced44bf9e0b8f461beae6930","first_seen":"2025-11-05T10:25:32.422483Z","last_seen":"2026-04-05T04:36:39.852967Z","times_seen":1198,"resource_available":true,"data":null}},"time_used":138,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":78,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"vnljag.hottzone.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/js/envoirment.js?id=a535a99b3fccb8f0756a","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://true-date.eu/a/Em0PUj0Lcw3G0","date":"2025-12-11T05:55:05.331Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-date.eu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 03 Nov 2025 18:04:02 GMT","end":"Sun, 01 Feb 2026 19:00:06 GMT"},"fingerprint":{"sha1":"3F:56:EC:BF:F8:AC:FE:EF:D4:1E:23:00:D7:E5:DB:49:26:F3:32:08","sha256":"F6:B4:1F:13:CC:70:32:B6:5B:BF:04:80:95:D0:70:5B:65:1D:47:41:D4:F4:FF:A0:14:9C:47:B0:36:93:B7:94"}}},"request":{"raw":"GET /js/envoirment.js?id=a535a99b3fccb8f0756a HTTP/1.1\r\nHost: true-date.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://true-date.eu/a/Em0PUj0Lcw3G0\r\nCookie: 11868452804c8a2bb86650b580125ff5=11868452804c8a2bb86650b580125ff5\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:05 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 09 Dec 2025 13:56:13 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SA474j5WfL1gP0fIzZAd5KF7WT%2FzFVP7Kp4C1Gxdpf%2F8MGJ%2B4wC1OBJmmKOTa0uf8m%2BQWMUbW9ejPGudaVQxWGPKoSZQKaebvrtsDg%3D%3D\"}]}\r\netag: W/\"69382a7d-801f\"\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb264d5276ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":32799,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32792)","md5":"b85f0470d60daf3926bf85503691e9cf","sha1":"b660cd213ebd973463a97579ad59a38a213d940a","sha256":"684fc33b50379d5a198f76a3e0cadadc7c721fa9177c178928778e1e09bbdda6","sha512":"293f419e1d6c3b7dff85adba3798dc4465b911740f7391434377aa173d9d87278c9cd133eb9262ac61d9ab5d518ac3882a32b11cefcdf6a9d64178a0b2599d4f","ssdeep":"384:HCHRnoLghXQxSCNO/Xb/DgTjwt9fEYgALYivE3b5IORv1QpjXuBsb8UeKrFsBn0Y:HCHRnCtS/XAiaALYZryOTQpzaUeTdx","tlshash":"9ee21a5d75db20394372b6e4212fd408b07a5a80704d8880ebbad9942df9e5b713ffe9","first_seen":"2025-12-04T07:16:16.051219Z","last_seen":"2026-04-04T07:00:53.745124Z","times_seen":116,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":183,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/inactiveprogram","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://true-date.eu/a/Em0PUj0Lcw3G0","date":"2025-12-11T05:55:06.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-date.eu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 03 Nov 2025 18:04:02 GMT","end":"Sun, 01 Feb 2026 19:00:06 GMT"},"fingerprint":{"sha1":"3F:56:EC:BF:F8:AC:FE:EF:D4:1E:23:00:D7:E5:DB:49:26:F3:32:08","sha256":"F6:B4:1F:13:CC:70:32:B6:5B:BF:04:80:95:D0:70:5B:65:1D:47:41:D4:F4:FF:A0:14:9C:47:B0:36:93:B7:94"}}},"request":{"raw":"GET /inactiveprogram HTTP/1.1\r\nHost: true-date.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://true-date.eu/a/Em0PUj0Lcw3G0\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: 11868452804c8a2bb86650b580125ff5=11868452804c8a2bb86650b580125ff5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:06 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\ncache-control: private, must-revalidate\r\npragma: no-cache\r\nexpires: -1\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=h6y%2Bqjdquo5epefaNZ8g8vVuzLmFkRuf60EEXlH2bvxmwN9n9yqO74UpJkeWpIFY2ikskU0%2BBhRZO7jJk%2B7GaHoYixEpbZcLBN7iyA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb2b2d7476ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":2134,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, ASCII text","md5":"95e9f5a3e5328b5fc9ec07454d7a3605","sha1":"c7f044fa836535a6fa9d2cfab9f3c18882ffa73e","sha256":"cccb0db6dcd69a31d175820c82e0c9960f52f07c1a52beb9efe3c1c62e1ec69b","sha512":"cc7fb990437a1643db8a23e68e11da33366d451e369d4a4edf8cd6bdca07e396a0c90ae2fcb81bbfd0ff245e5631d8f4c6f85db1586a329a44d59530060e3db5","ssdeep":"","tlshash":"9a41571b58f0202961a3d1b61af5790dbea0920bd50acc94f8adc6ac5fd5fc8c693988","first_seen":"2025-05-20T05:00:42.087435Z","last_seen":"2026-04-04T07:00:53.784232Z","times_seen":362,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/css/general.css?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/css/general.css?1758012018 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: qwmwkii3Aga6gSQ1o9AFZTSfqaSJRiodcsbQW0cLkoJ84wZuDQxZ02sVtndSD1aaV5UxsWGPszo=\r\nx-amz-request-id: 5R1M4ET1HYGHEMG7\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"06ff9563f46672fc5db70427b8e45423\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: text/css\r\nServer: AmazonS3\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nDate: Thu, 11 Dec 2025 05:55:06 GMT\r\nContent-Length: 1570\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5952,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"06ff9563f46672fc5db70427b8e45423","sha1":"2f3a90281447b1ef46747d61547d463da6447ebc","sha256":"c949c40e6360c68333d9216421e7b17e79ec848dce5ebcfde237fe4da3383cfc","sha512":"69efc46c80e564e79b02b1f3d8d67f26e9830bc11275c92cf99ef03b996fed6ae0a32580d77c7560f7c657ab53f055da5f013f3812bca33ff076c61c22469a79","ssdeep":"96:YswuUShreZyd9fjDU+MCfwlWKkuww6wwiuaCADOD4DX:hSydJ/Dewvw3uJAaD4DX","tlshash":"c1c154962bb16448750bf5a82eb62764631c8003e24fdefdb6d0309cdfc52d856a27ca","first_seen":"2025-10-14T01:40:31.014503Z","last_seen":"2025-12-11T05:55:35.824453Z","times_seen":3,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":55,"dns":19,"connect":3,"send":0,"wait":3,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vnljag.hottzone.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35348\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 10 Dec 2025 00:13:10 GMT\r\nexpires: Thu, 10 Dec 2026 00:13:10 GMT\r\ncache-control: public, max-age=31536000\r\nage: 106917\r\nlast-modified: Tue, 09 Sep 2025 18:39:37 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35348,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35348, version 1.0","md5":"6e192bc03c1ec5b2ba6b1281ae4f4a71","sha1":"54dd8ad0f73f88eb7c28888d5582380a978f6571","sha256":"8fb387ef4c02189952d5644187a217863e71db410f9dfb3b0afd0ebc4447bec6","sha512":"412aec2aa07af44d4f5e889ddddb9af73b89cccb793aabbb1161583f3d13ff0adc2053edb329a039fa5bc7c9f5b4a69170365e3ad29cd95a8b81fe9997ae1f7d","ssdeep":"768:Dbm/Jw6U5CNNTG4IwnW0kpZ/NXBeh58pFpS0Lz6fihG4iW3lpsii3AYNb:umF5CN5GVwnONBV20Lz6fihGs33siiQk","tlshash":"97f2f1817ff58f13286ab078b5bf8f5b4778a348509674af92c3e7b48c851c85f12891","first_seen":"2025-06-02T19:11:03.283598Z","last_seen":"2026-04-05T09:02:54.882443Z","times_seen":22538,"resource_available":false,"data":null}},"time_used":598,"timings":{"blocked":288,"dns":0,"connect":90,"send":0,"wait":8,"receive":2,"ssl":134},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/images/video-web4.mp4","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/images/video-web4.mp4 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nx-amz-id-2: wKSNArKt2fxhclrtg+9W1+5nBjFu5kqxmfOuvOPw7lCqrn5BFntGmIW4yVD7124cuquyw17VSyU=\r\nx-amz-request-id: EHDRK104J4D2WMT9\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"49f692be556f4eddeb83781c6d1784f3\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: video/mp4\r\nServer: AmazonS3\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nContent-Range: bytes 0-2011761/2011762\r\nContent-Length: 2011762\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2011762,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"b0de573e9c6f8839d1461630360aa9d4","sha1":"8d269b760aca9a52a9ac2cc71db60050abf58baf","sha256":"47c3f0afb21dd6f14597ea9394e7ff571ba7a60b3ffbaf597a2478bfb46a9764","sha512":"abf26a048afecd8c92f56182cbd0ecb0707f57269a25d0500f807220c23a3d57c31c7f93cb837d3f9950453cdfb9087a54a77a0c29604d7a77a007d042a64bc3","ssdeep":"24576:KM/P8aKTj9ityWkOQFpFI/CjOKw7jYdw0aNGy7c4T:r8aWgtyWbQpYCCKw7dOyrT","tlshash":"662533e5e3887201e81637b0d32e3fbb956590dca021647eb0a0cc945ed29fd5ce29de","first_seen":"2025-10-14T01:40:31.11541Z","last_seen":"2025-12-11T05:55:35.820272Z","times_seen":3,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":170,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/images/favicon.ico","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /images/favicon.ico HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 3PLd1JbxzMUZnvLfJ08LlqJVa0X1bm3g8lDKKuDaPcpHRGpUOyvL763tb+Zgy/zeSb8kMvb/P10=\r\nx-amz-request-id: 2XWP9N688THY1C8H\r\nLast-Modified: Wed, 07 Nov 2018 08:41:38 GMT\r\nETag: \"4cdf3256cd7b8ec3917adb79d6bf457e\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/x-icon\r\nServer: AmazonS3\r\nContent-Length: 4103\r\nDate: Thu, 11 Dec 2025 05:55:07 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4103,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"4cdf3256cd7b8ec3917adb79d6bf457e","sha1":"bc615337e9223183a126c8fb649774866fb53e69","sha256":"fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0","sha512":"2bcd90a667b80393690e244a979e36e9f482b419e52302571a41412aac296aac1d58f81787b38d00a00257dca8bd3dce7cfe6ab8ef12aa3a91e0801ee3c3f21a","ssdeep":"96:LSDZ/I09Da01l+gmkyTt6Hk8nT2JCkun8i01FZZN:LSDS0tKg9E05T23un8h5N","tlshash":"2e818daf99b0d47f7938fa400dce8281e279256c197637ad94e5c5ee00a7b031bb0232","first_seen":"2023-04-08T14:37:37Z","last_seen":"2026-04-05T06:05:37.480303Z","times_seen":8551,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"true-date.eu/a/Em0PUj0Lcw3G0","fqdn":"true-date.eu","domain":"true-date.eu","tld":"eu"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-11T05:55:04.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-date.eu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 03 Nov 2025 18:04:02 GMT","end":"Sun, 01 Feb 2026 19:00:06 GMT"},"fingerprint":{"sha1":"3F:56:EC:BF:F8:AC:FE:EF:D4:1E:23:00:D7:E5:DB:49:26:F3:32:08","sha256":"F6:B4:1F:13:CC:70:32:B6:5B:BF:04:80:95:D0:70:5B:65:1D:47:41:D4:F4:FF:A0:14:9C:47:B0:36:93:B7:94"}}},"request":{"raw":"GET /a/Em0PUj0Lcw3G0 HTTP/1.1\r\nHost: true-date.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://banghotties.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:05 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\ncache-control: no-cache, no-store, private\r\nx-robots-tag: noindex, nofollow\r\npragma: no-cache\r\nexpires: -1\r\nset-cookie: 11868452804c8a2bb86650b580125ff5=11868452804c8a2bb86650b580125ff5; expires=Fri, 11 Dec 2026 05:55:05 GMT; Max-Age=31536000; path=/; secure; httponly; samesite=lax\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cgKam9shcJEfZwgQSUV486uGKKTxaRCqRnD8q9za%2FudpSlaI3j0rG2IZygurHXlIDHUYtvCVNZf17nKSQFycC9poa9yHHFV9xsA%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ac2bb23ddef5696-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1804,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"8dd11e36fd6b76788d683b385f7e263e","sha1":"8d3195a9983d0ec37208a8d3af94cee1a2a8b698","sha256":"c5f225b87f788c43673e5f0902b94218bb6d523dd07ba70b2ec6894c1534dd7f","sha512":"50ca06726875dce1f8437a80b5e78095cc37a936430f5f8356e07fb127de2513029b297fc7fb07f87630a6b2469e8c39bfca6649519f0e39d379c232233c119b","ssdeep":"","tlshash":"f63166f72cb6d0a5a123d6e507faf51c96d72207d544c870f89e821c3f44b560ad26cc","first_seen":"2025-12-11T05:55:35.826791Z","last_seen":"2025-12-11T05:55:35.826791Z","times_seen":1,"resource_available":false,"data":null}},"time_used":463,"timings":{"blocked":71,"dns":52,"connect":1,"send":0,"wait":321,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-11","alert":"Sinkholed","trigger":"true-date.eu","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn-dimi.akamaized.net/landings/292481/1758012017/js/translates.js?1758012018","fqdn":"cdn-dimi.akamaized.net","domain":"akamaized.net","tld":"net"},"ip":{"addr":"2.22.55.120","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a248.e.akamai.net","organization":"Akamai Technologies, Inc."},"issuer":{"commonName":"DigiCert TLS Hybrid ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 18 Mar 2025 00:00:00 GMT","end":"Wed, 18 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"51:B3:16:11:9C:44:F0:40:BC:CE:8A:C0:3A:1A:D3:BB:C6:47:40:B3","sha256":"BA:56:C4:EE:2A:1C:8D:B7:10:BF:E7:3A:1F:A3:E4:B0:AD:3F:29:0D:01:92:58:9B:8C:71:DE:44:99:61:C6:96"}}},"request":{"raw":"GET /landings/292481/1758012017/js/translates.js?1758012018 HTTP/1.1\r\nHost: cdn-dimi.akamaized.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Nqh7UHbDV5niHFzDbQ8R5+ddUTgWJVefLHTdztphfPsyjglGTgQpJj0FbNeapvwXIEbmt0jF3oU=\r\nx-amz-request-id: 5R1T0GF0TP359XP7\r\nLast-Modified: Tue, 16 Sep 2025 08:40:20 GMT\r\nETag: \"9ec06d331bc9038813e31d249de27101\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: application/javascript\r\nServer: AmazonS3\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nDate: Thu, 11 Dec 2025 05:55:06 GMT\r\nContent-Length: 7042\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":18065,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"9ec06d331bc9038813e31d249de27101","sha1":"5f91a3abc9169c9fc5c198506d8f4cd797ed6f64","sha256":"80733b6bd77a2f3448630e47f1c874b06f3b750991da1cdae31a693f2f926a57","sha512":"9181393f51bd8ecc0b25c5742542afa24d8eda55cc6da6dbed7e0b6d52c91dcb0eacef23f213421d659c648cb9eab7e8bd39ca80475f141d72a66dca8af96de2","ssdeep":"384:fhKPUHN0S5HdJYp3+SnmrgU7/LhsYJvs3q/87+8W+:fhoUSixsmrFjJvKV","tlshash":"09825e374a8b13b5c0b0d6269206b816f469a37f9f55ee27387d24180fb2c3481ef5e8","first_seen":"2024-12-22T05:28:40.844271Z","last_seen":"2025-12-11T05:55:35.828639Z","times_seen":45,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":54,"dns":16,"connect":3,"send":0,"wait":3,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Rubik+Vinyl\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:06.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:58 GMT","end":"Mon, 19 Jan 2026 08:34:57 GMT"},"fingerprint":{"sha1":"56:14:7E:EF:FA:D2:CF:DD:3B:30:9C:AE:7A:C9:AD:9E:A7:87:3D:E9","sha256":"72:DD:0F:82:4D:8A:09:2D:BB:5B:E6:1B:6F:09:F8:1E:BD:BD:D3:3E:B8:A4:8C:B9:49:13:4D:DC:D7:EF:EA:77"}}},"request":{"raw":"GET /css2?family=Rubik+Vinyl\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn-dimi.akamaized.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 11 Dec 2025 05:55:07 GMT\r\ndate: Thu, 11 Dec 2025 05:55:07 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1806,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"455736390752a3a4775e1724400e6879","sha1":"de4a30e06ad91280e2de5b70d3c4dae327c7e1a5","sha256":"dc3c52630cf210c51b98cb13d91faee1ac54f34a9ffd374f4daab07f72deaf2b","sha512":"e756353af621b5d68ce65b39c8c7145557bd44316445e50e41397e5795b54427658f9f6982411cd0444ab0bdb22f40dd0b29d713234fc234d7b80f89c1583b6f","ssdeep":"","tlshash":"66311f8144278440fb971ce227cf7e36ee0e12253854d5394efe1894aca6d7683a1b8d","first_seen":"2025-06-15T17:57:05.067031Z","last_seen":"2025-12-11T05:55:35.829476Z","times_seen":9,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":127,"dns":1,"connect":9,"send":0,"wait":20,"receive":0,"ssl":115},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/firebase/8.2.2/firebase-app.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vnljag.hottzone.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 11 Dec 2025 05:55:07 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5762\r\ncf-ray: 9ac2bb33798932fa-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5ff7ae08-4d44\"\r\nlast-modified: Fri, 08 Jan 2021 00:57:44 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1648059\r\nexpires: Tue, 01 Dec 2026 05:55:07 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zgMuhED175%2Fv9Wf0lbwHOdIGD55XlkmKEI8Lui15S2aRDt00FGXgkXE45Cp%2BKckEJbMdesGYNRu%2BJLJ7RUauX8CSIcO5AMz1uRZqFHKct8YJARtVjWhafhziB9Y7kB2bNCsjE%2Fv%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19780,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19780), with no line terminators","md5":"5e2898beab1505a629bf1254fbdf9ed8","sha1":"f17ac22f600d694ae4341c4da46576e3fec0e6f4","sha256":"00d770fea1249b4be3f55a037a9edd20c1fe55bda8ab1e4b6251e56cd74cd05b","sha512":"f4897b323c78eab01815bbdb302ebf286e8c43a0faa2bbeb4504d7329e0a68ebd6a832e71e3d1f4358d5b77937faf77e3411027c0e2d9b812011f88643ee6ca1","ssdeep":"384:mcaM4MIyXfihMRfF0Fg0ABMsVaAkdB2NAXtICZDzU:EM4MIyqqRfF2DKUYYICZDzU","tlshash":"da92d7ccf7e2b062539350b8443f310ba33e2558984c80a8b659e5e66df690f616ff79","first_seen":"2024-08-13T13:55:42Z","last_seen":"2026-04-05T06:05:37.478128Z","times_seen":3385,"resource_available":true,"data":null}},"time_used":173,"timings":{"blocked":82,"dns":8,"connect":1,"send":0,"wait":9,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubikvinyl/v1/iJWABXKIfDnIV4mQ5BfjvXXdzI1Gzg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vnljag.hottzone.com/?utm_source=1e3a4e532f1c7040\u0026ban=other\u0026j1=1\u0026j9=1\u0026s1=206556\u0026s2=1993171\u0026s3=42864\u0026click_id=mlClick-4ekiMN9t","date":"2025-12-11T05:55:07.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/rubikvinyl/v1/iJWABXKIfDnIV4mQ5BfjvXXdzI1Gzg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vnljag.hottzone.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 38412\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 05 Dec 2025 19:00:35 GMT\r\nexpires: Sat, 05 Dec 2026 19:00:35 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 07 Dec 2022 17:42:00 GMT\r\ncontent-type: font/woff2\r\nage: 471272\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38412,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 38412, version 1.0","md5":"84beadc23511084496a14cdc26af9595","sha1":"f56f2d870a678d0b027b6d5090ce6d81c28d346a","sha256":"8c03d32071ae5f28b2e03a9ded4218fe09c603b998d121f46a821ed1199e5d04","sha512":"4213bbbc6df50f41711298300bbbce34cdf51f45db6b5f4b5478f1c7883a4848a6e923e35ecea5ae7476cfa113503c83206f9396ff1b3c6416ed91d7293f4f39","ssdeep":"768:GBvtrsUgVFZpVpov5dyJP487ETpxTQPGj493sZscySz8GktNUMbED/E:ssUgzzV65d4P4872Q+dacyJUNE","tlshash":"460301fc271c5689668bacbcbc8018002587d86356940e7757bda7bf7b3e4c996c1c88","first_seen":"2024-12-24T12:32:26.932049Z","last_seen":"2025-12-11T05:55:35.832504Z","times_seen":14,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":261,"dns":1,"connect":8,"send":0,"wait":9,"receive":9,"ssl":252},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}