{"report_id":"63e7ded6-59b6-46a6-9cc6-2b5052fc91a5","version":6,"status":"done","tags":[],"date":"2025-12-28T23:26:46Z","url":{"schema":"http","addr":"av.av4us.top","fqdn":"av.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"172.237.146.38","port":0,"asn":20940,"as":"Akamai International B.V.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"title":"av4us.top - Erotikk Ressurser og informasjon","dom":{"size":35519,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10563)","md5":"4be951848d0d85e2e0d1f148ea587dcf","sha1":"e480c697c161ae4059d3e010786de1ecfef0b97d","sha256":"7a73fe5027ca5ab454f7eda38fa7768032235c7eb3132776d6a1df5cdedceeda","sha512":"0cae7614a652d06ddf90494dd6e620d03824db3629cec4023c089b925e680fb6d7ff4bfe2e826ea5046492fbc0c2f8cb4bfa3307dfcdad7d947ac5493cd4b4ef","ssdeep":"768:fimvTN1L6CjFugiiXydUulT5Q/jG8PlVmPQUI7YQUmXGG4LEBNr:ffZ+dUulQh","tlshash":"d8f21b10b939363ba1ab243db685b261f568cd4fc5611ea2f53d72244bcdc6322d3b15","dom_hash":"domhash4d7f67ac3961bc559c28aa734d4d70fe","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"av.av4us.top","fqdn":"av.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"172.237.146.38","port":0,"asn":20940,"as":"Akamai International B.V.","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-01T23:26:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"img.sedoparking.com","ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"domain_registered":"2001-09-18","domain_rank":591238,"first_seen":"2013-04-22T22:23:29Z","last_seen":"2025-12-22T01:12:21.875956Z","alert_count":4,"request_count":4,"received_data":59326,"sent_data":1826,"comment":"","tags":null,"fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}]},{"fqdn":"parking3.parklogic.com","ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"domain_registered":"2007-02-28","domain_rank":497061,"first_seen":"2023-05-10T10:50:24Z","last_seen":"2025-12-22T04:17:01.352443Z","alert_count":0,"request_count":4,"received_data":3856,"sent_data":2124,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww1.av4us.top","ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2023-01-18","domain_rank":0,"first_seen":"2025-05-16T09:13:10.87921Z","last_seen":"2025-11-26T13:37:04.760287Z","alert_count":8,"request_count":4,"received_data":78585,"sent_data":3524,"comment":"","tags":null,"fingerprints":null},{"fqdn":"av.av4us.top","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-01-18","domain_rank":0,"first_seen":"2024-03-25T21:17:51Z","last_seen":"2025-09-07T07:44:09.355908Z","alert_count":6,"request_count":2,"received_data":5291,"sent_data":912,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}]},{"fqdn":"router.parklogic.com","ip":{"addr":"172.234.216.100","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"domain_registered":"2007-02-28","domain_rank":346495,"first_seen":"2025-03-19T10:23:50.028513Z","last_seen":"2025-12-22T00:47:01.491562Z","alert_count":0,"request_count":1,"received_data":214,"sent_data":494,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3b0d184efe54b0aa5a41aa4b2310fc6f","sha1":"832a743e8b4ae43a236450fb7d55151bae08cd2b","sha256":"ef1842a6e4932e4383d57b5ea37361ac6fbbae0b3c73c3a1f2045827a46ee2f9","sha512":"07d1444c8f8024f3513e008ccba4337e3f259f193139ca60733a6ca8cce99f8df6cf669063d3ddf8b96a8dd4c3e48e6b2b94658636ddffd16ea70462a507e3f1","ssdeep":"","tlshash":"9971093c494178b5456191ddd0866f185bac1983328434c8fcba6b08739f8efb9b6b1b","size":3803,"data":"","first_seen":"2025-12-28T23:26:51.326895Z","last_seen":"2025-12-28T23:26:51.326895Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"cbb3d2ae8e9948970837ce73e3f47ef8","sha1":"26a24bc9b9af1b731d839ddda11d87665c2f894f","sha256":"9b8e88ae70dfa4837c62be1a9365b23b059a034f76554ad476098e72c1fd8a71","sha512":"af17443adcaecc9e7497020b2482fb46021f055d09824726330dde493e7e817380a7e0efc2ee9dddd506f8a0fb70cb24f74d473307526558342a613b0fa07a55","ssdeep":"","tlshash":"82118e8926e614194637a5388fcfc20871209007318a8d2c7f0d73e45f52a359bf77ed","size":916,"data":"","first_seen":"2024-05-24T00:49:23Z","last_seen":"2026-05-04T04:09:25.005371Z","times_seen":3871,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/enhance.js?pcId=1\u0026domain=av4us.top","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f68359696a1df8c6f429b81d8054ba3","sha1":"fac155b411e1e257dd247884d201c4b1b79f07c5","sha256":"15e73052450fc73b98c4b084b44d40edc80c4c2829b24f9c749693e239edb31c","sha512":"7489bcdcdc7ab313f23d08d47f563fd6a3c1b0a998f3c1e4595988504efc0284a06a8ecdf8e48838a4493ff18ff1cb4571888a9b5577bd9816b1d71176949043","ssdeep":"","tlshash":"0131514e496412b405b3303de207a0106f3bc64a311de451ba6dc9406f4be2f8333add","size":1607,"data":"","first_seen":"2025-11-26T13:37:19.59303Z","last_seen":"2025-12-28T23:26:51.265542Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ea52db58fbffe0b80caf41a0b187041","sha1":"02c6eb746336435d8769d741ff8c349d8942694c","sha256":"5f36412f2e2b6eb7ef72dbc61cc58ad6b37d2eb2ce575f294eaf6add7e305cf2","sha512":"eb147c5d91a77bc9fb37efddf2a948a3e023f0928fd3503c206607bb39e87cc4979c7e031ec3f6e1d785bd08a62b2a0e184cc78be15018823c4b47e433c9d1cf","ssdeep":"","tlshash":"31712a0106993fbf8524358ee80d399086dcd6c7b1982598ec6d2c2d268f4da627e337","size":3791,"data":"","first_seen":"2025-12-28T23:26:51.346827Z","last_seen":"2025-12-28T23:26:51.346827Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"cbb3d2ae8e9948970837ce73e3f47ef8","sha1":"26a24bc9b9af1b731d839ddda11d87665c2f894f","sha256":"9b8e88ae70dfa4837c62be1a9365b23b059a034f76554ad476098e72c1fd8a71","sha512":"af17443adcaecc9e7497020b2482fb46021f055d09824726330dde493e7e817380a7e0efc2ee9dddd506f8a0fb70cb24f74d473307526558342a613b0fa07a55","ssdeep":"","tlshash":"82118e8926e614194637a5388fcfc20871209007318a8d2c7f0d73e45f52a359bf77ed","size":916,"data":"","first_seen":"2024-05-24T00:49:23Z","last_seen":"2026-05-04T04:09:25.005371Z","times_seen":3871,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/enhance.js?pcId=1\u0026domain=av4us.top","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f68359696a1df8c6f429b81d8054ba3","sha1":"fac155b411e1e257dd247884d201c4b1b79f07c5","sha256":"15e73052450fc73b98c4b084b44d40edc80c4c2829b24f9c749693e239edb31c","sha512":"7489bcdcdc7ab313f23d08d47f563fd6a3c1b0a998f3c1e4595988504efc0284a06a8ecdf8e48838a4493ff18ff1cb4571888a9b5577bd9816b1d71176949043","ssdeep":"","tlshash":"0131514e496412b405b3303de207a0106f3bc64a311de451ba6dc9406f4be2f8333add","size":1607,"data":"","first_seen":"2025-11-26T13:37:19.59303Z","last_seen":"2025-12-28T23:26:51.265542Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"av.av4us.top/","fqdn":"av.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"172.237.146.25","port":443,"asn":20940,"as":"Akamai International B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"016d49c8a1a68aa31b5dc95215c14e75","sha1":"dfa44bcda7ac4dca4950ab5b5918c8db075fe8f0","sha256":"069c25ace43ac472422bc9afda3163b77917858780b4fa40a950db4948e2d005","sha512":"c95fa0b912e0a2271e9e64c090b9f3af3d3398f7ee9f6686a1dffa6fd0e69b285c235a4d802348afb87c62ed5343722a1bef3221d160b88ae49b6a6407a3be9a","ssdeep":"96:ItDJYtoAJS8ffKH1NPIX4rDIcQ0ucq4o5nZ2sY9EsoS5I7Bma8:IVJYtoA1ffqzr/IcQ0yb9YpHmoa8","tlshash":"7891f876b38270398be514eaa13fab18753b9211350740b2d76efcd23c20a5b60a6f95","size":4299,"data":"","first_seen":"2025-12-28T23:26:51.352589Z","last_seen":"2025-12-28T23:26:51.352589Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"img.sedoparking.com/templates/logos/sedo_logo.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","date":"2025-12-28T23:26:35.883Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.sedoparking.com","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 12 Dec 2025 17:51:08 GMT","end":"Wed, 13 Jan 2027 17:51:07 GMT"},"fingerprint":{"sha1":"74:3B:BB:7B:E9:10:1C:6D:DF:D2:6E:90:04:B2:1F:C3:E2:96:BF:65","sha256":"B8:FC:0C:CE:F4:8E:D5:26:D9:8B:19:39:E8:D0:38:CB:8A:13:98:FD:CE:CB:E4:0F:7E:9E:0E:50:AA:85:E7:C7"}}},"request":{"raw":"GET /templates/logos/sedo_logo.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\ncontent-type: image/png\r\ncontent-length: 15086\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Sun, 04 Jan 2026 23:26:35 GMT\r\nx-cfhash: \"def00c11b1596db4efee6a9fbe64fc27\"\r\nx-cff: B\r\nlast-modified: Mon, 11 Jan 2021 07:44:34 GMT\r\nx-cf3: H\r\ncf4age: 770657\r\nx-cf-tsc: 1763620768\r\ncf4ttl: 30765342.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: 9938cb985812f8f0328aec591a9c7a76\r\nx-cf1: 11696:fA.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"def00c11b1596db4efee6a9fbe64fc27","sha1":"bd298981e6d8d7e4ffa18abcf687041f4246672d","sha256":"95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4","sha512":"c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f","ssdeep":"192:jiHSINqv0tJ30DezSfPAXTZwC3D2N2xp1Fd/ar/+zi3LHZNwkQH0iWpXDt3TN8rB:jzAnP9j","tlshash":"31623e0bfd4bc358ce50b23ae67c4bfb6361d8c1b090a7e257d9d51aafa7b014c9a011","first_seen":"2023-04-14T07:11:21Z","last_seen":"2026-05-05T15:09:57.389583Z","times_seen":228390,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/scribe.php?pcId=1\u0026domain=av4us.top\u0026aId=614\u0026pId=2829\u0026usid=null\u0026utid=null\u0026query=null\u0026domainJs=ww1.av4us.top\u0026path=/info/Erotikk.html\u0026ss=true\u0026lp=1\u0026tzB=UTC\u0026wd=false\u0026gpu=null","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","date":"2025-12-28T23:26:35.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enhance-lb01.parklogic.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 00:41:30 GMT","end":"Wed, 25 Feb 2026 00:41:29 GMT"},"fingerprint":{"sha1":"1F:86:42:B2:D0:DC:8C:04:66:71:B3:1D:12:86:94:66:AA:A4:F0:53","sha256":"DE:22:E0:66:01:58:BA:55:12:64:EA:79:8C:51:98:E0:D9:94:9B:F7:63:31:AE:82:59:7C:9A:27:B2:0A:34:0D"}}},"request":{"raw":"GET /page/scribe.php?pcId=1\u0026domain=av4us.top\u0026aId=614\u0026pId=2829\u0026usid=null\u0026utid=null\u0026query=null\u0026domainJs=ww1.av4us.top\u0026path=/info/Erotikk.html\u0026ss=true\u0026lp=1\u0026tzB=UTC\u0026wd=false\u0026gpu=null HTTP/1.1\r\nHost: parking3.parklogic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ww1.av4us.top/\r\nOrigin: https://ww1.av4us.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-05T16:09:50.836081Z","times_seen":14695563,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/search/tsc.php?ses=ogc5-ALjLM2WXPQ2K27nQEehdriw7cZgGQun3dtRNeJzSeXNeJoKR8kdTZNYW7OB9PupOtQgkkVlPq5wxB6NJMnY-KE-vocroLUjl11Y710vglTARH_K6YJsThiUvjRJOZmMzVnJnUFHqrFPbQHiBUMyOB9TiEx3EyTxuPPwEUTp1fOAG9T-NKLwQc_kP9ZtwxdxMjpb0Y5gaLkLQHDwNOS_n8E42LrJOxKb7MrR3x6s-BnwdP81p22gOqD-eNIJDOTbIpCplPkyPO2SjRcrBdVtTEGHcUP1De5w8qad-yPqcGnZVZAg3TUYRKa6Que9FukR3Ce6WoR1waOE6ftLbkGGNacNJau6wtcsgVMXKJXhR0kU084h44nvqIUAQ\u0026cv=2","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","date":"2025-12-28T23:26:35.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ww1.av4us.top","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 28 Feb 2025 00:00:00 GMT","end":"Fri, 27 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A8:69:D9:DE:4C:0C:C5:4E:D6:01:43:07:D9:E7:7E:D0:E8:34:B4:10","sha256":"F4:54:B3:3C:A5:9C:34:7E:C0:5C:79:22:0C:0A:F4:FB:07:4A:CC:4D:1D:F6:CD:DC:D2:C0:39:EA:24:6D:EA:E6"}}},"request":{"raw":"GET /search/tsc.php?ses=ogc5-ALjLM2WXPQ2K27nQEehdriw7cZgGQun3dtRNeJzSeXNeJoKR8kdTZNYW7OB9PupOtQgkkVlPq5wxB6NJMnY-KE-vocroLUjl11Y710vglTARH_K6YJsThiUvjRJOZmMzVnJnUFHqrFPbQHiBUMyOB9TiEx3EyTxuPPwEUTp1fOAG9T-NKLwQc_kP9ZtwxdxMjpb0Y5gaLkLQHDwNOS_n8E42LrJOxKb7MrR3x6s-BnwdP81p22gOqD-eNIJDOTbIpCplPkyPO2SjRcrBdVtTEGHcUP1De5w8qad-yPqcGnZVZAg3TUYRKa6Que9FukR3Ce6WoR1waOE6ftLbkGGNacNJau6wtcsgVMXKJXhR0kU084h44nvqIUAQ\u0026cv=2 HTTP/1.1\r\nHost: ww1.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\nserver: Parking/1.0\r\nx-cache-miss-from: parking-5557cdbbbb-flcfz\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-05T16:09:50.836081Z","times_seen":14695563,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"av.av4us.top/favicon.ico","fqdn":"av.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://av.av4us.top/","date":"2025-12-28T23:26:25.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.av4us.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:14:41 GMT","end":"Sat, 28 Mar 2026 06:14:40 GMT"},"fingerprint":{"sha1":"4A:D4:26:2B:34:61:69:C0:01:EE:FE:EB:61:28:1A:10:23:5B:0D:58","sha256":"3D:7A:8C:E8:DB:2A:B4:4A:25:D8:87:2E:CB:B4:8C:0B:90:90:56:B4:7F:90:6D:27:70:E7:EB:05:26:40:7C:61"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: av.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://av.av4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-05T16:09:50.836081Z","times_seen":14695563,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/enhance.js?pcId=1\u0026domain=av4us.top","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","date":"2025-12-28T23:26:35.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enhance-lb01.parklogic.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 00:41:30 GMT","end":"Wed, 25 Feb 2026 00:41:29 GMT"},"fingerprint":{"sha1":"1F:86:42:B2:D0:DC:8C:04:66:71:B3:1D:12:86:94:66:AA:A4:F0:53","sha256":"DE:22:E0:66:01:58:BA:55:12:64:EA:79:8C:51:98:E0:D9:94:9B:F7:63:31:AE:82:59:7C:9A:27:B2:0A:34:0D"}}},"request":{"raw":"GET /page/enhance.js?pcId=1\u0026domain=av4us.top HTTP/1.1\r\nHost: parking3.parklogic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1607,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text","md5":"2f68359696a1df8c6f429b81d8054ba3","sha1":"fac155b411e1e257dd247884d201c4b1b79f07c5","sha256":"15e73052450fc73b98c4b084b44d40edc80c4c2829b24f9c749693e239edb31c","sha512":"7489bcdcdc7ab313f23d08d47f563fd6a3c1b0a998f3c1e4595988504efc0284a06a8ecdf8e48838a4493ff18ff1cb4571888a9b5577bd9816b1d71176949043","ssdeep":"","tlshash":"0131514e496412b405b3303de207a0106f3bc64a311de451ba6dc9406f4be2f8333add","first_seen":"2025-11-26T13:37:19.59303Z","last_seen":"2025-12-28T23:26:51.265542Z","times_seen":2,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/bg/arrows-curved.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","date":"2025-12-28T23:26:35.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.sedoparking.com","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 12 Dec 2025 17:51:08 GMT","end":"Wed, 13 Jan 2027 17:51:07 GMT"},"fingerprint":{"sha1":"74:3B:BB:7B:E9:10:1C:6D:DF:D2:6E:90:04:B2:1F:C3:E2:96:BF:65","sha256":"B8:FC:0C:CE:F4:8E:D5:26:D9:8B:19:39:E8:D0:38:CB:8A:13:98:FD:CE:CB:E4:0F:7E:9E:0E:50:AA:85:E7:C7"}}},"request":{"raw":"GET /templates/bg/arrows-curved.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\ncontent-type: image/png\r\ncontent-length: 13502\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Sun, 04 Jan 2026 23:26:35 GMT\r\nx-cfhash: \"107694ee1e94990d97b7e58651ffd6a0\"\r\nx-cff: B\r\nlast-modified: Tue, 12 Oct 2021 05:19:02 GMT\r\nx-cf3: H\r\ncf4age: 362\r\nx-cf-tsc: 1750436138\r\ncf4ttl: 31535638.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: b070935ae6d4145a8d6e560e9a75329b\r\nx-cf1: 11696:fA.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":13502,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced","md5":"107694ee1e94990d97b7e58651ffd6a0","sha1":"7dd9ae7badf78be01ea0623df1e90171348716ff","sha256":"7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc","sha512":"5d695545e1516d28ca05933c88aec08ca324a61804bd662102a1eeb7a515ba543343ad24fda53aba329ae803f622664b29d5a3461bccbd264ec8950e8ca51002","ssdeep":"384:/mKXXNN5Jr7k18sA6pXsox1amFbraxPpkJ:euNN3r7SJZRGmgxPC","tlshash":"2c52c04825b019dc9f2252a9c51ea74c4ff6f5dc970960a83b1ab11cd375b7fca3822e","first_seen":"2023-05-01T18:29:40Z","last_seen":"2026-05-01T09:25:36.583759Z","times_seen":76687,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"av.av4us.top/","fqdn":"av.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"172.237.146.25","port":443,"asn":20940,"as":"Akamai International B.V.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T23:26:24.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.av4us.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:14:41 GMT","end":"Sat, 28 Mar 2026 06:14:40 GMT"},"fingerprint":{"sha1":"4A:D4:26:2B:34:61:69:C0:01:EE:FE:EB:61:28:1A:10:23:5B:0D:58","sha256":"3D:7A:8C:E8:DB:2A:B4:4A:25:D8:87:2E:CB:B4:8C:0B:90:90:56:B4:7F:90:6D:27:70:E7:EB:05:26:40:7C:61"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: av.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 28 Dec 2025 23:26:25 GMT\r\ncontent-type: text/html\r\ncache-control: no-store, max-age=0\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64\r\npermissions-policy: ch-ua=(self \"https://*.parklogic.com\"), ch-ua-arch=(self \"https://*.parklogic.com\"), ch-ua-bitness=(self \"https://*.parklogic.com\"), ch-ua-full-version=(self \"https://*.parklogic.com\"), ch-ua-full-version-list=(self \"https://*.parklogic.com\"), ch-ua-mobile=(self \"https://*.parklogic.com\"), ch-ua-model=(self \"https://*.parklogic.com\"), ch-ua-platform=(self \"https://*.parklogic.com\"), ch-ua-platform-version=(self \"https://*.parklogic.com\"), ch-ua-wow64=(self \"https://*.parklogic.com\")\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4394,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (4394), with no line terminators","md5":"3291687afa368e63cc4b05e8177a81f2","sha1":"782af715867d2d88f966b4e28dc4893d42503dd7","sha256":"7be4b7453dc7393d4370d25a2f32f5ebd835166d02e54491b0481a63bc598eda","sha512":"f4306f1f0e4d9fc33a22d11e3c45dccfe94aa385d087e5b7c9b8882d75cc3ecb33cb7680098df250e384fd18d484bde311f0459de160e0428d763e2c8a3d3d0a","ssdeep":"96:nItDJYtoAJS8ffKH1NPIX4rDIcQ0ucq4o5nZ2sY9EsoS5I7BmaL:IVJYtoA1ffqzr/IcQ0yb9YpHmoaL","tlshash":"87910876b78270398be114eaa07fab18753f9201350b40b2d76dfcd23c20a5b50a6f95","first_seen":"2025-12-28T23:26:51.269828Z","last_seen":"2025-12-28T23:26:51.269828Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1272,"timings":{"blocked":583,"dns":355,"connect":106,"send":0,"wait":107,"receive":0,"ssl":119},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"av.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"router.parklogic.com/","fqdn":"router.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.234.216.100","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://av.av4us.top/","date":"2025-12-28T23:26:25.644Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"router-lb01.parklogic.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 27 Oct 2025 12:02:42 GMT","end":"Sun, 25 Jan 2026 12:02:41 GMT"},"fingerprint":{"sha1":"10:6E:F2:4F:5D:F2:C2:B7:33:30:F3:3B:3D:88:83:69:F8:8A:60:2A","sha256":"DD:5E:50:D8:D6:72:D8:5A:56:DC:C8:AF:CF:1F:EE:23:3A:7E:C1:C5:9C:C1:99:74:3F:F1:F7:D3:3C:8C:E4:C3"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: router.parklogic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 426\r\nOrigin: https://av.av4us.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://av.av4us.top/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":426,"data":"{\"parameters\":{\"domainApex\":\"av4us.top\",\"domainFull\":\"av.av4us.top\",\"ipOrig\":\"91.90.42.154\",\"protocol\":\"https\",\"region\":\"03\",\"city\":\"Oslo\",\"timezoneGeo\":\"Europe/Oslo\",\"continent\":\"EU\",\"tenant\":\"shared\",\"uuid\":\"bfac4c6a7920b40ab373e609637e458b\",\"regionName\":\"Oslo County\",\"country\":\"NO\",\"path\":\"/\",\"continentName\":\"Europe\",\"countryName\":\"Norway\",\"adBlockingDetected\":false,\"timezoneBrowser\":\"UTC\",\"webdriver\":false,\"gpu\":null}}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:26 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":68,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"e6c8ff955031ddb373e8f232d3c76f25","sha1":"9a2e0e26417d06fb96756a341d8613d17b5c17d9","sha256":"9e53c76a61ca38ae39f4c2b8a834196033c831d00bf8692c8729651b58e01fa8","sha512":"252ee4f7f69608cb58334e6782eb416be8847f6c30b38a614bb8e37656d9655626b6cdacb0d85ea2abf9f4a4a7b0392bdbbd747d1e5ea168cc87c2be6a1e8402","ssdeep":"","tlshash":"7ea002cc659a1691349e95b6e9f391328cbcb18050f819448d485c97500eb24e1e7785","first_seen":"2025-12-28T23:26:51.272617Z","last_seen":"2025-12-28T23:26:51.272617Z","times_seen":1,"resource_available":false,"data":null}},"time_used":855,"timings":{"blocked":223,"dns":1,"connect":106,"send":0,"wait":409,"receive":0,"ssl":113},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/bg/arrows-curved.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","date":"2025-12-28T23:26:26.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.sedoparking.com","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 12 Dec 2025 17:51:08 GMT","end":"Wed, 13 Jan 2027 17:51:07 GMT"},"fingerprint":{"sha1":"74:3B:BB:7B:E9:10:1C:6D:DF:D2:6E:90:04:B2:1F:C3:E2:96:BF:65","sha256":"B8:FC:0C:CE:F4:8E:D5:26:D9:8B:19:39:E8:D0:38:CB:8A:13:98:FD:CE:CB:E4:0F:7E:9E:0E:50:AA:85:E7:C7"}}},"request":{"raw":"GET /templates/bg/arrows-curved.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 13502\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Sun, 04 Jan 2026 23:26:27 GMT\r\nx-cfhash: \"107694ee1e94990d97b7e58651ffd6a0\"\r\nx-cff: B\r\nlast-modified: Tue, 12 Oct 2021 05:19:02 GMT\r\nx-cf3: H\r\ncf4age: 362\r\nx-cf-tsc: 1750436138\r\ncf4ttl: 31535638.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: cce57e2f2e85a1562f47e5922a7c8e16\r\nx-cf1: 11696:fA.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":13502,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced","md5":"107694ee1e94990d97b7e58651ffd6a0","sha1":"7dd9ae7badf78be01ea0623df1e90171348716ff","sha256":"7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc","sha512":"5d695545e1516d28ca05933c88aec08ca324a61804bd662102a1eeb7a515ba543343ad24fda53aba329ae803f622664b29d5a3461bccbd264ec8950e8ca51002","ssdeep":"384:/mKXXNN5Jr7k18sA6pXsox1amFbraxPpkJ:euNN3r7SJZRGmgxPC","tlshash":"2c52c04825b019dc9f2252a9c51ea74c4ff6f5dc970960a83b1ab11cd375b7fca3822e","first_seen":"2023-05-01T18:29:40Z","last_seen":"2026-05-01T09:25:36.583759Z","times_seen":76687,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":57,"dns":1,"connect":8,"send":0,"wait":9,"receive":1,"ssl":50},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/logos/sedo_logo.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","date":"2025-12-28T23:26:27.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.sedoparking.com","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 12 Dec 2025 17:51:08 GMT","end":"Wed, 13 Jan 2027 17:51:07 GMT"},"fingerprint":{"sha1":"74:3B:BB:7B:E9:10:1C:6D:DF:D2:6E:90:04:B2:1F:C3:E2:96:BF:65","sha256":"B8:FC:0C:CE:F4:8E:D5:26:D9:8B:19:39:E8:D0:38:CB:8A:13:98:FD:CE:CB:E4:0F:7E:9E:0E:50:AA:85:E7:C7"}}},"request":{"raw":"GET /templates/logos/sedo_logo.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 15086\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Sun, 04 Jan 2026 23:26:27 GMT\r\nx-cfhash: \"def00c11b1596db4efee6a9fbe64fc27\"\r\nx-cff: B\r\nlast-modified: Mon, 11 Jan 2021 07:44:34 GMT\r\nx-cf3: H\r\ncf4age: 770657\r\nx-cf-tsc: 1763620768\r\ncf4ttl: 30765342.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: d13f4481f77df0a561c4ab0c0baa2c29\r\nx-cf1: 11696:fA.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"def00c11b1596db4efee6a9fbe64fc27","sha1":"bd298981e6d8d7e4ffa18abcf687041f4246672d","sha256":"95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4","sha512":"c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f","ssdeep":"192:jiHSINqv0tJ30DezSfPAXTZwC3D2N2xp1Fd/ar/+zi3LHZNwkQH0iWpXDt3TN8rB:jzAnP9j","tlshash":"31623e0bfd4bc358ce50b23ae67c4bfb6361d8c1b090a7e257d9d51aafa7b014c9a011","first_seen":"2023-04-14T07:11:21Z","last_seen":"2026-05-05T15:09:57.389583Z","times_seen":228390,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T23:26:35.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ww1.av4us.top","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 28 Feb 2025 00:00:00 GMT","end":"Fri, 27 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A8:69:D9:DE:4C:0C:C5:4E:D6:01:43:07:D9:E7:7E:D0:E8:34:B4:10","sha256":"F4:54:B3:3C:A5:9C:34:7E:C0:5C:79:22:0C:0A:F4:FB:07:4A:CC:4D:1D:F6:CD:DC:D2:C0:39:EA:24:6D:EA:E6"}}},"request":{"raw":"GET /info/Erotikk.html?ses=ogchAz1qTlgecnyOW7-lpw-QGv973OlGNX5MKG3ULvoOEwQs5fA40IcFY7ImubQrkP8zZhQx90EZFfgP_qMb0dm7FLkGmZB970_Iw_ONrUG4OSw0YyTtWXxGS8OlT920KFUzG11Uogcwh94EJvM_pEQmhlO0NgCyFB1nUzYZfo-xnS1-gR6xjvgZ5GLNvXHuQWrd04UYV5LZl3tG-_PYWwJSNWSTHYE2ZQjjLvtQUQk3j40nD_fBwYdBDquNKkMzclqhawxB2eOBOYEk0e_VtS0lBLNMD32Ynai8jyH1JgYY6CVcAD26omLouDPPzidNhNlQg8\u0026category=Erotikk\u0026keyword=Erotikk HTTP/1.1\r\nHost: ww1.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nSec-Fetch-User: ?1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sun, 28 Dec 2025 23:26:35 GMT\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\nlast-modified: Sun, 28 Dec 2025 23:26:35 GMT\r\npragma: no-cache\r\nserver: Parking/1.0\r\nvary: Accept-Encoding\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_whQEZZr7HQg7P22PhQzT88MzriKEk/GxRRao4MQJJPzOWFD9i+zCntWa9WKNhSA7Xjv+57FadJgA4tSINqFNcg==\r\nx-cache-miss-from: parking-5557cdbbbb-7qrpx\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37801,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10563)","md5":"09471e0f687478f2378bc2c4a082988f","sha1":"b8e1371ffdff57cbef4f973be9346c1f02ff7148","sha256":"8a3c1d3f3318d290afea192f83ddeee009198494dc634ae3e9ae80e9a460abe0","sha512":"cfb43009498f025ea567da9a94c3535cdd045d2b0f78aa3e9fabed69160fe7a6aadad3ec92ab09c17ed8fa2f1805920d9099f860c430f6b755f50e41b26ccad9","ssdeep":"768:5invTN1L6CjFugiiXydUul1B8L3aw71xuD8AIfsUAih0M6v2BXb:5OZ+dUul4L","tlshash":"d4030910b939323ba1ab203db995b261f568cd8fc5621ea3f93d72244bcdc6352d3b15","first_seen":"2025-12-28T23:26:51.277553Z","last_seen":"2025-12-28T23:26:51.277553Z","times_seen":1,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T23:26:26.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ww1.av4us.top","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 28 Feb 2025 00:00:00 GMT","end":"Fri, 27 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A8:69:D9:DE:4C:0C:C5:4E:D6:01:43:07:D9:E7:7E:D0:E8:34:B4:10","sha256":"F4:54:B3:3C:A5:9C:34:7E:C0:5C:79:22:0C:0A:F4:FB:07:4A:CC:4D:1D:F6:CD:DC:D2:C0:39:EA:24:6D:EA:E6"}}},"request":{"raw":"GET /?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b HTTP/1.1\r\nHost: ww1.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sun, 28 Dec 2025 23:26:26 GMT\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\nlast-modified: Sun, 28 Dec 2025 23:26:26 GMT\r\npragma: no-cache\r\nserver: Parking/1.0\r\nvary: Accept-Encoding\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_IYJr8sOBXcvzFUgLe3fjRShv+S36eOsGjx6qgI9uarbznIbK8IvkA7+Fod7q3xojCTDJSvcJQQXDBYuIeazZoQ==\r\nx-cache-miss-from: parking-5557cdbbbb-zc27m\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":39098,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10563)","md5":"0f631a729f7d3bc3c5733fc9a5c1e37a","sha1":"7bb82ab8bdf5553eef80c924d98359c11234c3e3","sha256":"32f1c9ea8350017e59030d1839fd5c8302feb4d3f2023638dce51d20b94a84d7","sha512":"be6cc5d68177ab56b2f9679f6683409b9ecd0db66be8d8b97ab7ef981c01fc5c4b5e661dc1011792ae4ca938a05074cf51adbb6a7b897d58ec4e2b8eb17ef87a","ssdeep":"768:5iRvTN1L6CjFugiM9BulTyTs6cl2e/nUTNES57NkhzMXiOBXb:5QZdBulYL","tlshash":"9603c820291c24322263185ea5e6ab587a59dd4fc9525de8fc3c8324efc2c532ee7e16","first_seen":"2025-12-28T23:26:51.29763Z","last_seen":"2025-12-28T23:26:51.29763Z","times_seen":1,"resource_available":false,"data":null}},"time_used":914,"timings":{"blocked":324,"dns":46,"connect":37,"send":0,"wait":266,"receive":0,"ssl":239},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/enhance.js?pcId=1\u0026domain=av4us.top","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","date":"2025-12-28T23:26:26.974Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enhance-lb01.parklogic.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 00:41:30 GMT","end":"Wed, 25 Feb 2026 00:41:29 GMT"},"fingerprint":{"sha1":"1F:86:42:B2:D0:DC:8C:04:66:71:B3:1D:12:86:94:66:AA:A4:F0:53","sha256":"DE:22:E0:66:01:58:BA:55:12:64:EA:79:8C:51:98:E0:D9:94:9B:F7:63:31:AE:82:59:7C:9A:27:B2:0A:34:0D"}}},"request":{"raw":"GET /page/enhance.js?pcId=1\u0026domain=av4us.top HTTP/1.1\r\nHost: parking3.parklogic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:27 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1607,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text","md5":"2f68359696a1df8c6f429b81d8054ba3","sha1":"fac155b411e1e257dd247884d201c4b1b79f07c5","sha256":"15e73052450fc73b98c4b084b44d40edc80c4c2829b24f9c749693e239edb31c","sha512":"7489bcdcdc7ab313f23d08d47f563fd6a3c1b0a998f3c1e4595988504efc0284a06a8ecdf8e48838a4493ff18ff1cb4571888a9b5577bd9816b1d71176949043","ssdeep":"","tlshash":"0131514e496412b405b3303de207a0106f3bc64a311de451ba6dc9406f4be2f8333add","first_seen":"2025-11-26T13:37:19.59303Z","last_seen":"2025-12-28T23:26:51.265542Z","times_seen":2,"resource_available":true,"data":null}},"time_used":561,"timings":{"blocked":226,"dns":1,"connect":106,"send":0,"wait":107,"receive":0,"ssl":117},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww1.av4us.top/search/tsc.php?ses=ogcazzom7IcpNbZVY5cxKvA2SChlQJOoj16rYTXaT0ucp_tfMf6zb7_BClvuHIYTmiTr8DbFSzYN1cKsKzTL9e32PVIJegcHqfRQ4g2KBTaPqRrolIPclI8amM33_noQNRYpiVZenkpN9nmRIl3D7pvey_7qaRmTalaUyaCOpCt0br5JvIwqVyRB09dkBOWCZ9jwP2pMl20uM7vxOF7kPTvijGLtiN6dOR4NWLjqCfbBKDtnCAw9eoor9ZoH525xafMnR6w3Q-1i5X4dmnuK2RHQ42oiSn9I8jAnJkOkHoc62xHC969hLYnAI_9feP2ZDTF9R8eNRINIkR-2aLrQtNtSy1U-VUV0q_egPPXUwhj8giG7T_wRK6Di1QxfQ\u0026cv=2","fqdn":"ww1.av4us.top","domain":"av4us.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","date":"2025-12-28T23:26:26.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ww1.av4us.top","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 28 Feb 2025 00:00:00 GMT","end":"Fri, 27 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A8:69:D9:DE:4C:0C:C5:4E:D6:01:43:07:D9:E7:7E:D0:E8:34:B4:10","sha256":"F4:54:B3:3C:A5:9C:34:7E:C0:5C:79:22:0C:0A:F4:FB:07:4A:CC:4D:1D:F6:CD:DC:D2:C0:39:EA:24:6D:EA:E6"}}},"request":{"raw":"GET /search/tsc.php?ses=ogcazzom7IcpNbZVY5cxKvA2SChlQJOoj16rYTXaT0ucp_tfMf6zb7_BClvuHIYTmiTr8DbFSzYN1cKsKzTL9e32PVIJegcHqfRQ4g2KBTaPqRrolIPclI8amM33_noQNRYpiVZenkpN9nmRIl3D7pvey_7qaRmTalaUyaCOpCt0br5JvIwqVyRB09dkBOWCZ9jwP2pMl20uM7vxOF7kPTvijGLtiN6dOR4NWLjqCfbBKDtnCAw9eoor9ZoH525xafMnR6w3Q-1i5X4dmnuK2RHQ42oiSn9I8jAnJkOkHoc62xHC969hLYnAI_9feP2ZDTF9R8eNRINIkR-2aLrQtNtSy1U-VUV0q_egPPXUwhj8giG7T_wRK6Di1QxfQ\u0026cv=2 HTTP/1.1\r\nHost: ww1.av4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sun, 28 Dec 2025 23:26:26 GMT\r\nserver: Parking/1.0\r\nx-cache-miss-from: parking-5557cdbbbb-hbtst\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-05T16:09:50.836081Z","times_seen":14695563,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"ww1.av4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"parking3.parklogic.com/page/scribe.php?pcId=1\u0026domain=av4us.top\u0026aId=614\u0026pId=2829\u0026usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b\u0026query=null\u0026domainJs=ww1.av4us.top\u0026path=/\u0026ss=true\u0026lp=1\u0026tzB=UTC\u0026wd=false\u0026gpu=null","fqdn":"parking3.parklogic.com","domain":"parklogic.com","tld":"com"},"ip":{"addr":"172.232.7.47","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ww1.av4us.top/?usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b","date":"2025-12-28T23:26:27.360Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enhance-lb01.parklogic.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 00:41:30 GMT","end":"Wed, 25 Feb 2026 00:41:29 GMT"},"fingerprint":{"sha1":"1F:86:42:B2:D0:DC:8C:04:66:71:B3:1D:12:86:94:66:AA:A4:F0:53","sha256":"DE:22:E0:66:01:58:BA:55:12:64:EA:79:8C:51:98:E0:D9:94:9B:F7:63:31:AE:82:59:7C:9A:27:B2:0A:34:0D"}}},"request":{"raw":"GET /page/scribe.php?pcId=1\u0026domain=av4us.top\u0026aId=614\u0026pId=2829\u0026usid=106\u0026utid=bfac4c6a7920b40ab373e609637e458b\u0026query=null\u0026domainJs=ww1.av4us.top\u0026path=/\u0026ss=true\u0026lp=1\u0026tzB=UTC\u0026wd=false\u0026gpu=null HTTP/1.1\r\nHost: parking3.parklogic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ww1.av4us.top/\r\nOrigin: https://ww1.av4us.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 28 Dec 2025 23:26:27 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-05T16:09:50.836081Z","times_seen":14695563,"resource_available":true,"data":null}},"time_used":557,"timings":{"blocked":224,"dns":0,"connect":107,"send":0,"wait":108,"receive":0,"ssl":116},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}