{"report_id":"58392612-b277-440c-9c71-f3a25903a749","version":6,"status":"done","tags":[],"date":"2025-08-14T16:41:22Z","url":{"schema":"http","addr":"m.arabseed.show/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"m.arabseed.show","domain":"arabseed.show","tld":"show"},"ip":{"addr":"104.21.68.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"title":"(1) New Message!"},"submit":{"url":{"schema":"http","addr":"m.arabseed.show/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"m.arabseed.show","domain":"arabseed.show","tld":"show"},"ip":{"addr":"104.21.68.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-18T16:41:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"amazingblackened.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.251.9.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-13T15:10:36.82984Z","alert_count":0,"request_count":2,"received_data":62206,"sent_data":1094,"comment":"","tags":null,"fingerprints":null},{"fqdn":"preferencenail.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":20606,"first_seen":"2025-07-08T12:55:47.271261Z","last_seen":"2025-08-12T21:41:35.260887Z","alert_count":0,"request_count":2,"received_data":171926,"sent_data":818,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.show-sb.com","ip":{"addr":"172.67.170.115","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-08-20","domain_rank":187612,"first_seen":"2024-08-31T03:46:04Z","last_seen":"2025-08-09T06:08:59.436853Z","alert_count":0,"request_count":1,"received_data":1951,"sent_data":466,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"flushpersist.com","ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2025-07-01","domain_rank":23810,"first_seen":"2025-07-08T10:43:12.76905Z","last_seen":"2025-08-12T21:41:35.299966Z","alert_count":0,"request_count":2,"received_data":992,"sent_data":1526,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"kit-pro.fontawesome.com","ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-10-18","domain_rank":228478,"first_seen":"2019-05-02T12:15:01Z","last_seen":"2025-08-11T16:31:59.958231Z","alert_count":0,"request_count":15,"received_data":518957,"sent_data":8199,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-13T15:14:14.224423Z","alert_count":0,"request_count":1,"received_data":17441,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"x1.giriucon.com","ip":{"addr":"172.67.128.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-11-08","domain_rank":1654331,"first_seen":"2025-04-14T21:44:18.935371Z","last_seen":"2025-08-10T03:58:16.336766Z","alert_count":0,"request_count":1,"received_data":38110,"sent_data":414,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"weirdopt.com","ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":37519,"first_seen":"2025-07-08T12:55:47.272157Z","last_seen":"2025-08-13T04:13:28.842908Z","alert_count":0,"request_count":1,"received_data":377,"sent_data":414,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"m.media-amazon.com","ip":{"addr":"54.230.216.66","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2016-08-18","domain_rank":3022,"first_seen":"2017-01-30T05:27:40Z","last_seen":"2025-08-08T02:51:30.393856Z","alert_count":0,"request_count":2,"received_data":17397,"sent_data":1058,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-08-13T15:12:46.750635Z","alert_count":0,"request_count":1,"received_data":344890,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"a.asd.homes","ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-02-27","domain_rank":14992,"first_seen":"2025-06-12T21:18:19.770749Z","last_seen":"2025-08-12T11:29:15.923777Z","alert_count":0,"request_count":13,"received_data":775220,"sent_data":7729,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"WordPress Super Cache","description":"WordPress Super Cache is a static caching plugin for WordPress.","website":"https://z9.io/wp-super-cache/","common_platform_enumeration":"","icon":"wp_super_cache.png","categories":["Caching","WordPress plugins"]},{"name":"SweetAlert2","description":"SweetAlert2 is a JavaScript library that provides customisable, visually appealing, and responsive alert and modal dialog boxes for web applications.","website":"https://sweetalert2.github.io/","common_platform_enumeration":"","icon":"SweetAlert2.svg","categories":["JavaScript libraries"]}]},{"fqdn":"professionaltrafficmonitor.com","ip":{"addr":"18.159.236.121","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2025-01-23","domain_rank":16376,"first_seen":"2025-01-25T08:56:07.448138Z","last_seen":"2025-08-08T14:17:29.980479Z","alert_count":0,"request_count":4,"received_data":1432,"sent_data":1896,"comment":"","tags":null,"fingerprints":null},{"fqdn":"creative-sb1.com","ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-01","domain_rank":22211,"first_seen":"2025-08-08T09:32:32.509707Z","last_seen":"2025-08-08T09:32:32.509708Z","alert_count":0,"request_count":5,"received_data":94485,"sent_data":2282,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"unpkg.com","ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-01-06","domain_rank":1093,"first_seen":"2016-01-07T23:26:01Z","last_seen":"2025-08-13T16:35:58.871998Z","alert_count":0,"request_count":1,"received_data":68454,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tracking.eu.flamtyr.com","ip":{"addr":"138.68.123.32","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"The Netherlands","country_code":"NL"},"domain_registered":"2023-09-22","domain_rank":509890,"first_seen":"2023-09-23T12:14:54Z","last_seen":"2025-08-13T06:56:22.801846Z","alert_count":0,"request_count":1,"received_data":37555,"sent_data":708,"comment":"","tags":null,"fingerprints":null},{"fqdn":"m.arabseed.show","ip":{"addr":"104.21.68.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-03-30","domain_rank":986637,"first_seen":"2025-03-21T05:44:00.827328Z","last_seen":"2025-07-31T03:46:06.661563Z","alert_count":0,"request_count":1,"received_data":533747,"sent_data":559,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"amazingblackened.com","ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":179364,"sent_data":898,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"torchfriendlypay.com","ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2024-09-01","domain_rank":191479,"first_seen":"2025-07-30T13:31:49.539518Z","last_seen":"2025-08-13T15:45:12.285093Z","alert_count":9,"request_count":9,"received_data":20949,"sent_data":11601,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"20b7c31d89a2318e714fdb393f2fb6f6","sha1":"973cb0ecf41ba680e2c72c4db4985c180f5e48d4","sha256":"f9154b7414063a014d8543bedd2b2c93dbe104bebb61a56cbe4efcc9ecc434e5","sha512":"4b8571343a68a1e8cc6d5518aa4568ac736b8c936dd4a332cc9cdb430287f6ee9f46f3498026576d2b133055ed6162a6a137251bea11fa2f0280e714481e2ed9","ssdeep":"","tlshash":"65d0955a50b31208cdd7240530175108fca096782714d810c158cc354eb4f70501f9cc","size":248,"data":"","first_seen":"2024-06-10T20:39:28Z","last_seen":"2025-08-14T16:41:30.555791Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85386,"data":"","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4b34dc126251e0660b7b33eda4420787","sha1":"367d4f35cb21cc1fbbe2a44dfc58e57bec34f715","sha256":"17c93ac9f7555207600c8da023304bc2775e2fe5957295957242f5f22dd79176","sha512":"f82a8db640552a1a2918bdb2fc1cb30cd2c006fab8ac01215abdf1c21317493150d006903136e448af42185f3cef084b990e506952084fccdedd985ef88e1e53","ssdeep":"","tlshash":"72f0fc74b914d3745b73a169a5afe24e23280a0b9145834d301d934f08f1fa71add6ca","size":562,"data":"","first_seen":"2025-06-12T21:18:26.171675Z","last_seen":"2025-11-01T18:08:36.632899Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/sweetalert2@9.17.4/dist/sweetalert2.all.min.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c0de18caa00c8ea26099fb8cd50b05a","sha1":"b81e4affd6f879f32d6027e404cf477257663c39","sha256":"1cea8f5e200fcfc0e1d1b0797151f138faa548d850f9dde66a43424eb93f9450","sha512":"87f86a1120219010ce81cb71c7925fe5803abd4bfc9dcbdbbd39e0e9ec3a44ecd95ad8186bbfd823b0ae80d38ce5c7c13612dd1aa54de9ae9e0db11425e13f4e","ssdeep":"768:LaCDIKBK6bAQ14K2PkXuzZudkndA1dyKW9RuRFmPu4uqrH3CVdewQLwqcGc3BfwX:LaSBrL4K2NgdkdALdWaRFfsEX9wCO","tlshash":"f163f6857a403123a6ab417968ebe309b6b5a542fc330c54f129d0944ffbe8f1573bb9","size":67597,"data":"","first_seen":"2023-03-08T15:28:13Z","last_seen":"2026-04-04T20:20:19.370428Z","times_seen":2290,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fd67747667acdee0a377e7710f20e0d1","sha1":"d276d694ce06b0d68feb40db103d0c9375c85033","sha256":"f4becb32145efa789f3af58b62987a2d6d9d2e6586ba109e264455eda4cc8632","sha512":"9b5237d60378b578d14cf0c7f5a1313a1f78d0093b5108813ed53638f20ba069fcaef9053d9c7ec3affc965e32028ccec1f5af1dcfa6f38ffa715a1022fb3491","ssdeep":"","tlshash":"f3c02bcc220b5c7081fb27008b3fbe00f0123228e4d17d32480923044e30f07db44814","size":153,"data":"","first_seen":"2024-06-10T20:39:28Z","last_seen":"2025-08-14T16:41:30.557571Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-D8NNSFR7SN","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"30d44a018f6d18533ec0e514239d1402","sha1":"bccf2b6ec8963c53553b459e2e8f5c7e2cd791ba","sha256":"fd207ece2613e1e415dd62e0d3b1211c73ccde0db5500b71ae9892e0523ddaec","sha512":"1378105688439d474e5744944925abce56301702067f80f124d16066f92a4695dd81df74e80368a040b5f5a37636a456edb0b59cd1f4e74dfa9ec1707d7a6e01","ssdeep":"3072:xvUqGg61JLwDPLVAvLdzT0Sz5DHSb5qlUmxxgJgJ471MSXw1PMqaW/uSoTQtF02n:KmLLVAjdYtIxgwhqW/uSoTuFB/KPDDI","tlshash":"117419cd73d670629392b478503f008bb17b28a2f44cc899f186d9e52e74aaa5177f7c","size":343889,"data":"","first_seen":"2025-08-14T16:41:30.51504Z","last_seen":"2025-08-14T16:41:30.51504Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85386,"data":"","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amazingblackened.com/67/10/54/6710543788e9f02584f3584d5416d1e3.js","fqdn":"amazingblackened.com","domain":"amazingblackened.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"introduction_type":"scriptElement","is_inline":false,"md5":"a786e36e8e2807131ee3278437c32419","sha1":"05e3fa4248921be9db04f695057c861cb7e511f1","sha256":"f04b5d2cf8d9bac9d6eb390da26e774609f9e6660e7eb9c91c7004b21afeeb35","sha512":"ad25e3e694ac5e50ac3c4ebe769f98141e8c013810c01e1ead8b3161c7f356d29989f15a86ad7694c38cd883b982e4b802619dfc859758633be8c21635168826","ssdeep":"1536:PwEYGbRF1Psv/8k8gmAW9ak94Hcs8yOAt0y6hzlIWkmAfOLAa/m:PwEVmmzd48s8BEqhzlIWcfOG","tlshash":"99a3c8987f69f02d426590f7213f5137e21b0d45908ce5e8f403f5a82a7c75be8bae26","size":105128,"data":"","first_seen":"2025-08-14T16:41:30.531507Z","last_seen":"2025-08-14T16:41:30.531507Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6e1dd97b80ef537f5f82cba1b4ba482e","sha1":"32ccaaa79283a0376d028aefb562f44b7e919bfe","sha256":"afe60ffd4bd1f01c4acb3c18e424bea1a0e8ac2b5c91a18ff1cd268c54ea1442","sha512":"1f6d16dc100e3631e6aa0b1c0f6f4c8220e062843f1f9dbc4a78a1ded7705055bf8fcbf3b42c655b153fc1f63b821fab3e3624c9dc7941f2688a1fa84772697a","ssdeep":"1536:6jExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvak/:6Yh8eip3huuf6IidlrvakdtQ47GKP","tlshash":"5793f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89478,"data":"","first_seen":"2024-06-10T20:39:28Z","last_seen":"2025-08-14T16:41:30.558397Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0c892fedc97b2f0920fc484be9a9b3e1","sha1":"aa4986c34d1704c14cd14b512953ce6127c0dec9","sha256":"d2b821ea9f6e4296b4d66b5fababfc8ba4d389628567f74084ff05f2e72a8f03","sha512":"8522b3ad8f77233ebddc58a19843bee8b73119f58d50b5d78b5c8e13afa41d821e44a83939bb2cec3808d9a9fc710b852425ca055031b66c778a33c21e1df563","ssdeep":"768:uCI7dmuMFAAJG4dlQKNORpnXGAtep2lcwJeL+wr2RSGc7UuHjRUQuFBt31:1ITMFC4dbMVRSGcgRDv","tlshash":"7a137346b3202d2a869b61a0663f160bb23a241ce414547d7d79e6de6d7dc8c213ffbc","size":44344,"data":"","first_seen":"2024-06-10T20:39:28Z","last_seen":"2025-08-14T16:41:30.559199Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ecc28a60ceed33607040b1c6fd75a990","sha1":"4d737ea03eb0c60a9532f9f79febca468f062f87","sha256":"21d768daf1aad85e6b5b0214c57ab744ba43f1a09e285fa24c1e21baee92bd7d","sha512":"86d4ab5069cc6fca74fd08231ced462c0d572e37bc733749120a17112a37925d8e1976b85bf9c684e5f90759dfe648b6d46b98aa43dac05fa7cfac6c2fa7e3ef","ssdeep":"384:pHQ/FzceEG7P3tOfZ3emMbwVemElU6JnDSyQ0JJj/1y0ZG/k0lY3Ld3GP9IXnxl:Sdj7P3t5BpFNbhl","tlshash":"0bc2c6a37108171683fb9a75001f1514343ae2b1c495a67cb8799cee69f8d09ca3b7bb","size":27898,"data":"","first_seen":"2024-06-10T20:39:29Z","last_seen":"2025-08-14T16:41:30.560137Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amazingblackened.com/6f/4f/5c/6f4f5c3f5bfa5f5651799c658cb3556b.js","fqdn":"amazingblackened.com","domain":"amazingblackened.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"introduction_type":"scriptElement","is_inline":false,"md5":"8a4ac577b5fdf3b10fc39d9ace988ecd","sha1":"d47b1a8f0d9c036819ca8a33945be991e60b8513","sha256":"a50ece24fb445797facaa90fa3e94f0d2192db3d57b1f4a1f57d53ab78ffe99a","sha512":"f0f7979699fd0a03a4734f72f4809bf0f35cc6f97a45608d1029e1e18b1972ca735694742df417d6af4530d1aa69bcee0d9dcf36d31d80840dade59c68762f5e","ssdeep":"768:l2boYMmKJeqw648+QhS8u+Jcj/XcdFjNHmOdY08kUbTehzbcepwPf:l2bozH4x5O+jvc/dY0U3fX","tlshash":"ed63c7483f51b27802e6b8fa712fa61af0265c1195d8e0d8f503f4deae66719f035f25","size":72612,"data":"","first_seen":"2025-08-14T16:41:30.543666Z","last_seen":"2025-08-14T16:41:30.543666Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d95989fdc505668aa0cdab6801a60aec","sha1":"c3865f45d43d147007458d6a0060fe22a1f21d9a","sha256":"7c8a321d61c54ec309b143bf0d49b6e357f758b6b5cf3cd3ea0df444521d62ba","sha512":"12766ce2ff4b8c47d6ec62eba55c57e6fbd6e6f7db3628ad75a57698ef3f6dcef08561f9975f1f3066330b4914b86c548a6827f264b8adfaba1841c629dc0035","ssdeep":"","tlshash":"09d023f715014d1eb1c8c0d80c4c15f8ef61e1383e814867ec018c0c17f29dc7460181","size":227,"data":"","first_seen":"2025-06-12T21:18:26.179265Z","last_seen":"2025-08-14T16:41:30.561028Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ea01a6d0455ae2d83f203a259e3b96e6","sha1":"7151f1a655e33bf7c9c159eb341c570abde36982","sha256":"98199b8b7ebde0e19b4590c48f60d1a98326328bb4dcfdd8d595cf1b910e4720","sha512":"94be30f8fc9f42bb9396de34c5038ce306754c662d4ecf47cd537381026f76d36c0140223da03f833751f371c598e6f80582f86bd11b60ebb24c6dd4892dcbd8","ssdeep":"384:Ez1HsD2vDwQGIne5mPWzo0wRK+IGmtdCc1X:E5MD2vDwQGie5mPWzo0wRytdCcR","tlshash":"fcb29709f278556952ff302d656f65cc253978a2ee035ca2e8bc0de44a94f783427b2f","size":25582,"data":"","first_seen":"2024-06-10T20:39:29Z","last_seen":"2025-08-14T16:41:30.561933Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.11.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.11.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 3260\r\ncf-ray: 96f1e5bb0cfa12a5-CPH\r\nx-amz-id-2: Gyaw7E9rKzq8QE3ewnxADggZQoiHjCKDHc2Aw5SiC8aKxhrLVLJkSksPldfUhbBcNMlOtZL1vWc=\r\nx-amz-request-id: 5JAQ72WAMCBRECR3\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:07 GMT\r\netag: \"719eba8f49f7e9a13a940f69ab1bdac2\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 2628234\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3260,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 3260, version 331.524","md5":"719eba8f49f7e9a13a940f69ab1bdac2","sha1":"5fb47878674805e4012c09daebd089956d1b0af5","sha256":"1b7d8123deb35f4cb35663b368f57a7f10a759c5653dc2ac16338ba6312932d7","sha512":"9c6dc231d922b6345e3a4b77702e625be112fb3aedbd3570e9d4c29603bd720fed50227abd4a011df9962e6e46188d93b95a2c3516eb5ff3fb562034598af2c2","ssdeep":"","tlshash":"de618de7552a4fd3e918e2780fb0c17e8015c8b2033d8611fa99c3f8b44a9c864d97ce","first_seen":"2023-11-29T02:57:36Z","last_seen":"2025-11-09T15:56:10.642571Z","times_seen":38,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":70,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.13.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.13.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 6104\r\ncf-ray: 96f1e5bc38a612a5-CPH\r\nx-amz-id-2: uqJ6ne2QpBBfjvMBzeHjWKvPOgoqw2XakIrC2nH/ByovOCZL2nL8QcE9/2GlueRIymT4pKQDcrM=\r\nx-amz-request-id: WAEEA5BXFBN9BQ4Z\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:07 GMT\r\netag: \"facab1905505b5511ec9be32058e4ba3\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3748097\r\nexpires: Fri, 14 Aug 2026 22:29:48 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6104,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 6104, version 331.524","md5":"facab1905505b5511ec9be32058e4ba3","sha1":"712a96e58a0ee55e75705e893d09a617e31a44c6","sha256":"b977ed531e53eed1e350dc2d4c67760b54001632dad9fce168b6a584307e4fc3","sha512":"7a538db00cdf7f76dbd4a1e9d86624e1f8b4d7843ef21169fe7778d857cc8e73d4b83e3c946131c8f4873f01d15994e17ce7326dd67d3c96a45fe209bcc528e7","ssdeep":"96:0Ox6H9I5Q5PQ6/Z0yTSs4uwkZsJNJhE8aHmF0u32qpIxsnhl1FsqRG6PindTMKj:jx6H25QV3/WfPJbJhE8ymKaPlvNP6zj","tlshash":"03c1904e015eac5ff2512ffd95185ed13cfd5a06acec7647a39622030194b48f917bb8","first_seen":"2023-07-25T08:33:36Z","last_seen":"2026-03-27T17:16:19.014414Z","times_seen":61,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":41,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.9.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:04.028Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 20408\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 Aug 2025 19:09:20 GMT\r\nexpires: Sun, 09 Aug 2026 19:09:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 423104\r\nlast-modified: Thu, 29 May 2025 23:49:47 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20408,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20408, version 1.0","md5":"e8730678d4610fa908d3cba1ef0b4ddf","sha1":"1efcbee909ce74bf04878d74867f12a1e41ae7a4","sha256":"e921785496ed2d98c2257c88a6f838afa6acbee05cb8467048501bfe2a301461","sha512":"d7c3f81ad11ac5b3e6f454fbbb9be0940b3e8da93cde0b80f9a91a8259966be466b4d6a0fd5527fcc6c8f218aad8ffd0124bb29dfa08f6ca658ce49fe9e37e6c","ssdeep":"384:D+h1xN53scre+kLtT5+wpcR98ffVvdSMyNaHAUvLFNPBtn2aotFn9mTCAKDi055c:Ss/XRT5+wpM98ffxd6uZZRXnemWDj5WL","tlshash":"fa92d1cdfc0e5797a8e14ee93c0a7a4dd76f438af366a94b25e66122e67a55c040320c","first_seen":"2025-01-09T02:30:28.977279Z","last_seen":"2026-04-05T13:53:41.672046Z","times_seen":56201,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":111,"dns":1,"connect":24,"send":0,"wait":28,"receive":7,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2813\u0026rd=2813\u0026fd=601\u0026bv=25.8.7886\u0026tmpl=70","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2813\u0026rd=2813\u0026fd=601\u0026bv=25.8.7886\u0026tmpl=70 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":714,"timings":{"blocked":309,"dns":27,"connect":92,"send":0,"wait":94,"receive":0,"ssl":188},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"18.159.236.121","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.367Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://a.asd.homes\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=fda08bf4-a0ed-4eda-9e02-23892fb2de08:3:1; expires=Sun, 12 Aug 2035 16:41:01 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"8f028e4b09ba1d2d572b8ded09a931b7","sha1":"647c1169a9fd0563702a6b4cdb4e33fac769a3c4","sha256":"6165a89a5e0b7f8586270dd67b014c03bd4a1b091a2d210ff97f991bc20fc380","sha512":"363b9a4f83b83cb9a1b6861b73e74e1976cb89ca7b6d13b886ebbdb867e646bd002e1e30f9a021657cb81cd10645c576d5391da7ca30a3facc9d12898092a02a","ssdeep":"","tlshash":"df900470f7c40ff0f573304d1d455454434cf101147550d414c7455110004410fd5357","first_seen":"2025-08-14T16:41:30.493153Z","last_seen":"2025-08-14T16:41:30.493153Z","times_seen":1,"resource_available":false,"data":null}},"time_used":321,"timings":{"blocked":149,"dns":6,"connect":21,"send":0,"wait":21,"receive":0,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-light-300-5.10.2.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 17536\r\ncf-ray: 96f1e5bb3d5812a5-CPH\r\nx-amz-id-2: O0yYSvEIUhGRO2C5lsDhIkTQcU/BbJoNyCSbULnRehxwrqaRiN9/iPBxg+8pusTIM2DMfgkq+0SIod/lhUvzuoUc6UQfxs5fYWOb7hwDRrU=\r\nx-amz-request-id: WAE7D28267S8ZWZ6\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:03 GMT\r\netag: \"47b02bb509cd558625012e734ab55a7b\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1177997\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":17536,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 17536, version 331.524","md5":"47b02bb509cd558625012e734ab55a7b","sha1":"e3b91e17f1529b01bd3d26c6e1fefe358fbea5b6","sha256":"5d3b6c7a815b86a402d3e8f103076d1a432a0e4ce61947bbdfda887c78da0869","sha512":"cdf4ed706fae883d870505eb6d7fa98472242d7017524e9762a69412ca07c3cd0e538b940bf09f12adc23f4920b2fc246a11452ccb47c40d660f1dd3dfdcce67","ssdeep":"384:oYhM5Yhv8Q+Pa0Z5X2ZdMardyjFnKy7lTWuA+gSYvni:DS5Y98TCJoZr5xn","tlshash":"d372c0422230385dc8bc6badc9e02f072d024fd1ded2c8692c67dd9259d6165e1ed6ef","first_seen":"2023-11-22T05:32:58Z","last_seen":"2026-04-03T17:09:06.174808Z","times_seen":27,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":67,"dns":1,"connect":27,"send":0,"wait":67,"receive":24,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/notifications/rtb/windows/2/js/script.js","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/js/script.js HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LZ3DBh00AEwhYrLF5i1ygrXt28N%2F%2B3F4yPnQx0pTd3y4D6IJIVX7o4iN8b%2FjoKiCZ%2FpGlM%2BdJIfUTN1x7xXwbE9d0ws%2FHbs1OI4l0TgG\"}]}\r\nage: 154257\r\ncf-cache-status: HIT\r\netag: W/\"65aa86f6-17c\"\r\ncontent-encoding: br\r\ncf-ray: 96f1e5c28835abc9-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":380,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"78343797a9b445a3af484e2d74358e8b","sha1":"9df38b85c3df700b5753bd581015f8f24c4153ab","sha256":"e9e6f88bdaf3e832127d9255ccace72e1934a306129341817e2d4b10ca45c692","sha512":"d4f0c3a9feec1a92b27088f4e9269b5870e2a03cdfefefcca73f8727dd51c58d7365528a34ceddc3626ce972dd23fcc82e9b2a4d57ca4e85e604085611df3985","ssdeep":"","tlshash":"d3e02b386164523493b7d292619f2bcb2630421fd40a424e302c574f0de1fa612c1a97","first_seen":"2025-04-17T12:54:02.259015Z","last_seen":"2026-03-23T13:28:00.341766Z","times_seen":491,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":96,"dns":0,"connect":26,"send":0,"wait":40,"receive":0,"ssl":53},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/arbno.png","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/arbno.png HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 10998\r\nserver: cloudflare\r\nlast-modified: Sat, 01 Apr 2023 23:48:06 GMT\r\ncache-control: public, max-age=10368000\r\nexpires: Fri, 28 Nov 2025 07:04:56 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 1244164\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8u4v9E%2F5JjAHSQF%2FR5zS8FywZwBqI1g2PgMKSsCYBi5z4xxuOcnkR4dEBkdqi7H7EZXzuNmTc6IGK9YA05fEWAQBOBMCIRuhQA%3D%3D\"}]}\r\ncf-ray: 96f1e5b3bf13299e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10998,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 260 x 410, 8-bit/color RGBA, non-interlaced","md5":"fc1f6daa9521eec0e98fe7af1c81cda9","sha1":"3e4266baaee4985864995e96b1eef3a2dc777330","sha256":"fd566562723b570301749b86a9b41156278587d3da17acbad2ef6164963bc67d","sha512":"f3e90f34dc2d8cbb2b920a3e3005fd91fed84849acc828e03c7e851885fe54f34459d1e004c3dd83b520f697ce6b25299857ee22aec6d6633a1bf66c8e135e55","ssdeep":"192:ooJIAy/JJPewqoXasoO7AtqBqUQKxfZDW05Zr6VFQOEiIH1vxl:HIhDPewV0kvQ2xW05aQaIHl","tlshash":"473219d9263f7026f90b1fca095c698090b1feaa463e2e18806f646d75639041fddcf7","first_seen":"2023-09-24T02:00:48Z","last_seen":"2025-08-14T16:41:30.500182Z","times_seen":25,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:11:38 GMT","end":"Mon, 29 Sep 2025 15:11:37 GMT"},"fingerprint":{"sha1":"F9:52:70:4B:81:A8:F8:39:E6:E7:96:8F:EA:FE:17:FD:96:C5:32:E3","sha256":"D8:C9:87:B5:89:5E:D4:F4:8D:FD:98:3C:31:39:42:67:D3:20:27:14:A9:AD:F2:AB:97:A4:48:0F:94:F0:FF:A2"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 28254\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 0ca45359908cd20d3c04ac978b559ae5\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85386,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"resource_available":true,"data":null}},"time_used":174,"timings":{"blocked":64,"dns":1,"connect":17,"send":0,"wait":22,"receive":23,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.media-amazon.com/images/M/MV5BNjg3OTg4MDczMl5BMl5BanBnXkFtZTgwODc0NzUwNjE@._V1_UX214_CR0,0,214,317_AL_.jpg","fqdn":"m.media-amazon.com","domain":"media-amazon.com","tld":"com"},"ip":{"addr":"54.230.216.66","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images-na.ssl-images-amazon.com","organization":""},"issuer":{"commonName":"DigiCert Global CA G2","organization":"DigiCert Inc"},"validity":{"start":"Thu, 10 Oct 2024 00:00:00 GMT","end":"Sun, 28 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"ED:9D:2D:58:76:07:9C:57:88:75:37:D1:AE:71:6D:09:D2:50:48:81","sha256":"92:47:42:B3:EE:C6:8A:7D:96:6D:C1:0D:5A:C0:7B:E4:70:51:00:9F:F5:99:6E:42:95:18:5B:84:D8:7D:9A:50"}}},"request":{"raw":"GET /images/M/MV5BNjg3OTg4MDczMl5BMl5BanBnXkFtZTgwODc0NzUwNjE@._V1_UX214_CR0,0,214,317_AL_.jpg HTTP/1.1\r\nHost: m.media-amazon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\ncontent-length: 15940\r\ndate: Sun, 13 Jul 2025 07:18:10 GMT\r\nserver: Server\r\nx-amz-ir-id: 1eef4179-3b40-4b9e-9db3-dbeaf108495d\r\ncache-control: max-age=630720000,public\r\nlast-modified: Mon, 22 Jun 2015 22:15:32 GMT\r\naccess-control-allow-origin: *\r\nedge-cache-tag: x-cache-366,/images/M/MV5BNjg3OTg4MDczMl5BMl5BanBnXkFtZTgwODc0NzUwNjE@\r\nexpires: Thu, 23 Mar 2045 19:12:18 GMT\r\nsurrogate-key: x-cache-366 /images/M/MV5BNjg3OTg4MDczMl5BMl5BanBnXkFtZTgwODc0NzUwNjE@\r\nx-nginx-cache-status: HIT\r\naccept-ranges: bytes\r\nvia: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2798572\r\naccept-ch: Sec-CH-UA-Form-Factors, Sec-CH-Viewport-Width, Sec-CH-Width, Sec-CH-Viewport-Height, Sec-CH-DPR, ECT\r\nserver-timing: provider;desc=\"cf\"\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: 8mYmbCkkghJdl0dGMs6KlTvQuEDP5SlBYfYIX99_a6JxcA-vaWpk1Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":15940,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 214x317, components 3","md5":"b862f4b2bc2e9f7fe8808a7fe8baf79f","sha1":"d9402ed9eb4d211ddce255dcc1bef29b21f922a7","sha256":"18f2b02aa773db4aaff666ea511242c982c9c5d0a1089fd1a15cbfb8798b9bdb","sha512":"b048ccf80b171d159274c162b6c96c3ac35dcbf9a9b9f50e22710915c0522ff3c3641742eb124f90af3caad5039236fce4aeb1ccb82f331f1bf4309575b0b518","ssdeep":"384:n7ecPlPV2Ps+2JNvunLuaIVfDLebCEcYLs:7ecPP7+2JBwLiBDq3cYLs","tlshash":"2462c04333a9f24ec8122b7575677d12cff1941da476ae4c068f2319b202576132bca7","first_seen":"2025-08-14T16:41:30.502772Z","last_seen":"2025-08-14T16:41:30.502772Z","times_seen":1,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":101,"dns":96,"connect":1,"send":0,"wait":25,"receive":1,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"18.159.236.121","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://a.asd.homes\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"32a62d4811f16faf78e70238af24b83c","sha1":"05b5879a9bc6eec065d179520d88ebf87328c9f9","sha256":"1c9a0c0f8b6d0f1cd85be097ab6923accd4080e153ac8a996beda3774603fc4f","sha512":"b035c88189f11546ddd4a86f7dc6d5a2c96a13b63c823b13d59763e366930cb27de3bc5b7f8639a5d5859a78b8b171d1fa8ad1285718a532887cac17d1f0cabb","ssdeep":"","tlshash":"dd9004f531dc44104451c04c0c3174dd75510157c45d55041035d0505c7147c044c575","first_seen":"2025-08-14T16:41:30.505617Z","last_seen":"2025-08-14T16:41:30.505617Z","times_seen":1,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.show-sb.com/sb/notifications/rtb/windows/2/index.html","fqdn":"cdn.show-sb.com","domain":"show-sb.com","tld":"com"},"ip":{"addr":"172.67.170.115","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"show-sb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 10 Aug 2025 11:11:15 GMT","end":"Sat, 08 Nov 2025 12:08:40 GMT"},"fingerprint":{"sha1":"46:26:78:BD:18:7A:95:15:D4:B3:89:73:FE:7E:99:33:18:7F:21:3E","sha256":"AD:6B:6A:10:54:38:33:B9:BB:A6:FD:B7:B0:1B:2E:9D:62:B8:47:35:C4:E6:7B:F6:4A:92:AA:75:B0:29:F7:F3"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/index.html HTTP/1.1\r\nHost: cdn.show-sb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0WdE%2FkicnZEgTYGqVUCp2%2FfdiaZAjnTu9dvOi%2BUi1WpzUD2475yTL6ayZp0A2%2BK7YILM0ohfa9G0jqXBniHumUyQm6KhE8ApEaUxZGA%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 96f1e5c0aa9ceb48-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1207,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"e8928de35e443b4f608f0559b9564848","sha1":"68acad4cb6b93f014812efe317f050dbc74f8b5a","sha256":"e8ff8a9eb605efb0ee581f5928c269832dc2507a13b63505d555e2753091c101","sha512":"a39051e20dfb78dd71496f5da6e732bad916dc973be985000367372d5220299256d0e7a83c8dfe019bfafc67dd7a2cfea62545171f81208e27fafd1c4a8f2999","ssdeep":"","tlshash":"b121338a2ee8c1b3218290967b313f5ae8d2d14b8c4b19407bfd48619b96d9bca53407","first_seen":"2025-04-17T12:54:02.26552Z","last_seen":"2026-03-23T13:28:00.327703Z","times_seen":507,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":101,"dns":34,"connect":26,"send":0,"wait":154,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flushpersist.com/pxf.gif?uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6\u0026eb=827a263eb28f23810b5c1b7200426bdc\u0026te=84a2a724eadce75bf316db7855135b3e\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=6710543788e9f02584f3584d5416d1e3\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=16","fqdn":"flushpersist.com","domain":"flushpersist.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"flushpersist.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:12:33 GMT","end":"Mon, 29 Sep 2025 15:12:32 GMT"},"fingerprint":{"sha1":"9E:08:20:A0:75:ED:21:51:E0:3D:DE:29:CD:B0:11:01:4D:04:77:0A","sha256":"FB:D4:A2:1D:0F:F1:FB:A8:D9:5E:88:03:1F:BB:94:D2:32:5C:CC:49:11:11:FC:04:7B:C6:43:40:CF:1E:A2:BA"}}},"request":{"raw":"GET /pxf.gif?uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6\u0026eb=827a263eb28f23810b5c1b7200426bdc\u0026te=84a2a724eadce75bf316db7855135b3e\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=6710543788e9f02584f3584d5416d1e3\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=16 HTTP/1.1\r\nHost: flushpersist.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nHost: flushpersist.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: d147ff519ddcc7123f6251fe8d182581\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":705,"timings":{"blocked":298,"dns":2,"connect":94,"send":0,"wait":110,"receive":0,"ssl":199},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"18.159.236.121","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://a.asd.homes\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; expires=Sun, 12 Aug 2035 16:41:01 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"32a62d4811f16faf78e70238af24b83c","sha1":"05b5879a9bc6eec065d179520d88ebf87328c9f9","sha256":"1c9a0c0f8b6d0f1cd85be097ab6923accd4080e153ac8a996beda3774603fc4f","sha512":"b035c88189f11546ddd4a86f7dc6d5a2c96a13b63c823b13d59763e366930cb27de3bc5b7f8639a5d5859a78b8b171d1fa8ad1285718a532887cac17d1f0cabb","ssdeep":"","tlshash":"dd9004f531dc44104451c04c0c3174dd75510157c45d55041035d0505c7147c044c575","first_seen":"2025-08-14T16:41:30.505617Z","last_seen":"2025-08-14T16:41:30.505617Z","times_seen":1,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":180,"dns":33,"connect":23,"send":0,"wait":21,"receive":0,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/notifications/rtb/windows/2/img/close.png","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/img/close.png HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 6318\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"65aa86f6-18ae\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\naccept-ranges: bytes\r\nage: 546153\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qrhl7FrbcQ1GWFoMSdcQ62i%2FBcNSuffBzhbzxN2OWlAaSkAPHTRKc2A8iSxtfp0W1%2BSf9kKX8Rc4jxU74qc1M99mHHiX9NR%2FQH4yYj0o\"}]}\r\ncf-ray: 96f1e5c29848abc9-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6318,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit gray+alpha, non-interlaced","md5":"fa3847143b5b8c7823d091ca8e88289f","sha1":"eb32235cc1d642145643b4a218742564df1db6d9","sha256":"a78f358b462449955b39bd7957586ab99c75c8ab453975f4789e72d55d921cea","sha512":"9844c1221145a8310b9ba382b08d5355b154f85119072412451e96da6b2645a0f5cca5d9ca972561a951136e08f5f8570eec6e309b916af9f4d7b6942238adc6","ssdeep":"192:7SVkknKHrsHaPdCUPtpGXcKKzDE91LBRQx5O1E3a7:uNnKLtt0sKoGLBRv7","tlshash":"0ad12b6d784079342a426c3598f8ba064c8b7bc8e657f6d0c6ec3dd35b701aee417297","first_seen":"2025-03-08T23:40:52.393367Z","last_seen":"2026-03-23T13:28:00.342548Z","times_seen":502,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:300,400,700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css?family=Roboto:300,400,700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 14 Aug 2025 16:41:03 GMT\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16755,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"e9d2e14beb088f37fae98294940a9dcd","sha1":"1dafc3c55550249c8c2d782d5616c7b445c8e005","sha256":"f2e491cc46d3fcba81f729065d622bd722751d4a2e7f80b479aa64a92c17b5c7","sha512":"64025ea9b660d5e1d45a593a27345e152ba6b5ef95daceee5e43201319a555eb5457cfe1ecdcc725202063a22c5f406f3ba4607863d5b714c378f144bcdea5f7","ssdeep":"384:pjf5jgjPjrjyUj/qY4+j4jYjpjfMj1jWj6jyhj/qY4XjNjtj4jfdjkjDj3jyQj/E:p90DXOU/R08toBy+Oh/EBpcZwPLOQ/VK","tlshash":"e5722291041740009b835ce223cebf35fe1f92117152d0b5abfd9b6badcbc66526939d","first_seen":"2025-06-02T17:27:24.212334Z","last_seen":"2026-01-19T16:22:17.33804Z","times_seen":5482,"resource_available":false,"data":null}},"time_used":313,"timings":{"blocked":146,"dns":1,"connect":7,"send":0,"wait":19,"receive":0,"ssl":137},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/sweetalert2@9.17.4/dist/sweetalert2.all.min.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.756Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 27 Jun 2025 07:12:29 GMT","end":"Thu, 25 Sep 2025 08:12:28 GMT"},"fingerprint":{"sha1":"74:03:6D:4D:8D:B7:AF:5F:95:BA:97:8E:E3:FA:63:4F:20:FD:29:80","sha256":"69:54:C9:A2:F1:AD:43:49:96:12:57:59:D0:D2:97:F9:C2:07:C3:04:1D:97:3B:AD:07:2B:41:AD:FE:E3:99:2F"}}},"request":{"raw":"GET /sweetalert2@9.17.4/dist/sweetalert2.all.min.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-encoding: gzip\r\ncf-ray: 96f1e5b429f58f5a-CPH\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 2640076\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 14 Aug 2026 16:41:00 GMT\r\nlast-modified: Tue, 03 Jun 2025 00:26:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncontent-digest: sha256=:HOqPXiAPz8Dh0bB5cVHxOPqlSNhQ+d3makNCTrk/lFA=:\r\ncross-origin-resource-policy: cross-origin\r\nfly-request-id: 01JWSJWJ3F3QEGFB3RCMZ0T1RV-ord\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67597,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (42473)","md5":"0c0de18caa00c8ea26099fb8cd50b05a","sha1":"b81e4affd6f879f32d6027e404cf477257663c39","sha256":"1cea8f5e200fcfc0e1d1b0797151f138faa548d850f9dde66a43424eb93f9450","sha512":"87f86a1120219010ce81cb71c7925fe5803abd4bfc9dcbdbbd39e0e9ec3a44ecd95ad8186bbfd823b0ae80d38ce5c7c13612dd1aa54de9ae9e0db11425e13f4e","ssdeep":"768:LaCDIKBK6bAQ14K2PkXuzZudkndA1dyKW9RuRFmPu4uqrH3CVdewQLwqcGc3BfwX:LaSBrL4K2NgdkdALdWaRFfsEX9wCO","tlshash":"f163f6857a403123a6ab417968ebe309b6b5a542fc330c54f129d0944ffbe8f1573bb9","first_seen":"2023-03-08T15:28:13Z","last_seen":"2026-04-04T20:20:19.370428Z","times_seen":2290,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":59,"dns":0,"connect":27,"send":0,"wait":63,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/fonts/Bahij_TheSansArabic-Bold.woff2","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/fonts/Bahij_TheSansArabic-Bold.woff2 HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncf-cache-status: HIT\r\nlast-modified: Tue, 02 Aug 2022 18:24:20 GMT\r\ncache-control: max-age=10368000\r\nexpires: Fri, 28 Nov 2025 08:40:42 GMT\r\nvary: Accept-Encoding,User-Agent\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I28xDRqrlbX19ZbR1tAd2XXY2r38zLq7fs9hHMHfIu4%2BoaXnfG3OrNse0e3E0AsPoft1Qteu7DilllmcbqdgFdZ9P6DPJ0cf8w%3D%3D\"}]}\r\nage: 1238418\r\ncf-ray: 96f1e5b86beaeb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":60116,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 60116, version 1.0","md5":"02039ff2c5a83e6ae3c53c1d83ae5bb4","sha1":"34d1a46a90ea88532d2bdd21fe9df0ead7aa5ff4","sha256":"a4ee41bab01b242f98fe24036fd0fc78fd110a21ef2ae9d04b700daeb771e97e","sha512":"7841921e99dbf273364f71a0f5aa8ab6b24641eb271cf3d96dff790631fa5b525b950eb2c7b871d1e61cb85d2d5b480a75337a32662b49f39040d3013efe4303","ssdeep":"1536:kiId4AbWpNWcKk8o6CoVubYp15yD718B/23L:kiIoLZKk8o6CDMsD+ZmL","tlshash":"94430281f284d8a344ce477edb83115f1527bdd0efb9e7e6a45d9f6a4b3493e8622002","first_seen":"2024-06-10T20:39:29Z","last_seen":"2026-01-03T13:23:21.524629Z","times_seen":31,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/images/logo0.webp","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.752Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/images/logo0.webp HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1154\r\nserver: cloudflare\r\nlast-modified: Thu, 29 Sep 2022 17:08:15 GMT\r\ncache-control: max-age=10368000\r\nexpires: Thu, 06 Nov 2025 04:43:41 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 3153438\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qhBQX1HeazHktEQQKa12M4YnNh2ffpQcALigqv1m2xMqHt4Abm7WjQ7C4SK9MHeSDopYvg0og7OYbzEVZiI64WZlnrVg2AzGzw%3D%3D\"}]}\r\ncf-ray: 96f1e5b3bf18299e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1154,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ab01dbdb415c413258e15e2cdba6a8f3","sha1":"afe6e98d531d36220c547c616be7f9b0ab19475b","sha256":"5624463a6f2698c6b57a3145ab3b448cc3d0bf8e976195ee21e5c34be82cf5be","sha512":"aeaaaaeb51b26f31588891a9bce2f3b5583c38676a065b2ebc1d6f77e5035e434d9426aa74269d53ec0504c3fab91e976ef3a818dc621e9183354c06cb99a673","ssdeep":"","tlshash":"c121a7b2e7b2440381c592fd439836038805decb9e4ded66865152c633232782696f8d","first_seen":"2024-06-10T20:39:29Z","last_seen":"2025-08-14T16:41:30.51327Z","times_seen":28,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/impr.gif?sid=H4sIAAAAAAAC_4xWS6gc15mulrWbhfHMMIuBgR6uprEZ377d59Sp6rZpRL3f73fPYqhXX9Xcfk1V9W1JKydKgrOTwYssgmmdK1t24sTONiGQXGUnEsj16hqskIQQssgq4G1CS0rkkI3P4pz_4_sp_u98xcf5xr3NYwLiTXppG6vb1XyeHqH-oPtyVC2L1bbpmn53OOgPXu9G1ZIiX-_e3G_16WtDSPYHr3SlMj9ZHYHBcDAYDoZdsarL2erm0RMWV-sPx8P-eNAnQX-ISHyz_nvcbDq4STu4OH1M_DOuiosXfzv7H1zl53i5-Jgvm5N2tX5VWGzmabuq8WnxIFieLFfbJV48L2d1B8-WD55141VzQRDfuoJXywfPFODV6f29ApxVF8SVf_sMZ8sHz8bE2em7TyfN5rhc4qz4J7w9Pcfl_BxX6TnOV3dwVfySwDgvsGnh5eI9c1Vv01tP2XTPXhBXP_8TrrYXxNXP_hUvF99n59XNrreab9pqtWzwzdkOVzfPcXV8jtebh7i9fQVX24c4b7-Kq-IXxNHnOl4u7lvNfIWr4vIaWQwLBNPicJDOhockItPD0WyUHw7QjE4HABbDjHpyRdXsHKfNC3jTdPCm6uDNrIM36w5eFJddcjAi82EKqdm4yOkBmZJkUWaD8QgMBuk4p_Em389-F7fruzif38V5_QZe12_gk-qtC6LT-SauNz_BzY0dbooObloCnxY7vC0JvG0IvE0JvK0IvG0JvD3dvVvMG9Ds3ivmzSYbPjvBsxPuzlbt8b303VV7XC4JnNZ3cV3s7lfr_2_u4Lx94ez2rCnOVvstzdrdWZoVu3vrx8RL-7vtKD_9FT4pL7vUjJyhHM5QNkvRDFFoSI_HOYVGeQYRojLcVDtcNVdw2nTw7eqC6F9b43V1QRA_QjhLH-Jm_hDnVQenm__A6XaH0xs7fHv5vbROs6Ysi35zY7XFxWqH1-1V3N7q3Js_Jv79ib3G2-_jMn90fWd_8vs__kHGeb3D63qH_6_6GYGP52-euastcd9dbRviB9a6rRbV7XRvvdembUl8RytvbVd1ofDN3Q-YfE_syw_9smn1dFlUy-OG-C5bFUVZi6s6L4kfK01UZvamucFu6uVmrducqCzWddk01Wp5jtO9qt_dwnl1Qbwo_MuT3_q_uZ_jqn6I682nVx_daNt189rR0eI4r5t-WZfVatvPV4vrs7IsqmJSjsao12yyqpiAITUcjGnU22z2KB8PsyEoDlExpg9JsigOs_GsOCzJ0XhWzsYjNBz0yvWEmQaMzjiyFsYUp_uqrwiajCRO1Gxg-BQ0WORHJqf7nMNZrCYwMhn5jJL4vuVzpKSKkuQ7hmpIasIZigUVx9dDX5DDWI9lR-IoV3VMqADTgILGhJbKiz5vCA4fMxBoQQBtMqHMkOc5X2ShAVBEKRbPAOhLlOAESAMSP-U9m0KSLnqkilhDnkaqKgiR7wQ6iQLX4_yp5gIEaJKHccwgKQgN1498Y-q5jMWxAQNEXjFIQZ_qrKVbgY94xWRkJWBE0pN1yuJFRgC-5wS6ARUlsHyG18PAiCSSM3nFNFzPE9TEpyXemkI1oQSOlX0AbEr0SEGULeBCxWB5WUVREjqhDijVdjgVOVRghjTyeJdSA0Fk-ZgSk5DxVJ00JUkmOYVzeZJWrVAijWloI4Uy_NiFSBKhz2hMIkW2MuWhJcSxzzEx4zqJIOqRrYaqJoYMlAMwlQHNT6EQMohRzMhIvNBgJUSRkum5JJVEDGnzcmiQZhBCTg0FDviq7gHSdUiP00SeE1ifnko6R8m2JvG6b_kJq0qs4GiJRTOBG1g2pFRe9aA_5aayJjEhTZN64Hg2RfmJwycC70BEW7zNx6LKB5Li-1oILcgkGkIaEyRK4rgmUpQACW7A-WYchFPLQL5rgcSCPGsACzKS5VKhKLlG7IpAt0RTtWUg25FLQnsqmyELGUaOOS6MPClgXCdwIR8aiBZNw3dEYAYmcmxHZ9wpK9Cc4QJfip0ACJYlMpxvm7KPTJUSIDul-CnnoKnBBTqtMTQp0H5AA86PAw7AKAxi3wWOQCEjEGw1NnjLgoruRpbLAwECjnfESFR0XYlIgfKVSLJYOzEUVgO2Qcqs5rKaTAOOcj0aMIYDJFWIY2SGagIdT9F40aHUmBOZyNZjbooEx3RYmlUNxEo-HQnACkMuIE0bknbk0qogiDGLYk5jbZ5VEs5TLMZ2LIMyYxoqhuraBs8ZYZRMLd4ShcCcmgzt0EhiI9tiI0RxqogSW5Z9A1GxarmSqkSagiQ61FnOm7IkjBIoAt51LD02OBJaHPANBSqSJyReHPusTCGd0gR-6gdJ6HM0xwlAVmTDRoLFMQFkVYFNZNkTZcjzns1OVReQrmVrkgkdTUn-C_J4sXl0_c7bwzcIgsD5-msfHRzwgse5iu0rlnlwcPmqsjyuq6L7MuieLLqzOu0W5fErXW25mc-7i_K4e1ynbdX8Z7ff73c_OjjQGVcS_lcxGEk4OLi_73r_4EDh9t_6tBP-NTnbOs1PquVxv9z0Z_N00d6q9wF6VLfZ0ZMQ_VscX__ywdlMhoNhr5gARPa-mMR1OxnSCA1HY4oCcDTqNdlk0B8M4LPVK57if8jsdnVSFZO9ht6mnk9Ukoxl3rVEiEjP8TRKhjYlGGLEyHYAXEpSGAdEPvBE17KAGLl0JIHABdAwhVDlpnJCJa6gS4YqWokSgGkgS5EXGbzCBVClKYZOEsnfu9KrJqNRMciK3mYyBGg2Q73jiWn10mIyHKARgqDXrCe9Zn066TWLyQcHB77i68LBwQ-98uY6rdtlWXfT0250I22bdL3u_ubbX8fN-hHxbOFmReB6_hxn6w7ebnZnNcgeXT8xv_KxpwV4Xl0Qya__jOfl88Y02-HmCzh7Xp_V6ebyGo0QBGSRHxZjcnRIUqg8HFM0dTgCZUZCMgcoR2d1Wl1e-zKe3mvexMd1B6ftHbxc7PBpvcOn8x1O53dxs3nhrF3Xj65_8tRGnM07Z9m87tzP5vX8rafviqa67M5gCfLBYERTQzialUNIFvkMjchxQaUDCEvcNhc33nnpnb8EAAD__62GlbmpCwAA","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:04.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /impr.gif?sid=H4sIAAAAAAAC_4xWS6gc15mulrWbhfHMMIuBgR6uprEZ377d59Sp6rZpRL3f73fPYqhXX9Xcfk1V9W1JKydKgrOTwYssgmmdK1t24sTONiGQXGUnEsj16hqskIQQssgq4G1CS0rkkI3P4pz_4_sp_u98xcf5xr3NYwLiTXppG6vb1XyeHqH-oPtyVC2L1bbpmn53OOgPXu9G1ZIiX-_e3G_16WtDSPYHr3SlMj9ZHYHBcDAYDoZdsarL2erm0RMWV-sPx8P-eNAnQX-ISHyz_nvcbDq4STu4OH1M_DOuiosXfzv7H1zl53i5-Jgvm5N2tX5VWGzmabuq8WnxIFieLFfbJV48L2d1B8-WD55141VzQRDfuoJXywfPFODV6f29ApxVF8SVf_sMZ8sHz8bE2em7TyfN5rhc4qz4J7w9Pcfl_BxX6TnOV3dwVfySwDgvsGnh5eI9c1Vv01tP2XTPXhBXP_8TrrYXxNXP_hUvF99n59XNrreab9pqtWzwzdkOVzfPcXV8jtebh7i9fQVX24c4b7-Kq-IXxNHnOl4u7lvNfIWr4vIaWQwLBNPicJDOhockItPD0WyUHw7QjE4HABbDjHpyRdXsHKfNC3jTdPCm6uDNrIM36w5eFJddcjAi82EKqdm4yOkBmZJkUWaD8QgMBuk4p_Em389-F7fruzif38V5_QZe12_gk-qtC6LT-SauNz_BzY0dbooObloCnxY7vC0JvG0IvE0JvK0IvG0JvD3dvVvMG9Ds3ivmzSYbPjvBsxPuzlbt8b303VV7XC4JnNZ3cV3s7lfr_2_u4Lx94ez2rCnOVvstzdrdWZoVu3vrx8RL-7vtKD_9FT4pL7vUjJyhHM5QNkvRDFFoSI_HOYVGeQYRojLcVDtcNVdw2nTw7eqC6F9b43V1QRA_QjhLH-Jm_hDnVQenm__A6XaH0xs7fHv5vbROs6Ysi35zY7XFxWqH1-1V3N7q3Js_Jv79ib3G2-_jMn90fWd_8vs__kHGeb3D63qH_6_6GYGP52-euastcd9dbRviB9a6rRbV7XRvvdembUl8RytvbVd1ofDN3Q-YfE_syw_9smn1dFlUy-OG-C5bFUVZi6s6L4kfK01UZvamucFu6uVmrducqCzWddk01Wp5jtO9qt_dwnl1Qbwo_MuT3_q_uZ_jqn6I682nVx_daNt189rR0eI4r5t-WZfVatvPV4vrs7IsqmJSjsao12yyqpiAITUcjGnU22z2KB8PsyEoDlExpg9JsigOs_GsOCzJ0XhWzsYjNBz0yvWEmQaMzjiyFsYUp_uqrwiajCRO1Gxg-BQ0WORHJqf7nMNZrCYwMhn5jJL4vuVzpKSKkuQ7hmpIasIZigUVx9dDX5DDWI9lR-IoV3VMqADTgILGhJbKiz5vCA4fMxBoQQBtMqHMkOc5X2ShAVBEKRbPAOhLlOAESAMSP-U9m0KSLnqkilhDnkaqKgiR7wQ6iQLX4_yp5gIEaJKHccwgKQgN1498Y-q5jMWxAQNEXjFIQZ_qrKVbgY94xWRkJWBE0pN1yuJFRgC-5wS6ARUlsHyG18PAiCSSM3nFNFzPE9TEpyXemkI1oQSOlX0AbEr0SEGULeBCxWB5WUVREjqhDijVdjgVOVRghjTyeJdSA0Fk-ZgSk5DxVJ00JUkmOYVzeZJWrVAijWloI4Uy_NiFSBKhz2hMIkW2MuWhJcSxzzEx4zqJIOqRrYaqJoYMlAMwlQHNT6EQMohRzMhIvNBgJUSRkum5JJVEDGnzcmiQZhBCTg0FDviq7gHSdUiP00SeE1ifnko6R8m2JvG6b_kJq0qs4GiJRTOBG1g2pFRe9aA_5aayJjEhTZN64Hg2RfmJwycC70BEW7zNx6LKB5Li-1oILcgkGkIaEyRK4rgmUpQACW7A-WYchFPLQL5rgcSCPGsACzKS5VKhKLlG7IpAt0RTtWUg25FLQnsqmyELGUaOOS6MPClgXCdwIR8aiBZNw3dEYAYmcmxHZ9wpK9Cc4QJfip0ACJYlMpxvm7KPTJUSIDul-CnnoKnBBTqtMTQp0H5AA86PAw7AKAxi3wWOQCEjEGw1NnjLgoruRpbLAwECjnfESFR0XYlIgfKVSLJYOzEUVgO2Qcqs5rKaTAOOcj0aMIYDJFWIY2SGagIdT9F40aHUmBOZyNZjbooEx3RYmlUNxEo-HQnACkMuIE0bknbk0qogiDGLYk5jbZ5VEs5TLMZ2LIMyYxoqhuraBs8ZYZRMLd4ShcCcmgzt0EhiI9tiI0RxqogSW5Z9A1GxarmSqkSagiQ61FnOm7IkjBIoAt51LD02OBJaHPANBSqSJyReHPusTCGd0gR-6gdJ6HM0xwlAVmTDRoLFMQFkVYFNZNkTZcjzns1OVReQrmVrkgkdTUn-C_J4sXl0_c7bwzcIgsD5-msfHRzwgse5iu0rlnlwcPmqsjyuq6L7MuieLLqzOu0W5fErXW25mc-7i_K4e1ynbdX8Z7ff73c_OjjQGVcS_lcxGEk4OLi_73r_4EDh9t_6tBP-NTnbOs1PquVxv9z0Z_N00d6q9wF6VLfZ0ZMQ_VscX__ywdlMhoNhr5gARPa-mMR1OxnSCA1HY4oCcDTqNdlk0B8M4LPVK57if8jsdnVSFZO9ht6mnk9Ukoxl3rVEiEjP8TRKhjYlGGLEyHYAXEpSGAdEPvBE17KAGLl0JIHABdAwhVDlpnJCJa6gS4YqWokSgGkgS5EXGbzCBVClKYZOEsnfu9KrJqNRMciK3mYyBGg2Q73jiWn10mIyHKARgqDXrCe9Zn066TWLyQcHB77i68LBwQ-98uY6rdtlWXfT0250I22bdL3u_ubbX8fN-hHxbOFmReB6_hxn6w7ebnZnNcgeXT8xv_KxpwV4Xl0Qya__jOfl88Y02-HmCzh7Xp_V6ebyGo0QBGSRHxZjcnRIUqg8HFM0dTgCZUZCMgcoR2d1Wl1e-zKe3mvexMd1B6ftHbxc7PBpvcOn8x1O53dxs3nhrF3Xj65_8tRGnM07Z9m87tzP5vX8rafviqa67M5gCfLBYERTQzialUNIFvkMjchxQaUDCEvcNhc33nnpnb8EAAD__62GlbmpCwAA HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:04 GMT\r\nContent-Type: image/gif\r\nContent-Length: 7\r\nConnection: keep-alive\r\naccess-control-allow-origin: *\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 4\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 94c176a33807291ad5b26b1427be3766\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":98,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":98,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/notifications/rtb/windows/2/css/animate.css","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/css/animate.css HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"65aa86f6-13361\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\ncontent-encoding: gzip\r\nage: 493198\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V38Uf%2BSRgdeyCLM8zw38Uo5qG828KKngzvHN%2BSVKzKQWFEVZc5i6%2FOwKw3%2Fg5cI%2FtdQ9%2FF1yiFk%2BQaaEOtzNH6t2DeKRAPaix3XLKdGG\"}]}\r\ncf-ray: 96f1e5c28840abc9-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78689,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3d4123dbfb33d27a5cfdfcfa91df6783","sha1":"e7d0eeeec54b848f0bc3da8685fa3bc88429d660","sha256":"cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887","sha512":"75c8a48dc207595e201b50b87ff68782112a21aded9f15f14185c07d40f0151d6afe74a2b278aa575caf12ac422e8166316296ed7b6573ea24e667cca4af51dd","ssdeep":"384:jvuAuF81dghu3ublZlX/m/Gu7uNUtrL4VrbZJgBhLYNKwZiMUL6Vpaj7F:jvuAu21dghu3uLu7uNKwZiMUL6Vpaj7F","tlshash":"22731bad399115845263861d83df9e68273ce5731826acef73c2488bcf8bf9867c9147","first_seen":"2024-01-20T06:37:31Z","last_seen":"2026-04-05T15:13:00.777651Z","times_seen":10539,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":107,"dns":21,"connect":28,"send":0,"wait":38,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-D8NNSFR7SN","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:34:03 GMT","end":"Mon, 29 Sep 2025 08:34:02 GMT"},"fingerprint":{"sha1":"A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1","sha256":"9F:B9:94:8F:84:D3:44:71:A7:81:72:C8:80:4D:14:02:E3:E0:30:0C:F1:17:27:83:00:82:D9:C3:68:D3:B3:AF"}}},"request":{"raw":"GET /gtag/js?id=G-D8NNSFR7SN HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\nexpires: Thu, 14 Aug 2025 16:41:00 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0\r\nreport-to: {\"group\":\"ascgcycc:1099:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0\"}],}\r\nserver: Google Tag Manager\r\ncontent-length: 120246\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":343889,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6006)","md5":"30d44a018f6d18533ec0e514239d1402","sha1":"bccf2b6ec8963c53553b459e2e8f5c7e2cd791ba","sha256":"fd207ece2613e1e415dd62e0d3b1211c73ccde0db5500b71ae9892e0523ddaec","sha512":"1378105688439d474e5744944925abce56301702067f80f124d16066f92a4695dd81df74e80368a040b5f5a37636a456edb0b59cd1f4e74dfa9ec1707d7a6e01","ssdeep":"3072:xvUqGg61JLwDPLVAvLdzT0Sz5DHSb5qlUmxxgJgJ471MSXw1PMqaW/uSoTQtF02n:KmLLVAjdYtIxgwhqW/uSoTuFB/KPDDI","tlshash":"117419cd73d670629392b478503f008bb17b28a2f44cc899f186d9e52e74aaa5177f7c","first_seen":"2025-08-14T16:41:30.51504Z","last_seen":"2025-08-14T16:41:30.51504Z","times_seen":1,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":87,"dns":0,"connect":8,"send":0,"wait":31,"receive":24,"ssl":89},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/images/darklogo333.webp","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.199Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/images/darklogo333.webp HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1078\r\nlast-modified: Sat, 08 Apr 2023 22:42:33 GMT\r\ncache-control: max-age=10368000\r\nexpires: Fri, 28 Nov 2025 07:04:57 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 1244164\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SyZyNaTeT3C3G3BT3OcsTBzyph%2FsJ%2FXrg%2Fdq6%2FKHIfmpAc4E3GsjSccBN%2FSOlLNrzYA9Pza7VfQ%2BwBxBIlmRjvhwaelKZl%2F3Ag%3D%3D\"}]}\r\ncf-ray: 96f1e5bccd06eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1078,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b7947bdce366e43da9290ef615b38448","sha1":"7e5f3c694f0733a9ece11215bd5d27c2591fc49f","sha256":"ff934477383a04d93915610afa80983e078e086f3032782134461929accd09e5","sha512":"e1d8bd435402fb40fb21891aac958010c7a4ae1ec3a548f41cd060b2c6a21200ae85daf892b61aa749db8982614afb49360c32b5a72e956d370d3a7c65ce613b","ssdeep":"","tlshash":"7c11e5298b46974d8743e724eb03bb19c436cb0bc41c20aa701e1f826770abeac68138","first_seen":"2024-06-10T20:39:29Z","last_seen":"2025-08-14T16:41:30.517557Z","times_seen":30,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fcss%2Fstyle.css\u0026l=4043\u0026fd=551","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fcss%2Fstyle.css\u0026l=4043\u0026fd=551 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-14T16:40:58.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/ HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nvary: Accept-Encoding,Cookie,User-Agent\r\ncache-control: max-age=3, must-revalidate, max-age=0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T0DHvSc6SpR2oyo%2BaeY86JvYYH6%2FZCdv0%2F55J5j%2BoyhCqciVjiR4pN4GiuTnpHDgDt%2FMCBVKuPSE9JjbtVbnmUOJwGImKXGcBQ%3D%3D\"}]}\r\nlast-modified: Thu, 14 Aug 2025 16:40:52 GMT\r\nexpires: Thu, 14 Aug 2025 16:41:00 GMT\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96f1e5a7c980299e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"WordPress Super Cache","description":"WordPress Super Cache is a static caching plugin for WordPress.","website":"https://z9.io/wp-super-cache/","common_platform_enumeration":"","icon":"wp_super_cache.png","categories":["Caching","WordPress plugins"]},{"name":"SweetAlert2","description":"SweetAlert2 is a JavaScript library that provides customisable, visually appealing, and responsive alert and modal dialog boxes for web applications.","website":"https://sweetalert2.github.io/","common_platform_enumeration":"","icon":"SweetAlert2.svg","categories":["JavaScript libraries"]}],"data":{"size":533139,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (27062)","md5":"3ee46efda130d5a0a0487c38605e6d7a","sha1":"3c11f5236b3d4e47eb3779e8dfb7137dbd4885c8","sha256":"2b221348babfc4bde9fd236682ad97c9ea97ba7fee3d11f6fe604f9f6959ba06","sha512":"24239545c8ae11da3beeef649a0692a31e8cfc8aece6dd87172d516f3a30fd5958baf85704cec677f3d6142c34fd4bc17152cb8fc881a47a796e3dd4f64b32a5","ssdeep":"12288:PZiwT1iADk9DW3uyv5Ar0e00kTYF8M2r82ngnwzlIwgPz/SIAeVBNoEePiaEQiH1:PZiwT1iADk9DW3uyv5Ar0e00kT7WX/0e","tlshash":"ecb42be6665121057527896487df1b28633ce0339846ccbe77e6688ecf86f8c11b771b","first_seen":"2025-08-14T16:41:30.518607Z","last_seen":"2025-08-14T16:41:30.518607Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1668,"timings":{"blocked":101,"dns":21,"connect":26,"send":0,"wait":1466,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/uploads/2020/05/5c659bc901bb3-193574.jpg","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/uploads/2020/05/5c659bc901bb3-193574.jpg HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nCookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6%3A3%3A1; _ga_D8NNSFR7SN=GS2.1.s1755189662$o1$g0$t1755189662$j60$l0$h0; _ga=GA1.1.1340014931.1755189662; sb_page_6f4f5c3f5bfa5f5651799c658cb3556b=1; sb_main_6f4f5c3f5bfa5f5651799c658cb3556b=1; sb_count_6f4f5c3f5bfa5f5651799c658cb3556b=1; pp_main_6710543788e9f02584f3584d5416d1e3=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 29818\r\nlast-modified: Sat, 17 Sep 2022 16:27:35 GMT\r\ncache-control: public, max-age=10368000\r\nexpires: Fri, 12 Dec 2025 16:41:02 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dMP86gpnLFhEaAL1TlAP8EjofZ4vAafR8jPAkfn2Js95BhD9Lx2uYuBpEpWdnyfstyPFHP0itD8eo9KZgTzP6eICdIG7DWzSmA%3D%3D\"}]}\r\ncf-ray: 96f1e5bfbdf7eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29818,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 260x370, components 3","md5":"597edcaea31480dc7b2ec1b1d7ef03a0","sha1":"42bf0bb73fed2b08a7f70a3845b050004feefc98","sha256":"55bed386ac29c58b5ad30c29e3b52587a1d2aeb9297dfb47051f8bd504c8e6e3","sha512":"0be8c52eb041a86bd61efdd58f58c91d52bc0757d8eff2c79c51aba7fae07b948966c0a1f13b5087c76b4270dcce141437676e238efa7ea6e9b092875074cd57","ssdeep":"768:jVDIOVcmWrDQhC0qJQC+jXuT4haYb+IQvNFwD0di8SIC7l:2zmwDQM009+jX8e+hlFwD0dzSf7l","tlshash":"53d2e111ef5caacf70272b629d112cdef6e61ce06b54496b9dc3e48e8cd22a465c2780","first_seen":"2025-08-14T16:41:30.52121Z","last_seen":"2025-08-14T16:41:30.52121Z","times_seen":1,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/notifications/rtb/windows/2/img/number.png","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/img/number.png HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 1138\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"65aa86f6-472\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\naccept-ranges: bytes\r\nage: 546153\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ykonQfRxIkKEvLn9Df%2FbLPQmw0nqrPlN9D2QzDGiWVsWpmWYCDnu6r2Ru1vMFGsdRtsEZyWqy3qEcPOpNNfNuwOeCyJoouushLwemqq1\"}]}\r\ncf-ray: 96f1e5c2984cabc9-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1138,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced","md5":"9e4414e85c588bf7db195e49c02ab2bb","sha1":"09254e79b255f1b2dfe45adbbe44583a4b433782","sha256":"0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762","sha512":"07925dc4d8f6cc1b9b89d26f2c3a6aa3175279719a0999fd837a20e8b12f443eb521e23b3212227ac1b6dfa2ecfcdd94b7494dd67d9d8b046efdddd185bb9bfc","ssdeep":"","tlshash":"a121f90aeca21be0d7888f0214dc135095da07447f8e280a37b6aa599e1070614451fb","first_seen":"2023-04-09T12:43:14Z","last_seen":"2026-04-04T16:16:27.053982Z","times_seen":2429,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x1.giriucon.com/8d04ffe9e8f556fe192.jpeg","fqdn":"x1.giriucon.com","domain":"giriucon.com","tld":"com"},"ip":{"addr":"172.67.128.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"giriucon.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 21 Jun 2025 20:15:18 GMT","end":"Fri, 19 Sep 2025 21:12:42 GMT"},"fingerprint":{"sha1":"DD:7A:73:EE:86:BE:E9:B1:2A:07:6B:0F:83:5C:47:89:C9:38:A6:2A","sha256":"60:80:E1:8B:3C:B1:10:71:69:E6:63:BD:E7:4E:09:EB:89:38:98:2E:8B:E2:64:71:4B:90:E6:06:BB:FA:76:E4"}}},"request":{"raw":"GET /8d04ffe9e8f556fe192.jpeg HTTP/1.1\r\nHost: x1.giriucon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 37387\r\nserver: cloudflare\r\nlast-modified: Sat, 03 May 2025 12:51:40 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"6816115c-920b\"\r\nexpires: Wed, 03 Sep 2025 06:43:25 GMT\r\ncache-control: max-age=2592000, public\r\naccept-ranges: bytes\r\nage: 899858\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F7F5ExPrtB1Btbw0jW5ngFi4T56bJiymdNnAokkE1aImXEjYxOWf70%2FE2eI7MKKfo4jUXljF17kz0zFm1NGYE027QGYQgqDeXco8xCs%3D\"}]}\r\ncf-ray: 96f1e5c4889dabde-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":37387,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3","md5":"1490935efa167f9f0ef89929d4056ad3","sha1":"52c64e563610d58304bb9771bece829b9849059f","sha256":"7b51bb145896f492fcadd3c4a0d70959c0849ff6760332593d7aa69382b37f8b","sha512":"5513f883a314461ca4059ca2fba5fada27b0bffec6d373eade91a2b9107394782b833a6da671bbf10ace9d090935028021ae0fe6be763e1b51e762c253b59df0","ssdeep":"768:4am/iKR5YGXQvMNymh7t3ztdgpO/4YapOpISTzx+w:JgdXYGXKwzhxjEE/fTzV","tlshash":"8af2f14bf81396817e8a5e8274338b4f18332bd4d29792041d06e857f25e68299fde8e","first_seen":"2025-05-07T07:37:42.644558Z","last_seen":"2025-10-08T14:56:18.984016Z","times_seen":688,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":105,"dns":35,"connect":26,"send":0,"wait":40,"receive":2,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-light-300-5.0.0.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 25268\r\ncf-ray: 96f1e5bb6dd712a5-CPH\r\nx-amz-id-2: ASCBz2jJDQcTdke6hskR9tYWJV0vNAhs+horZtEHGMxlIvYcHdQprVEcxNk5uk1hsSDU5KNyy2QLSkbQoND6fyWWFmi2CUJXBAEFGWGIHyU=\r\nx-amz-request-id: WZ2YY3NEJY7ZNR73\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:02 GMT\r\netag: \"4a9cf4c85c5e31aedf05c4e45f7f2542\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3333096\r\nexpires: Fri, 14 Aug 2026 22:29:48 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25268,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25268, version 331.524","md5":"4a9cf4c85c5e31aedf05c4e45f7f2542","sha1":"e4f0a62666b5d70715f61fccd7da70e0ca79faff","sha256":"4754cd245df2ac7bdf5d0f76e8b9e568fbd435ef95e9bc54089792f3a45da499","sha512":"7fd930051e85da15708e3d82969177df1fc9316031ec5ea9c5c7b872653052081def54c924aa3dd6378be85504cdb74d9f27d2ed8e44ec0e68940bc806755388","ssdeep":"768:Lz/gw4BDA1q6SLxzQD1MnOiPFx7X/ZO2c:X/N4B84HeD1gDFhxO2c","tlshash":"c7b2e1f1239ba9d1f0e0983eea55e774bc6596e12f76c7d834ed31a4ef328005214c56","first_seen":"2023-06-09T07:05:52Z","last_seen":"2026-04-03T17:09:06.260711Z","times_seen":45,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":110,"dns":1,"connect":33,"send":0,"wait":49,"receive":1,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-regular-400-5.0.0.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-regular-400-5.0.0.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 23940\r\ncf-ray: 96f1e5bb0cf012a5-CPH\r\nx-amz-id-2: W1w/u+CeF8LFQ7rMatfxBOsFaVYTkQKHLXoSvNJ09iVKH+Mb2WpZKEkroJ0whJVliuVAi5es9DOkK159rQZrApax47LqWgPqFyV3CFWlImI=\r\nx-amz-request-id: WAE97Z19XMFG5YR7\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:04 GMT\r\netag: \"5819e27b820e4367e28d37217a4d015b\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3581177\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":23940,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23940, version 331.524","md5":"5819e27b820e4367e28d37217a4d015b","sha1":"3f0e957519d1e3cb4c3ba742fb57fd92efd2b088","sha256":"34940b9f7cdbbc583f8cbc8a9619f44e9893ebc5bc97b965f9d22af9bbe91213","sha512":"464f4afb2070c97003bc27d460a55e2d15f7101e255ee9f77d78e18198fd9b5833b74464d9605dd144a3c9246baf125e3a088fc71a5633606b5ff0bcf82b3b47","ssdeep":"384:oThYgQ/o5hULn5scPoVyawg/MkRk4eRfjc14Cf465FJ8l9oKqbPH:otYe5A5scPvawgEKexmXfZ5FJSqbPH","tlshash":"97b2e1b5308d0064e9cf77dd220fe4a0fd8bb4c99bbdf885f52f24a6159a2e10c50715","first_seen":"2023-06-26T22:03:53Z","last_seen":"2026-04-03T17:09:06.206525Z","times_seen":53,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":73,"dns":1,"connect":26,"send":0,"wait":47,"receive":2,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/images/logo333.webp","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/images/logo333.webp HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: image/webp\r\ncontent-length: 776\r\nlast-modified: Sat, 08 Apr 2023 22:42:36 GMT\r\ncache-control: max-age=10368000\r\nexpires: Fri, 28 Nov 2025 07:04:57 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 1244164\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iQ8o2AuIDF4KW16Rp%2BcqiykFSvI9ZhV%2BT8bE%2BXNExDdSKwSHV9OWl%2F8eAiII%2BCuo44XvZrzeG0jBjybcTguEWmuIFoKGRwsJvw%3D%3D\"}]}\r\ncf-ray: 96f1e5bc7cf2eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":776,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"85989208b73181c27b2d0d34b2d8dcec","sha1":"96fb4480db22babeadf2abc3d5a2ad04aed7c583","sha256":"279152a2d7475a4813655d7aa1091b53ceecbca2ec83068556f7c45d1195ce1b","sha512":"11982d0c569493049a57fffa29ec26200487511031c69987ddcf6d9a86fcaf3e7c560fcc004615e5bfafc99b4da394cd530469d0bc4e134725cbd7b37a940e11","ssdeep":"","tlshash":"180120fa79113031a509e5ba21944a35035aa792bac1647f282c25755f461e09fded3c","first_seen":"2023-09-24T02:00:48Z","last_seen":"2025-08-14T16:41:30.528186Z","times_seen":31,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/sbar.json?key=6f4f5c3f5bfa5f5651799c658cb3556b\u0026uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6%3A3%3A1","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /sbar.json?key=6f4f5c3f5bfa5f5651799c658cb3556b\u0026uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6%3A3%3A1 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:02 GMT\r\nContent-Type: text/plain; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\naccess-control-allow-origin: https://a.asd.homes\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; expires=Thu, 21 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\npdhtkv=true; expires=Fri, 15 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\nuncs=1; expires=Fri, 15 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\npdhtkv29=true; expires=Fri, 15 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\nuncs29=1; expires=Fri, 15 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\nu_pl21610975=1; expires=Fri, 15 Aug 2025 16:41:02 GMT; path=/; secure; SameSite=None\r\nx-envoy-upstream-service-time: 307\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 6bae24ccd2cb052eabd64349563723af\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14796,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"JSON text data","md5":"96d814b93b7d79066fb2539ac8046d80","sha1":"dfab4bcc2f196d2497dcc84a7cf1c0dfe5ec2710","sha256":"6cfc176a80de46d5c46e48e5f9f6af4ecf56d2ddc651c20dfe2d46dca70a211c","sha512":"9faa672daf04df896164d754fd1da9d6955508100cda1bc0e63b816aea7c5e4be5325e6f50a0edbd1ed2f32948627ca65dfb28bc43ef24de3f19b4bf39d2ef04","ssdeep":"192:9zqu+E5/Vo+h6+ju+E5/Vo+h63iaoKv5/Vo+EHvIu+E5/Vo+h6IVIaqGXnbx:9zt7NI7NxONAP7NTIaqGXnN","tlshash":"eb627dff99e93be9720ec7089fb23dbc895688e39c92f591419a4c07f11d044fd89199","first_seen":"2025-08-14T16:41:30.529046Z","last_seen":"2025-08-14T16:41:30.529046Z","times_seen":1,"resource_available":false,"data":null}},"time_used":402,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":402,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Findex.html\u0026l=1207\u0026fd=267","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Findex.html\u0026l=1207\u0026fd=267 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tracking.eu.flamtyr.com/rtb/feedimpression?uuid=2c91b12d-5d97-44dd-b9fd-e489fef98510\u0026s=101\u0026d=254\u0026feedid=e895\u0026rt=1755189662388\u0026sb=0.0033333333\u0026db=0.005\u0026subid=21610975\u0026tokid=null\u0026url=J44XHDROF354SQSK6H3P6EMFWAHPU2R6GIAQ2WT2SFROO2FWR7WG2UR23MNEVJCZHY6YRELGMJFOYIU2ZUHGWSWMDICU3J76A7YYGTY%3D\u0026i=88d0bd\u0026u=125ff5\u0026g=NO\u0026ad=1058532\u0026sp=\u0026spv=\u0026sm=","fqdn":"tracking.eu.flamtyr.com","domain":"flamtyr.com","tld":"com"},"ip":{"addr":"138.68.123.32","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.eu.aneorwd.com","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Tue, 29 Jul 2025 09:51:45 GMT","end":"Mon, 27 Oct 2025 09:51:44 GMT"},"fingerprint":{"sha1":"DD:8E:DE:D6:DE:1E:02:63:64:A7:6E:AA:34:37:99:39:B5:33:B0:F7","sha256":"14:49:B3:0B:9A:12:86:11:66:96:5B:15:2C:9E:D8:9D:8D:CE:B7:36:1A:90:D6:4D:42:27:41:9F:C0:1E:D9:73"}}},"request":{"raw":"GET /rtb/feedimpression?uuid=2c91b12d-5d97-44dd-b9fd-e489fef98510\u0026s=101\u0026d=254\u0026feedid=e895\u0026rt=1755189662388\u0026sb=0.0033333333\u0026db=0.005\u0026subid=21610975\u0026tokid=null\u0026url=J44XHDROF354SQSK6H3P6EMFWAHPU2R6GIAQ2WT2SFROO2FWR7WG2UR23MNEVJCZHY6YRELGMJFOYIU2ZUHGWSWMDICU3J76A7YYGTY%3D\u0026i=88d0bd\u0026u=125ff5\u0026g=NO\u0026ad=1058532\u0026sp=\u0026spv=\u0026sm= HTTP/1.1\r\nHost: tracking.eu.flamtyr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nreferrer-policy: no-referrer\r\nlocation: https://x1.giriucon.com/8d04ffe9e8f556fe192.jpeg\r\ncontent-length: 0\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":37387,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":348,"timings":{"blocked":161,"dns":21,"connect":21,"send":0,"wait":24,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.arabseed.show/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","fqdn":"m.arabseed.show","domain":"arabseed.show","tld":"show"},"ip":{"addr":"104.21.68.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-14T16:40:58.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"arabseed.show","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 17 Jul 2025 23:57:12 GMT","end":"Thu, 16 Oct 2025 00:55:54 GMT"},"fingerprint":{"sha1":"64:A5:B7:BB:F7:86:67:9D:E2:27:AE:DA:A8:0A:18:51:42:EA:71:0F","sha256":"17:2E:C9:AE:30:FC:BF:07:6D:DA:A1:86:AA:0E:D0:25:A2:8C:7F:74:CD:60:FD:FB:FD:25:27:AB:93:6E:9F:D3"}}},"request":{"raw":"GET /%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/ HTTP/1.1\r\nHost: m.arabseed.show\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Thu, 14 Aug 2025 16:40:58 GMT\r\ncontent-type: text/html\r\nlocation: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pgJ9MRo5xZkXC45qGhbd6jof2tBHbXEeklzW5LjrrAB%2B1pdhtwR0B2zRSbmdaplI87CuIAuGST9Re7C0ZKmhlqunM%2F2CBY5ZQiVriiw%3D\"}]}\r\ncf-ray: 96f1e5a658b612a5-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":533139,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":285,"timings":{"blocked":79,"dns":6,"connect":28,"send":0,"wait":127,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amazingblackened.com/67/10/54/6710543788e9f02584f3584d5416d1e3.js","fqdn":"amazingblackened.com","domain":"amazingblackened.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"amazingblackened.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 Aug 2025 08:18:28 GMT","end":"Mon, 10 Nov 2025 08:18:27 GMT"},"fingerprint":{"sha1":"B6:87:87:A5:C8:15:56:D3:41:18:C7:B0:A6:DD:EC:1D:27:CC:61:EB","sha256":"0E:9A:2C:59:C4:81:6F:69:D6:D4:5E:F5:B1:BB:EA:B8:43:ED:BF:81:B8:BF:2F:77:37:23:C1:67:88:7E:48:29"}}},"request":{"raw":"GET /67/10/54/6710543788e9f02584f3584d5416d1e3.js HTTP/1.1\r\nHost: amazingblackened.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 32478\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nHost: amazingblackened.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: ecbb12c25a1de45750b83ecef74b3b0a\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":105128,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a786e36e8e2807131ee3278437c32419","sha1":"05e3fa4248921be9db04f695057c861cb7e511f1","sha256":"f04b5d2cf8d9bac9d6eb390da26e774609f9e6660e7eb9c91c7004b21afeeb35","sha512":"ad25e3e694ac5e50ac3c4ebe769f98141e8c013810c01e1ead8b3161c7f356d29989f15a86ad7694c38cd883b982e4b802619dfc859758633be8c21635168826","ssdeep":"1536:PwEYGbRF1Psv/8k8gmAW9ak94Hcs8yOAt0y6hzlIWkmAfOLAa/m:PwEVmmzd48s8BEqhzlIWcfOG","tlshash":"99a3c8987f69f02d426590f7213f5137e21b0d45908ce5e8f403f5a82a7c75be8bae26","first_seen":"2025-08-14T16:41:30.531507Z","last_seen":"2025-08-14T16:41:30.531507Z","times_seen":1,"resource_available":true,"data":null}},"time_used":905,"timings":{"blocked":344,"dns":43,"connect":101,"send":0,"wait":106,"receive":102,"ssl":206},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"amazingblackened.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"18.159.236.121","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://a.asd.homes\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"32a62d4811f16faf78e70238af24b83c","sha1":"05b5879a9bc6eec065d179520d88ebf87328c9f9","sha256":"1c9a0c0f8b6d0f1cd85be097ab6923accd4080e153ac8a996beda3774603fc4f","sha512":"b035c88189f11546ddd4a86f7dc6d5a2c96a13b63c823b13d59763e366930cb27de3bc5b7f8639a5d5859a78b8b171d1fa8ad1285718a532887cac17d1f0cabb","ssdeep":"","tlshash":"dd9004f531dc44104451c04c0c3174dd75510157c45d55041035d0505c7147c044c575","first_seen":"2025-08-14T16:41:30.505617Z","last_seen":"2025-08-14T16:41:30.505617Z","times_seen":1,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/Ajaxat/Single/Server.php","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"POST /wp-content/themes/Elshaikh2021/Ajaxat/Single/Server.php HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nCookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6%3A3%3A1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iCGnXX9iMy%2Fky6qxcFdsz%2FCH0pp3xjvOnBaM6UkJ3hVygCyj4k2lGY5x0fAPq92fmpjgJzOdPksOdIrFHum3LFg6nJlJDEBOVA%3D%3D\"}]}\r\nvary: Accept-Encoding,Cookie,User-Agent\r\ncache-control: max-age=0\r\nexpires: Thu, 14 Aug 2025 16:41:02 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 96f1e5bd1d1eeb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text","md5":"1bb1155f1c12651db62cc1191e17b96b","sha1":"48f1e494ddaeed094168475bab103d2e01367c2d","sha256":"d023d8895fd8aefdd3e6a1bd7ea43dd10fd59217276b3fe4539682e60622aaf8","sha512":"b7b5150711808d9e2dae9aa8438e31dee33f191aa2da7e720efe6f794e0c4d09da8abb1993321a94bb4141ffe95fe9549b4f8a509110d4ff0f8e13b129bfbc96","ssdeep":"","tlshash":"61b012b3d20d144c0501002670910997256bb595fb62b620e0e07031209a74d1cf1b1c","first_seen":"2024-06-18T00:40:54Z","last_seen":"2025-08-14T16:41:30.534515Z","times_seen":18,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/images/banner2.mp4","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/images/banner2.mp4 HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 63837\r\nlast-modified: Wed, 28 Sep 2022 16:05:36 GMT\r\ncache-control: public, max-age=10368000\r\nexpires: Thu, 06 Nov 2025 07:23:06 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 3143874\r\ncontent-range: bytes 0-63836/63837\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hjsvyfSQv%2BBQLs1g0oRFwrzqWf9363%2B%2BhiBxQrDYGUehEPiJ0IgoF1ze7rn5EOXE6rG8lt1aqiIxbjzlowRl%2FtzLja%2FFagSlJg%3D%3D\"}]}\r\ncf-ray: 96f1e5b9dc38eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63837,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"dadd6a6f7507c3b216048d522ac862fa","sha1":"2eeb93bb242f20687fe61ff28e918877bd6cd6ee","sha256":"3369754bead056a02e938b1c906b52f75fc1205925b4058743df0291e146b5d8","sha512":"3d70e2ca01c18ff811340b473587cb716d711d03a32bf1610b77c35dd712a384e055db1d4bde68013f08d928f65cde88c773d971713ec1c999d028f131852bdd","ssdeep":"1536:/xAY9yxuOzN4/qfkGWZIvDfOJ0oxR9iHisA:JAY9yx956qcGWu6B6C","tlshash":"a65302297f527144fcd61b3782882322dc4157fbb70d0ae363787905ba4a24ea9f1be4","first_seen":"2023-09-24T02:00:48Z","last_seen":"2025-08-14T16:41:30.535427Z","times_seen":20,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.11.1.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.11.1.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 8828\r\ncf-ray: 96f1e5bb0cf912a5-CPH\r\nx-amz-id-2: W7kbB0r0HR0DTrTWgxgadD8p70XSl39L6SzhtYW2UEe4M13W8/gXkXw4/MfxN3k0FiIr9Jyhtf4=\r\nx-amz-request-id: EQSZA63WZ37KWQDB\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:08 GMT\r\netag: \"56554791552c3fa61cc6e198600fef97\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3028036\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8828,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 8828, version 331.524","md5":"56554791552c3fa61cc6e198600fef97","sha1":"c03e3c07853fe799ef95d211aefc960a60e2813f","sha256":"e71e62c560b74a582271f0a8244de429df6f9a5ba46b2c52a31941772aece69e","sha512":"58d202623108cbefe3e7b8e76fdda6c7f19e6436d0f068749fe1d294fa582258f2e233d77e156dcd7a79c05a1e228a1106395f6437373ec315cbce93bccb1b99","ssdeep":"192:JlOD9fRjbVQa4UeYDyqJzwIdTrBA4x7fXEy/R4m42:JM1BbVQseYHJMEvC4x7XEyJlF","tlshash":"5b027c46cc508deee754e8fa62014ca3fef54a17f6bc676c54d6a4e6491e70c80d0f49","first_seen":"2023-09-16T15:06:17Z","last_seen":"2026-04-03T17:09:06.185374Z","times_seen":34,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.9.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:04.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 12 Aug 2025 06:29:58 GMT\r\nexpires: Wed, 12 Aug 2026 06:29:58 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nage: 209466\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T15:45:50.652917Z","times_seen":716869,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":90,"dns":1,"connect":22,"send":0,"wait":23,"receive":27,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.334Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:11:38 GMT","end":"Mon, 29 Sep 2025 15:11:37 GMT"},"fingerprint":{"sha1":"F9:52:70:4B:81:A8:F8:39:E6:E7:96:8F:EA:FE:17:FD:96:C5:32:E3","sha256":"D8:C9:87:B5:89:5E:D4:F4:8D:FD:98:3C:31:39:42:67:D3:20:27:14:A9:AD:F2:AB:97:A4:48:0F:94:F0:FF:A2"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 28254\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: d2cfe743e1b794ede8289b0028190930\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85386,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":57,"dns":1,"connect":17,"send":0,"wait":22,"receive":18,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.9.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.845Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.9.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 6216\r\ncf-ray: 96f1e5bb4d9212a5-CPH\r\nx-amz-id-2: jiNnduNQfmMWiifBfocYo/JTHJbCrXNbvcGOMYDpPi90SaBc5bZpMnMvvxVmwNpVG8iWPd/NuGc=\r\nx-amz-request-id: ETN6JFST6FN1957H\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:07 GMT\r\netag: \"1260086824579b0c0526a511d9cdf09c\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1244164\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6216,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 6216, version 331.524","md5":"1260086824579b0c0526a511d9cdf09c","sha1":"d4315aeb773fcd24a129257fd102229350ece129","sha256":"7f5097277e14dcd1d4e0d366991a5e963ca5e8807957004215b60e3a9a57e71f","sha512":"84eaed7eb11fce1346532dd81acaf2f69de716c2263fd8f1b90e60794a3c81a9b97c191d344bda47950dfca9f6fe77606256dcb58cb426fbe87d90861cb8d331","ssdeep":"96:NPnsEmzpU1Gr9rHq38lk4m1V4Q78wIaste4cLBTqvrWHR+uWhVuigRrXUrSS40QJ:qFT438l8CQYewWx+uWhgirrS9ZUgV8K","tlshash":"ffd1a0fc6c6f34bf823543bddd9e510695ec9ac6b24dff11d6c0d0854581922a230add","first_seen":"2023-10-29T16:03:46Z","last_seen":"2026-04-03T17:09:06.207835Z","times_seen":28,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":108,"dns":1,"connect":26,"send":0,"wait":58,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.0.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 20276\r\ncf-ray: 96f1e5bb0cf312a5-CPH\r\nx-amz-id-2: XBEGfEadOfkg5YEynXGyhD1OPuidP1LYiQSLsqdSq4PDplH1k+UYVcLZDeKlIUwELbvyUOBJJB+GkQc3PTeFhss3ms22cyxAOCEGmo2YDyA=\r\nx-amz-request-id: VRY8GJB76R4P3J2N\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:07 GMT\r\netag: \"349b611d28025980f40e28e03abf301c\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3681470\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":20276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20276, version 331.524","md5":"349b611d28025980f40e28e03abf301c","sha1":"524aa8b0e23179ac9a3afe835d426e78a7ba195f","sha256":"7326dc28959050ba1c770ce900b97d33e73d8a93d2e04e74bc03d801adfe0fa1","sha512":"b8b784a6f2a6a9d68f2151eff44d3ec8cc6780adfb4086d18bd3f9d109e7dd0df67240ae83e07196cd3d908ea876ccb003fa4f6e2cda672cfefcbe9e4d553e67","ssdeep":"384:BfQpSY1lcY99JSm9qqdDHxbGMgvs1N3sr3zxO4tq7hFd672zHM:BM1lcsqWDxbvg03a3OZXM","tlshash":"5c92d1dabf1bfbe5513df6602cee4b9c4fa05e50c79d386c589ba02e152a0e34c405d1","first_seen":"2023-05-30T22:44:32Z","last_seen":"2026-03-27T17:16:18.833537Z","times_seen":95,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":42,"dns":0,"connect":0,"send":0,"wait":53,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/sbs?c=1","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:04.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/sbs?c=1 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:04 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"weirdopt.com/ad/advertisers.js","fqdn":"weirdopt.com","domain":"weirdopt.com","tld":"com"},"ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"weirdopt.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:18:37 GMT","end":"Mon, 29 Sep 2025 15:18:36 GMT"},"fingerprint":{"sha1":"1A:27:71:C0:8E:44:D4:6B:F5:AA:49:F0:F1:AF:E5:5F:30:23:A4:D4","sha256":"84:6C:2E:D6:ED:8A:2F:33:05:CC:E9:F2:24:E5:5C:E0:80:C2:04:2D:C3:21:06:64:E1:0D:14:81:A1:9A:00:1B"}}},"request":{"raw":"GET /ad/advertisers.js HTTP/1.1\r\nHost: weirdopt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: ef33bcee209965276155f6adaa907f90\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":138,"timings":{"blocked":58,"dns":1,"connect":17,"send":0,"wait":21,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.11.0.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.11.0.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 12456\r\ncf-ray: 96f1e5bb6dee12a5-CPH\r\nx-amz-id-2: DFBP4W/0fbt9RlLIqN/yRUTFyrj975iQIwhcP2gywfS6NLYsEZM5mVWUrMqYgB98V2U872ZVRHE=\r\nx-amz-request-id: QTT4MEE4VKZ1QG0D\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:08 GMT\r\netag: \"d6c35531a301ee35425b29f3cf97156c\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3681471\r\nexpires: Fri, 14 Aug 2026 22:29:48 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12456,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 12456, version 331.524","md5":"d6c35531a301ee35425b29f3cf97156c","sha1":"af901286c946611d1979e523f015d23a1280b49c","sha256":"0bb3d1afee03a8fa21be19341f21bcfb71747a57a97019ddcf1f77ecc88f769c","sha512":"f89d628a49d1991d0c4b7174e68f9111153c4101382f87996d432ff1a03b591eee8cbf5f2180f254a1c78a05855f8b29322f92182f9472488c1606964c06b457","ssdeep":"192:tGRckynz11bfmu3Sl735C9N2Gu2Zy4d32EA2w3FqJfV8XeXyRjFzCE:tccbnhQljY9oG+y2t2AqT9cj","tlshash":"7942b090a5969d9e84578cf61d63ccda1690bc520b5a0c6b259bb83cbc9c78478c784f","first_seen":"2023-07-25T08:33:36Z","last_seen":"2026-03-27T17:16:18.968849Z","times_seen":77,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":104,"dns":1,"connect":33,"send":0,"wait":41,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-regular-400-5.10.2.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-regular-400-5.10.2.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 16636\r\ncf-ray: 96f1e5bb0cf612a5-CPH\r\nx-amz-id-2: bHAT/ajCE93j1DnGETgD8R2NgPh2nZKBJ8h5/5NGyHy4MC6I+FN+oRGGp7CQotAUmdW89tz82kLMhEDe3h4zug==\r\nx-amz-request-id: M4RKV2YA0J708BSF\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:06 GMT\r\netag: \"fb66d5627aa88de454f2f3c82bbfadf6\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1244164\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16636,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16636, version 331.524","md5":"fb66d5627aa88de454f2f3c82bbfadf6","sha1":"64400ca520e4ea812a1160c05c2c385094b45c7b","sha256":"9b9bf3bf064b8768906a109d7c9f5ff0f83520502b7c184c060235a1eceabf27","sha512":"24f8708bd1ba81cde03cbb5bb519b34d94a85261a92d48162666026957a565a82b34e8a7dd84868d505e53749145e1c0b6d35efffcc55fa2d31f0b9f89446b4e","ssdeep":"384:SyysF18QUavHamYpkeRBC5JjNbNh9aJL/uwcdhsPjeK8:SKKAzYpkec5+csPjeJ","tlshash":"d672d00b10edd54bebbbec2b09add6ed441720f73b66458c88ab9b500d1ecee11284d1","first_seen":"2023-11-21T19:28:32Z","last_seen":"2025-09-11T12:32:38.284695Z","times_seen":44,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":42,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.0.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 20276\r\ncf-ray: 96f1e5bb1d0012a5-CPH\r\nx-amz-id-2: XBEGfEadOfkg5YEynXGyhD1OPuidP1LYiQSLsqdSq4PDplH1k+UYVcLZDeKlIUwELbvyUOBJJB+GkQc3PTeFhss3ms22cyxAOCEGmo2YDyA=\r\nx-amz-request-id: VRY8GJB76R4P3J2N\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:07 GMT\r\netag: \"349b611d28025980f40e28e03abf301c\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 3681470\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":20276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20276, version 331.524","md5":"349b611d28025980f40e28e03abf301c","sha1":"524aa8b0e23179ac9a3afe835d426e78a7ba195f","sha256":"7326dc28959050ba1c770ce900b97d33e73d8a93d2e04e74bc03d801adfe0fa1","sha512":"b8b784a6f2a6a9d68f2151eff44d3ec8cc6780adfb4086d18bd3f9d109e7dd0df67240ae83e07196cd3d908ea876ccb003fa4f6e2cda672cfefcbe9e4d553e67","ssdeep":"384:BfQpSY1lcY99JSm9qqdDHxbGMgvs1N3sr3zxO4tq7hFd672zHM:BM1lcsqWDxbvg03a3OZXM","tlshash":"5c92d1dabf1bfbe5513df6602cee4b9c4fa05e50c79d386c589ba02e152a0e34c405d1","first_seen":"2023-05-30T22:44:32Z","last_seen":"2026-03-27T17:16:18.833537Z","times_seen":95,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":68,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.media-amazon.com/images/M/MV5BNjUyNmI3NzktMDU3MS00M2FlLTlmM2EtMWU0MGQyMzA5YzllXkEyXkFqcGdeQXVyNjc1MTk2NzM@._V1_UX214_CR0,0,214,317_AL_.jpg","fqdn":"m.media-amazon.com","domain":"media-amazon.com","tld":"com"},"ip":{"addr":"54.230.216.66","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images-na.ssl-images-amazon.com","organization":""},"issuer":{"commonName":"DigiCert Global CA G2","organization":"DigiCert Inc"},"validity":{"start":"Thu, 10 Oct 2024 00:00:00 GMT","end":"Sun, 28 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"ED:9D:2D:58:76:07:9C:57:88:75:37:D1:AE:71:6D:09:D2:50:48:81","sha256":"92:47:42:B3:EE:C6:8A:7D:96:6D:C1:0D:5A:C0:7B:E4:70:51:00:9F:F5:99:6E:42:95:18:5B:84:D8:7D:9A:50"}}},"request":{"raw":"GET /images/M/MV5BNjUyNmI3NzktMDU3MS00M2FlLTlmM2EtMWU0MGQyMzA5YzllXkEyXkFqcGdeQXVyNjc1MTk2NzM@._V1_UX214_CR0,0,214,317_AL_.jpg HTTP/1.1\r\nHost: m.media-amazon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/plain\r\ncontent-length: 9\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\nx-amz-ir-id: b1a412d3-b213-4b63-86af-982e4528cbd3\r\nserver: Server\r\nexpires: Thu, 14 Aug 2025 16:46:02 GMT\r\ncache-control: max-age=300,public\r\nx-cache: Error from cloudfront\r\nvia: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: rR_6T1bdoQEjCjPdjVTt9tvBiLbonTvIdyi2LezuONCH1qFxL88-lA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":330,"timings":{"blocked":87,"dns":85,"connect":4,"send":0,"wait":142,"receive":0,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flushpersist.com/pxf.gif?uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6\u0026eb=827a263eb28f23810b5c1b7200426bdc\u0026te=84a2a724eadce75bf316db7855135b3e\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=6f4f5c3f5bfa5f5651799c658cb3556b\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=16","fqdn":"flushpersist.com","domain":"flushpersist.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"flushpersist.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 01 Jul 2025 15:12:33 GMT","end":"Mon, 29 Sep 2025 15:12:32 GMT"},"fingerprint":{"sha1":"9E:08:20:A0:75:ED:21:51:E0:3D:DE:29:CD:B0:11:01:4D:04:77:0A","sha256":"FB:D4:A2:1D:0F:F1:FB:A8:D9:5E:88:03:1F:BB:94:D2:32:5C:CC:49:11:11:FC:04:7B:C6:43:40:CF:1E:A2:BA"}}},"request":{"raw":"GET /pxf.gif?uuid=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6\u0026eb=827a263eb28f23810b5c1b7200426bdc\u0026te=84a2a724eadce75bf316db7855135b3e\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=6f4f5c3f5bfa5f5651799c658cb3556b\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=16 HTTP/1.1\r\nHost: flushpersist.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nHost: flushpersist.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 4a1e3d9aab65879dee853c0fa7fe0bf0\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":675,"timings":{"blocked":286,"dns":3,"connect":92,"send":0,"wait":102,"receive":0,"ssl":189},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amazingblackened.com/6f/4f/5c/6f4f5c3f5bfa5f5651799c658cb3556b.js","fqdn":"amazingblackened.com","domain":"amazingblackened.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"amazingblackened.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 Aug 2025 08:18:28 GMT","end":"Mon, 10 Nov 2025 08:18:27 GMT"},"fingerprint":{"sha1":"B6:87:87:A5:C8:15:56:D3:41:18:C7:B0:A6:DD:EC:1D:27:CC:61:EB","sha256":"0E:9A:2C:59:C4:81:6F:69:D6:D4:5E:F5:B1:BB:EA:B8:43:ED:BF:81:B8:BF:2F:77:37:23:C1:67:88:7E:48:29"}}},"request":{"raw":"GET /6f/4f/5c/6f4f5c3f5bfa5f5651799c658cb3556b.js HTTP/1.1\r\nHost: amazingblackened.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:01 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 25640\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nHost: amazingblackened.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: fce7adacdad1616749bc6f9068d05cc8\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":72612,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8a4ac577b5fdf3b10fc39d9ace988ecd","sha1":"d47b1a8f0d9c036819ca8a33945be991e60b8513","sha256":"a50ece24fb445797facaa90fa3e94f0d2192db3d57b1f4a1f57d53ab78ffe99a","sha512":"f0f7979699fd0a03a4734f72f4809bf0f35cc6f97a45608d1029e1e18b1972ca735694742df417d6af4530d1aa69bcee0d9dcf36d31d80840dade59c68762f5e","ssdeep":"768:l2boYMmKJeqw648+QhS8u+Jcj/XcdFjNHmOdY08kUbTehzbcepwPf:l2bozH4x5O+jvc/dY0U3fX","tlshash":"ed63c7483f51b27802e6b8fa712fa61af0265c1195d8e0d8f503f4deae66719f035f25","first_seen":"2025-08-14T16:41:30.543666Z","last_seen":"2025-08-14T16:41:30.543666Z","times_seen":1,"resource_available":true,"data":null}},"time_used":921,"timings":{"blocked":351,"dns":44,"connect":105,"send":0,"wait":107,"receive":103,"ssl":209},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"amazingblackened.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fcss%2Fanimate.css\u0026l=78689\u0026fd=159","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fcss%2Fanimate.css\u0026l=78689\u0026fd=159 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":658,"timings":{"blocked":281,"dns":1,"connect":92,"send":0,"wait":94,"receive":0,"ssl":186},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fjs%2Fscript.js\u0026l=380\u0026fd=144","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /pixel/sbls?bv=\u0026tmpl=482\u0026u=https%3A%2F%2Fcreative-sb1.com%2Fsb%2Fnotifications%2Frtb%2Fwindows%2F2%2Fjs%2Fscript.js\u0026l=380\u0026fd=144 HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:03 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/css/pro.min.css","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/css/pro.min.css HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: text/css\r\ncontent-encoding: gzip\r\nx-amz-id-2: DA35vG8UC2TRy7GLrINe3QWEiGnW5OP5ohYF3j5a1nBhsMdrltl6ZkSRJd0ExUJh7qLoW/6rV/yFwN5ehK0gTm42sC+zB1nJgKbrfGGA02k=\r\nx-amz-request-id: 3W9JR3H42RNPVNB8\r\nlast-modified: Thu, 01 Jul 2021 19:42:29 GMT\r\netag: W/\"f57f60748e19cd052e1a245c8c6ee24d\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 2640077\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 96f1e5b8aa7492dc-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":310056,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65397)","md5":"f57f60748e19cd052e1a245c8c6ee24d","sha1":"4d161d20975f6f624b7cc0fccebbda1a70cbd255","sha256":"4ae8f940fe8cef8f2e3ba4790ac45afd5fb5016c502ca2f37bc835357ce8d113","sha512":"058bcfba39faf33725adf83d23e675443c9b457b7389894c45eb31740b672c386f076b84004b3a91b8f178bf5ef12eca6149464a9bb75789f20b654d28ac0775","ssdeep":"1536:JL/1EAqIkt7YuHo0DJP/t3uqTtyT8nyFymJ6kWadWGFIibZbWu8IEiy6BRAXSCov:h1EdIkhYZCJPF3VsDbaAAXfm","tlshash":"30648fa0c11d01c9a762ca2f7bd5b73699f6f335ea501e4be15a8c1c1cf6b4901c8fa9","first_seen":"2023-05-30T22:44:33Z","last_seen":"2026-04-03T17:09:06.159109Z","times_seen":110,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":121,"dns":40,"connect":27,"send":0,"wait":42,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/images/logo333.webp","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/images/logo333.webp HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:02 GMT\r\ncontent-type: image/webp\r\ncontent-length: 776\r\nlast-modified: Sat, 08 Apr 2023 22:42:36 GMT\r\ncache-control: max-age=10368000\r\nexpires: Fri, 28 Nov 2025 07:04:57 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 1244164\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6Ryux4YtsS%2FfEuVfBWC6Rl6JT8r5b5Q9gTqXN65Eixcc7HoMFDLIYGpBE87Gf%2FKEgXBx5E9hnjVK3UA4xSZzzm5zJwRbxiH0jQ%3D%3D\"}]}\r\ncf-ray: 96f1e5bcbd02eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":776,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"85989208b73181c27b2d0d34b2d8dcec","sha1":"96fb4480db22babeadf2abc3d5a2ad04aed7c583","sha256":"279152a2d7475a4813655d7aa1091b53ceecbca2ec83068556f7c45d1195ce1b","sha512":"11982d0c569493049a57fffa29ec26200487511031c69987ddcf6d9a86fcaf3e7c560fcc004615e5bfafc99b4da394cd530469d0bc4e134725cbd7b37a940e11","ssdeep":"","tlshash":"180120fa79113031a509e5ba21944a35035aa792bac1647f282c25755f461e09fded3c","first_seen":"2023-09-24T02:00:48Z","last_seen":"2025-08-14T16:41:30.528186Z","times_seen":31,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"torchfriendlypay.com/ren.gif?sid=H4sIAAAAAAAC_4xWS4xcV5m-5Xg3iygzo1mMNFKN2lNKNOnqqnPuubcqUcm67_f7XbMY3Ve173S95t5bXbZXAQMKO0fKggWKyqedOIFAwhaEBG12Fkh0Vh0pRoAQYsEKKVtQ2QYHsclZnPN_-v7F__3_r0_nG_c2jwmIN-mlbaxuV_N5eoT6g-7LUbUsVtuma_rd4aA_eL0bVUuKfL17c3_Vp68NIdkfvNKVyvxkdQQGw8FgOBh2xaouZ6ubR09YXK0_HA_740GfBP0hIvHN-u9xs-ngJu3g4vQx8c-4Ki5e_O3sf3CVn-Pl4mO-bE7a1fpVYbGZp-2qxqfFg2B5slxtl3jxPJzVHTxbPniWjVfNBUF86wpeLR88U4BXp_f3CnBWXRBX_u0znC0fPCsTZ6fvPq00m-NyibPin_D29ByX83Ncpec4X93BVfFLAuO8wKaFl4v3zFW9TW89ZdM9e0Fc_fxPuNpeEFc_-1e8XHyfnVc3u95qvmmr1bLBN2c7XN08x9XxOV5vHuL29hVcbR_ivP0qropfEEef63i5uG818xWuistrZDEsEEyLw0E6Gx6SiEwPR7NRfjhAMzodAFgMM-pJi6rZOU6bF_Cm6eBN1cGbWQdv1h28KC675GBE5sMUUrNxkdMDMiXJoswG4xEYDNJxTuNNvq_9Lm7Xd3E-v4vz-g28rt_AJ9VbF0Sn801cb36Cmxs73BQd3LQEPi12eFsSeNsQeJsSeFsReNsSeHu6e7eYN6DZvVfMm002fPaCZy_cna3a43vpu6v2uFwSOK3v4rrY3a_W_9_cwXn7wtntWVOcrfZXmrW7szQrdvfWj4mX9r3tKD_9FT4pL7vUjJyhHM5QNkvRDFFoSI_HOYVGeQYRojLcVDtcNVdw2nTw7eqC6F9b43V1QRA_QjhLH-Jm_hDnVQenm__A6XaH0xs7fHv5vbROs6Ysi35zY7XFxWqH1-1V3N7q3Js_Jv79yXiNt9_HZf7o-s7-5Pd__IOM83qH1_UO_1_1MwIfz988c1db4r672jbED6x1Wy2q2-l-9F6btiXxHa28tV3VhcI3dz9g8j2xDz_0y6bV02VRLY8b4rtsVRRlLa7qvCR-rDRRmdmb5ga7qZebtW5zorJY12XTVKvlOU73qn53C-fVBfGi8C9P1vq_uZ_jqn6I682nVx_daNt189rR0eI4r5t-WZfVatvPV4vrs7IsqmJSjsao12yyqpiAITUcjGnU22z2KB8PsyEoDlExpg9JsigOs_GsOCzJ0XhWzsYjNBz0yvWEmQaMzjiyFsYUp_uqrwiajCRO1Gxg-BQ0WORHJqf7nMNZrCYwMhn5jJL4vuVzpKSKkuQ7hmpIasIZigUVx9dDX5DDWI9lR-IoV3VMqADTgILGhJbKiz5vCA4fMxBoQQBtMqHMkOc5X2ShAVBEKRbPAOhLlOAESAMSP-U9m0KSLnqkilhDnkaqKgiR7wQ6iQLX4_yp5gIEaJKHccwgKQgN1498Y-q5jMWxAQNEXjFIQZ_qrKVbgY94xWRkJWBE0pN1yuJFRgC-5wS6ARUlsHyG18PAiCSSM3nFNFzPE9TEpyXemkI1oQSOlX0AbEr0SEGULeBCxWB5WUVREjqhDijVdjgVOVRghjTyeJdSA0Fk-ZgSk5DxVJ00JUkmOYVzeZJWrVAijWloI4Uy_NiFSBKhz2hMIkW2MuWhJcSxzzEx4zqJIOqRrYaqJoYMlAMwlQHNT6EQMohRzMhIvNBgJUSRkum5JJVEDGnzcmiQZhBCTg0FDviq7gHSdUiP00SeE1ifnko6R8m2JvG6b_kJq0qs4GiJRTOBG1g2pFRe9aA_5aayJjEhTZN64Hg2RfmJwycC70BEW7zNx6LKB5Li-1oILcgkGkIaEyRK4rgmUpQACW7A-WYchFPLQL5rgcSCPGsACzKS5VKhKLlG7IpAt0RTtWUg25FLQnsqmyELGUaOOS6MPClgXCdwIR8aiBZNw3dEYAYmcmxHZ9wpK9Cc4QJfip0ACJYlMpxvm7KPTJUSIDul-CnnoKnBBTqtMTQp0H5AA86PAw7AKAxi3wWOQCEjEGw1NnjLgoruRpbLAwECjnfESFR0XYlIgfKVSLJYOzEUVgO2Qcqs5rKaTAOOcj0aMIYDJFWIY2SGagIdT9F40aHUmBOZyNZjbooEx3RYmlUNxEo-HQnACkMuIE0bknbk0qogiDGLYk5jbZ5VEs5TLMZ2LIMyYxoqhuraBs8ZYZRMLd4ShcCcmgzt0EhiI9tiI0RxqogSW5Z9A1GxarmSqkSagiQ61FnOm7IkjBIoAt51LD02OBJaHPANBSqSJyReHPusTCGd0gR-6gdJ6HM0xwlAVmTDRoLFMQFkVYFNZNkTZcjzns1OVReQrmVrkgkdTUn-C_J4sXl0_c7bwzcIgsD5-mvvHxwonGUeHHzaCf9qc22d5ifV8rhfbvqzebpob9V7tzuq2-zoieP9zTuvf3mXaybDwbBXTAAie1-0zbqdDGmEhqMxRQE4GvWabDLoDwbw2ekVT_E_GGy7OqmKyXIzn_c29XyikmQs864lQkR6jqdRMrQpwRAjRrYD4FKSwjgg8oEnupYFxMilIwkELoCGKYQqN5UTKnEFXTJU0UqUAEwDWYq8yOAVLoAqTTF0kkj-voW9ajIaFYOs6G0mQ4BmM9Q7nphWLy0mwwEaIQh6zXrSa9ank16zmHxwcOArvi4cHPzQK2-u07pdlnU3Pe1GN9K2Sdfr7m--_fWPDg54weNcxfaV_TQuX1WWx3VVdF8G3ZNFd1an3aI8fqWr7fV2F-Vx97hO26r5z26_3-9-dHCgM64k_K9iMJJwcHB_n4Wb9SPi2cHNisD1_DnO1h283ezOapA9un5ifuVjTwvwvLogkl__Gc_L54lptsPNF3D2PD6r083lNRohCMgiPyzG5OiQpFB5OKZo6nAEyoyEZA5Qjs7qtLq89mXW5F7zJj6uOzht7-DlYodP6x0-ne9wOr-Lm80LZ-26fnT9k6ebgbN55yyb15372byev_X0X9FUl10EMkiNRlQ5o4oZLCCAxRgNyjGZjilyTCLcNhc33nnpnb8EAAD__5YaO8WpCwAA","fqdn":"torchfriendlypay.com","domain":"torchfriendlypay.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:02.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"torchfriendlypay.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Jun 2025 22:31:57 GMT","end":"Fri, 26 Sep 2025 22:31:56 GMT"},"fingerprint":{"sha1":"C1:1A:8F:9D:C9:3D:22:4D:0E:AA:D9:B9:1C:98:E3:DC:41:83:82:4F","sha256":"B2:2E:9D:A4:0D:D7:A4:C2:A4:C1:7F:A9:E3:2A:AF:DE:7B:7F:BF:6A:1D:DC:6A:9C:AB:BF:98:D7:C2:A6:40:2E"}}},"request":{"raw":"GET /ren.gif?sid=H4sIAAAAAAAC_4xWS4xcV5m-5Xg3iygzo1mMNFKN2lNKNOnqqnPuubcqUcm67_f7XbMY3Ve173S95t5bXbZXAQMKO0fKggWKyqedOIFAwhaEBG12Fkh0Vh0pRoAQYsEKKVtQ2QYHsclZnPN_-v7F__3_r0_nG_c2jwmIN-mlbaxuV_N5eoT6g-7LUbUsVtuma_rd4aA_eL0bVUuKfL17c3_Vp68NIdkfvNKVyvxkdQQGw8FgOBh2xaouZ6ubR09YXK0_HA_740GfBP0hIvHN-u9xs-ngJu3g4vQx8c-4Ki5e_O3sf3CVn-Pl4mO-bE7a1fpVYbGZp-2qxqfFg2B5slxtl3jxPJzVHTxbPniWjVfNBUF86wpeLR88U4BXp_f3CnBWXRBX_u0znC0fPCsTZ6fvPq00m-NyibPin_D29ByX83Ncpec4X93BVfFLAuO8wKaFl4v3zFW9TW89ZdM9e0Fc_fxPuNpeEFc_-1e8XHyfnVc3u95qvmmr1bLBN2c7XN08x9XxOV5vHuL29hVcbR_ivP0qropfEEef63i5uG818xWuistrZDEsEEyLw0E6Gx6SiEwPR7NRfjhAMzodAFgMM-pJi6rZOU6bF_Cm6eBN1cGbWQdv1h28KC675GBE5sMUUrNxkdMDMiXJoswG4xEYDNJxTuNNvq_9Lm7Xd3E-v4vz-g28rt_AJ9VbF0Sn801cb36Cmxs73BQd3LQEPi12eFsSeNsQeJsSeFsReNsSeHu6e7eYN6DZvVfMm002fPaCZy_cna3a43vpu6v2uFwSOK3v4rrY3a_W_9_cwXn7wtntWVOcrfZXmrW7szQrdvfWj4mX9r3tKD_9FT4pL7vUjJyhHM5QNkvRDFFoSI_HOYVGeQYRojLcVDtcNVdw2nTw7eqC6F9b43V1QRA_QjhLH-Jm_hDnVQenm__A6XaH0xs7fHv5vbROs6Ysi35zY7XFxWqH1-1V3N7q3Js_Jv79yXiNt9_HZf7o-s7-5Pd__IOM83qH1_UO_1_1MwIfz988c1db4r672jbED6x1Wy2q2-l-9F6btiXxHa28tV3VhcI3dz9g8j2xDz_0y6bV02VRLY8b4rtsVRRlLa7qvCR-rDRRmdmb5ga7qZebtW5zorJY12XTVKvlOU73qn53C-fVBfGi8C9P1vq_uZ_jqn6I682nVx_daNt189rR0eI4r5t-WZfVatvPV4vrs7IsqmJSjsao12yyqpiAITUcjGnU22z2KB8PsyEoDlExpg9JsigOs_GsOCzJ0XhWzsYjNBz0yvWEmQaMzjiyFsYUp_uqrwiajCRO1Gxg-BQ0WORHJqf7nMNZrCYwMhn5jJL4vuVzpKSKkuQ7hmpIasIZigUVx9dDX5DDWI9lR-IoV3VMqADTgILGhJbKiz5vCA4fMxBoQQBtMqHMkOc5X2ShAVBEKRbPAOhLlOAESAMSP-U9m0KSLnqkilhDnkaqKgiR7wQ6iQLX4_yp5gIEaJKHccwgKQgN1498Y-q5jMWxAQNEXjFIQZ_qrKVbgY94xWRkJWBE0pN1yuJFRgC-5wS6ARUlsHyG18PAiCSSM3nFNFzPE9TEpyXemkI1oQSOlX0AbEr0SEGULeBCxWB5WUVREjqhDijVdjgVOVRghjTyeJdSA0Fk-ZgSk5DxVJ00JUkmOYVzeZJWrVAijWloI4Uy_NiFSBKhz2hMIkW2MuWhJcSxzzEx4zqJIOqRrYaqJoYMlAMwlQHNT6EQMohRzMhIvNBgJUSRkum5JJVEDGnzcmiQZhBCTg0FDviq7gHSdUiP00SeE1ifnko6R8m2JvG6b_kJq0qs4GiJRTOBG1g2pFRe9aA_5aayJjEhTZN64Hg2RfmJwycC70BEW7zNx6LKB5Li-1oILcgkGkIaEyRK4rgmUpQACW7A-WYchFPLQL5rgcSCPGsACzKS5VKhKLlG7IpAt0RTtWUg25FLQnsqmyELGUaOOS6MPClgXCdwIR8aiBZNw3dEYAYmcmxHZ9wpK9Cc4QJfip0ACJYlMpxvm7KPTJUSIDul-CnnoKnBBTqtMTQp0H5AA86PAw7AKAxi3wWOQCEjEGw1NnjLgoruRpbLAwECjnfESFR0XYlIgfKVSLJYOzEUVgO2Qcqs5rKaTAOOcj0aMIYDJFWIY2SGagIdT9F40aHUmBOZyNZjbooEx3RYmlUNxEo-HQnACkMuIE0bknbk0qogiDGLYk5jbZ5VEs5TLMZ2LIMyYxoqhuraBs8ZYZRMLd4ShcCcmgzt0EhiI9tiI0RxqogSW5Z9A1GxarmSqkSagiQ61FnOm7IkjBIoAt51LD02OBJaHPANBSqSJyReHPusTCGd0gR-6gdJ6HM0xwlAVmTDRoLFMQFkVYFNZNkTZcjzns1OVReQrmVrkgkdTUn-C_J4sXl0_c7bwzcIgsD5-mvvHxwonGUeHHzaCf9qc22d5ifV8rhfbvqzebpob9V7tzuq2-zoieP9zTuvf3mXaybDwbBXTAAie1-0zbqdDGmEhqMxRQE4GvWabDLoDwbw2ekVT_E_GGy7OqmKyXIzn_c29XyikmQs864lQkR6jqdRMrQpwRAjRrYD4FKSwjgg8oEnupYFxMilIwkELoCGKYQqN5UTKnEFXTJU0UqUAEwDWYq8yOAVLoAqTTF0kkj-voW9ajIaFYOs6G0mQ4BmM9Q7nphWLy0mwwEaIQh6zXrSa9ank16zmHxwcOArvi4cHPzQK2-u07pdlnU3Pe1GN9K2Sdfr7m--_fWPDg54weNcxfaV_TQuX1WWx3VVdF8G3ZNFd1an3aI8fqWr7fV2F-Vx97hO26r5z26_3-9-dHCgM64k_K9iMJJwcHB_n4Wb9SPi2cHNisD1_DnO1h283ezOapA9un5ifuVjTwvwvLogkl__Gc_L54lptsPNF3D2PD6r083lNRohCMgiPyzG5OiQpFB5OKZo6nAEyoyEZA5Qjs7qtLq89mXW5F7zJj6uOzht7-DlYodP6x0-ne9wOr-Lm80LZ-26fnT9k6ebgbN55yyb15372byev_X0X9FUl10EMkiNRlQ5o4oZLCCAxRgNyjGZjilyTCLcNhc33nnpnb8EAAD__5YaO8WpCwAA HTTP/1.1\r\nHost: torchfriendlypay.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nCookie: uid_id2=4d1d53ad-0af1-454a-8f8c-05f7a023d1b6:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl21610975=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Thu, 14 Aug 2025 16:41:02 GMT\r\nContent-Type: image/gif\r\nContent-Length: 7\r\nConnection: keep-alive\r\naccess-control-allow-origin: *\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 4\r\nHost: torchfriendlypay.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 5d013f252d412c89d21b3067ac7c1e75\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T15:47:04.335959Z","times_seen":13382140,"resource_available":true,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-14","alert":"Sinkholed","trigger":"torchfriendlypay.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"creative-sb1.com/sb/notifications/rtb/windows/2/css/style.css","fqdn":"creative-sb1.com","domain":"creative-sb1.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:03.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"creative-sb1.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Jul 2025 14:01:22 GMT","end":"Mon, 29 Sep 2025 14:59:36 GMT"},"fingerprint":{"sha1":"CD:76:E0:2A:28:09:08:24:2D:4C:A1:14:B2:AE:6C:39:A4:CC:2F:6B","sha256":"8B:98:84:C0:8D:47:7C:1B:A7:26:4B:E4:9E:6E:FD:8E:E1:6D:6E:41:1D:E7:91:B7:70:A3:C1:D0:C0:85:6B:31"}}},"request":{"raw":"GET /sb/notifications/rtb/windows/2/css/style.css HTTP/1.1\r\nHost: creative-sb1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:03 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jan 2024 14:28:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"65aa86f6-fcb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Date\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9SgNWxQTXAOGayhyY2RJsEYrvZO4J9KiD0uuQGlk2f9fVcgVfH4c2wvXrb5936uh%2B75A7UNJK06E09V1RgI5yTf6r9OxP4qcVufjK9eB\"}]}\r\ncf-ray: 96f1e5c2883dabc9-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4043,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"7239f6a6389b8eb300efe8f96b5cb700","sha1":"f55452d9f20d26b024bfaf59eeeaf800f0b596f5","sha256":"fd63b15dc6e53d0fab9fdb1861b4f4825ea14f5cb3fdea9321b7668abcddb600","sha512":"c7429f808ee40e2f05ce7b3d9861af47e5a6011a860bb45f2e658c6f68fb35caa6ac001868fccce8ece7f632caf402d3aa8eab504d77dc155cd76647e0be4ad9","ssdeep":"","tlshash":"8081ee972a731a00b607d4563f6a3b0b27190003964be9783fc1664c8fca2a9d6d37cf","first_seen":"2025-04-17T12:54:02.248221Z","last_seen":"2026-03-23T13:28:00.323018Z","times_seen":493,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":104,"dns":20,"connect":28,"send":0,"wait":434,"receive":0,"ssl":53},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/arbno.webp","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/arbno.webp HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4982\r\nserver: cloudflare\r\nlast-modified: Sat, 01 Apr 2023 23:52:45 GMT\r\ncache-control: max-age=10368000\r\nexpires: Sun, 09 Nov 2025 05:36:17 GMT\r\nvary: Accept-Encoding,User-Agent\r\naccept-ranges: bytes\r\nage: 2891083\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A75DiOGTUPxo2PyRI3UopIQCGoysI78TkYm6hpDjLVIZcaeCZrmABLOU6XEQpEMD7%2BwfTYL348mV0qEZorTpHCSDbzl1sdyfGg%3D%3D\"}]}\r\ncf-ray: 96f1e5b3bf1d299e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4982,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e3fa387fd6328de5101ce4c595e106a0","sha1":"943e4e94c089e39e0166de81fb5ef4b3b16fbe73","sha256":"9415030e1d491d279338df728405491a69916939bb5174521d1d6aa7f1795924","sha512":"c79942a5d76bb2b41395b4b6431eb6d7674d8fd71da88fee03ad3120ca4ca3f557d28a9d2b26e5c07b091079f4e0da3d7f28ddf665cfa5a404f290e5a56d5bd4","ssdeep":"96:pKxm1eTK0IQ5pjnb8abme70/x3GANjNKHyY3QNgZ2KP3yjJ6:RMTK0B5pjom74FNpKHS22KuJ6","tlshash":"1da19f13bae0b5a43ac1543f8a0ca967584634b82d24f0c5fb35d636b716f763126b4d","first_seen":"2023-09-24T02:00:48Z","last_seen":"2025-08-14T16:41:30.548456Z","times_seen":29,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/UI/fonts/Bahij_TheSansArabic-Black.woff2","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.521Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/UI/fonts/Bahij_TheSansArabic-Black.woff2 HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncf-cache-status: HIT\r\nlast-modified: Tue, 02 Aug 2022 18:28:22 GMT\r\ncache-control: max-age=10368000\r\nexpires: Mon, 10 Nov 2025 05:47:25 GMT\r\nvary: Accept-Encoding,User-Agent\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9F5cIevI%2FsYYhzZWaynRpLFveBmEYbZstw90lXDey3WUY6l1x%2BCNGMYASSg4neI8Bxmo1jtvDI10DWHtTp8oOTl65URCZ3a7Rg%3D%3D\"}]}\r\nage: 2804015\r\ncf-ray: 96f1e5b89c00eb4e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59108,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 59108, version 1.0","md5":"288ae4996a84f9a34480f50c93cdfa40","sha1":"a1950362f8fe3c70da0adcdd7f7a4335b870c231","sha256":"9e0a209aca797ffdc73c1b344b256fc8b7e6865b7f3a3cfbef602098e8a001a8","sha512":"4353685bab29c80b701e7cce555393ddda195b957f71c201b56f20a888ad373a9ecf047321a9d6073c0bfa55780a1628bcc00861cc5d4ba90fa2f28124242790","ssdeep":"1536:GWWUtAaT8yzN0+CKIgmEaFtkiq1RVSXkGGVG3Ecdy4Y:EG8ym++gA0XQXZGVG0cdyn","tlshash":"284312dca30d52474949fbf713af1aa3dc1752bc049b607127df0e96612ecba132ae06","first_seen":"2024-06-10T20:39:29Z","last_seen":"2026-01-03T13:23:21.338641Z","times_seen":28,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":76,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-solid-900-5.10.2.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-solid-900-5.10.2.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 13540\r\ncf-ray: 96f1e5bb6ddb12a5-CPH\r\nx-amz-id-2: 1fj1K5Dgk27u50CToRwTInGANd+/LZ74y2ao4TlbnqwL93hqF3TVkj64ijr0m3L1m4CghwuxH7c=\r\nx-amz-request-id: XJRK4EDP4EC34XPC\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:08 GMT\r\netag: \"5cc29745f2fab5157c5437315abd3b9e\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1244164\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13540,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13540, version 331.524","md5":"5cc29745f2fab5157c5437315abd3b9e","sha1":"5c8e4bb8f7d597f18d486baafc973a63b3266261","sha256":"53a9252cf1be52de5fdd46b7ee85d9a709673fb5f3227091f77a5ced1bb544ce","sha512":"4a4bc158cf06eb41d75262dea8b65980387db172dc2714c138889ef0d16ad4e088989fe04de7da02b8958d64d5fa206689df1f454a85b0d7e31f1af378b93eae","ssdeep":"192:YWOPiCdfREd8p53nuceYwbGtILA4emuJ+X2oWMQvWq/vQEbMioNiz/b9JH2wg:YzXEip53uceVbGQ7jxa2EgiHqwg","tlshash":"f452c0122c283d51e5fea037da3064c71c4e6437a88aae7411a1b5d701d68a3d6ce74f","first_seen":"2023-07-25T08:33:36Z","last_seen":"2026-04-03T17:09:06.245319Z","times_seen":100,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":104,"dns":1,"connect":36,"send":0,"wait":43,"receive":0,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-regular-400-5.0.13.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-regular-400-5.0.13.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 7152\r\ncf-ray: 96f1e5bb0cf512a5-CPH\r\nx-amz-id-2: HV6UOVEO6GQv63rJjHyd5TwfX2RVHKmlgDOEkOubxkrRJswBtxifGz8hne3t6q7nLU8MVm03mYg=\r\nx-amz-request-id: CV1C276KE8WTKT68\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:05 GMT\r\netag: \"6bc1bd82872828d6597c3ff525a350aa\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1244164\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7152,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7152, version 331.524","md5":"6bc1bd82872828d6597c3ff525a350aa","sha1":"5fc85c195dd2d2920829c6fbbb0c81022b096cb9","sha256":"ae7999fec5162d05eaf20412eb1537a2ebd4b29d7f965b4f316e9662d81c5eb1","sha512":"09afb1f1243b70b766419717338946767576cdb9f2a94ea83aa8f58c50f2b757cccba774f37e5186ff39d40260edd452ba329b233a447f29cbe802f385cc8262","ssdeep":"192:YDrFg3zn863+VIKhn9aNc+ULmuGLUm38jYNlPogOY:Y/yHuqK19aelahHsjadx","tlshash":"afe1ae4c121910e7f9fad8f18cabde1d041a7de92c22a3d37a87c04dc9b7391386b240","first_seen":"2023-11-22T05:32:58Z","last_seen":"2026-04-03T17:09:06.161209Z","times_seen":25,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":41,"dns":0,"connect":0,"send":0,"wait":71,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit-pro.fontawesome.com/releases/v5.13.0/webfonts/pro-fa-regular-400-5.10.2.woff2","fqdn":"kit-pro.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:01.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Jun 2025 16:08:07 GMT","end":"Wed, 24 Sep 2025 17:08:04 GMT"},"fingerprint":{"sha1":"58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64","sha256":"77:55:3D:59:A9:BC:75:44:9E:AD:FE:D1:45:D4:FE:D8:CD:71:E2:22:16:C8:40:CA:A7:13:01:C6:08:91:EB:CA"}}},"request":{"raw":"GET /releases/v5.13.0/webfonts/pro-fa-regular-400-5.10.2.woff2 HTTP/1.1\r\nHost: kit-pro.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://a.asd.homes\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kit-pro.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:01 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 16636\r\ncf-ray: 96f1e5bb0cfc12a5-CPH\r\nx-amz-id-2: bHAT/ajCE93j1DnGETgD8R2NgPh2nZKBJ8h5/5NGyHy4MC6I+FN+oRGGp7CQotAUmdW89tz82kLMhEDe3h4zug==\r\nx-amz-request-id: M4RKV2YA0J708BSF\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Thu, 01 Jul 2021 19:46:06 GMT\r\netag: \"fb66d5627aa88de454f2f3c82bbfadf6\"\r\ncache-control: public, max-age=31556926\r\ncf-cache-status: HIT\r\nage: 1244164\r\nexpires: Fri, 14 Aug 2026 22:29:47 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16636,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16636, version 331.524","md5":"fb66d5627aa88de454f2f3c82bbfadf6","sha1":"64400ca520e4ea812a1160c05c2c385094b45c7b","sha256":"9b9bf3bf064b8768906a109d7c9f5ff0f83520502b7c184c060235a1eceabf27","sha512":"24f8708bd1ba81cde03cbb5bb519b34d94a85261a92d48162666026957a565a82b34e8a7dd84868d505e53749145e1c0b6d35efffcc55fa2d31f0b9f89446b4e","ssdeep":"384:SyysF18QUavHamYpkeRBC5JjNbNh9aJL/uwcdhsPjeK8:SKKAzYpkec5+csPjeJ","tlshash":"d672d00b10edd54bebbbec2b09add6ed441720f73b66458c88ab9b500d1ecee11284d1","first_seen":"2023-11-21T19:28:32Z","last_seen":"2025-09-11T12:32:38.284695Z","times_seen":44,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":48,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.asd.homes/wp-content/themes/Elshaikh2021/style.css?ver=1.0","fqdn":"a.asd.homes","domain":"asd.homes","tld":"homes"},"ip":{"addr":"172.67.137.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/","date":"2025-08-14T16:41:00.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asd.homes","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Aug 2025 18:43:57 GMT","end":"Mon, 10 Nov 2025 19:42:45 GMT"},"fingerprint":{"sha1":"C0:E1:4D:4F:FB:EE:0E:55:DD:B5:90:29:5F:A4:6B:D7:97:19:00:E1","sha256":"AA:1A:26:34:25:51:D0:08:42:D6:CC:AA:C1:C6:9D:13:9B:DE:0D:A7:BA:D2:37:66:BC:2B:C7:2E:C7:77:75:90"}}},"request":{"raw":"GET /wp-content/themes/Elshaikh2021/style.css?ver=1.0 HTTP/1.1\r\nHost: a.asd.homes\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.asd.homes/%D9%81%D9%8A%D9%84%D9%85-me-before-you-2016-%D9%85%D8%AA%D8%B1%D8%AC%D9%85/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 14 Aug 2025 16:41:00 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 213\r\nserver: cloudflare\r\nlast-modified: Sun, 10 Jan 2021 00:59:59 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 07 Jul 2026 02:49:23 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\naccept-ranges: bytes\r\nage: 3333096\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iN2cSK1bgns1Wtf2H6tejJoYe2FVZIDd5iOiJcHCWBFnwEzKuW1dF5rfEZUbnf8KrP7J%2FQWkApuCODvWoVQw9qYIfuidtdO9gQ%3D%3D\"}]}\r\ncf-ray: 96f1e5b3bf06299e-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":305,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"5ee91ef7e0ee3eddf4ef15e5a959f7c8","sha1":"bb6b473be9b888836cc087cf6b03f432f1c95ad2","sha256":"44535479ada7a4bbe684228ee3053c223de4f79e88599f9a1f3a5c115745b4bc","sha512":"db7e76585d77e9151770f9121ee9284c78b92cf7d9dcc800ef7cfcecde740b1c75621d92d4c1e70e8e2091456a11cfe0880c880ceb002d7836cf9a8a3a239612","ssdeep":"","tlshash":"65e072a03342b601ee32a6950876f20bc861abece0e92a30ead8034c023339200b9c01","first_seen":"2025-01-05T19:29:17.324149Z","last_seen":"2025-08-14T16:41:30.554695Z","times_seen":9,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}