{"report_id":"640ecaa0-4843-43cd-a1ba-e55d90f03eb9","version":6,"status":"done","tags":[],"date":"2026-01-29T15:15:35Z","url":{"schema":"https","addr":"www.google.com/url?q=https%3A%2F%2Fcoldschain-tech.com%2Foauth.htm\u0026sa=D\u0026sntz=1\u0026usg=AOvVaw1lnf95rBYuUCmACuYGXdqn#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.38.100","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"info.fichaga.email/dK@1UibB0I/$stonewayelectric@billtrust.com","fqdn":"info.fichaga.email","domain":"fichaga.email","tld":"email"},"title":"​","dom":{"size":3806,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3802), with no line terminators","md5":"4772a9eaf69d607ff91e4703b170b939","sha1":"2a0c0f4b0f27f7f4209853da27bb743805f72e9d","sha256":"e8b0a45c43e98cf5e5b0c57ca9bc58b2a92923c9359f3c54da2d3ff2125a89be","sha512":"a070368cc11ac7ef3c271ccb83e455f1ccb1fa3f5996598271e0c351659952b3b821d92e7d6ed929dce231aa68fc9a3d0232f819777a36cf4bfd2949d4689c42","ssdeep":"","tlshash":"9271b63792000529a2dbd29a36e1934f34b98401e6039f6c59ff75a5d28fd11d7bb394","dom_hash":"domhasha0740edee91423d0d00367450d5ee666","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"www.google.com/url?q=https%3A%2F%2Fcoldschain-tech.com%2Foauth.htm\u0026sa=D\u0026sntz=1\u0026usg=AOvVaw1lnf95rBYuUCmACuYGXdqn#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.38.100","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-05T15:15:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"info.fichaga.email","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-22","domain_rank":0,"first_seen":"2025-11-20T15:35:44.289764Z","last_seen":"2025-11-20T15:35:44.289765Z","alert_count":6,"request_count":2,"received_data":20974,"sent_data":1777,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.google.com","ip":{"addr":"142.250.178.100","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2026-01-25T22:25:49.134356Z","alert_count":0,"request_count":1,"received_data":1332,"sent_data":648,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}]},{"fqdn":"foodordersavings.com","ip":{"addr":"44.194.224.227","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":1843,"sent_data":997,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"coldschain-tech.com","ip":{"addr":"104.21.84.118","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-03-08","domain_rank":0,"first_seen":"2026-01-29T15:15:35.906959Z","last_seen":"2026-01-29T15:15:35.906959Z","alert_count":0,"request_count":2,"received_data":30055,"sent_data":985,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"coldschain-tech.com/oauth.htm#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"coldschain-tech.com","domain":"coldschain-tech.com","tld":"com"},"ip":{"addr":"104.21.84.118","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d1079d1849c7f836d4f66fcb2ab60565","sha1":"5dbd80e2a6c896b4132d370b8de43bc9c15d508b","sha256":"e9b81f0cf257a802db9ef4515d28f51d44bce48f72c99adae818e133a1fc217a","sha512":"8cbd2e05d6152be440c243826094f4c9e8be48836cd3751a5268fc6409bf8429d8bd7a960a8775a47ac7dee3ef8f27f7dfe3d409d3b0fcd0892db1fd07020db2","ssdeep":"","tlshash":"df21925433d311c069a35235a75f35493179726b791cdc48bd0e53402f16a367c53bda","size":1365,"data":"","first_seen":"2026-01-29T15:15:40.701429Z","last_seen":"2026-01-29T22:10:06.315694Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"info.fichaga.email/dK@1UibB0I/$stonewayelectric@billtrust.com","fqdn":"info.fichaga.email","domain":"fichaga.email","tld":"email"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b8980508d5623fae850691c6b7a93d26","sha1":"4ae5dfbf77cb9b6eccc8f47a12524fb8df0349c1","sha256":"6915c476258d3b7193aaae958a7a3d9b5f0e3078d5566b69f1a5e35c30e4132a","sha512":"e60fa8c4348ac4a1b79d30a3e67502bc076db2f1fc9778c68caebbfe898be8289159126d578b4a28bc016276da1e3060528071106b634bb84e90ae9f45b1e821","ssdeep":"","tlshash":"4b11cbbb615802358ace956b3191138e3c7584003e42a698a8af4c56312fe50f3fb8f9","size":961,"data":"","first_seen":"2026-01-29T15:15:40.703182Z","last_seen":"2026-01-29T15:15:40.703182Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/url?q=https%3A%2F%2Fcoldschain-tech.com%2Foauth.htm\u0026sa=D\u0026sntz=1\u0026usg=AOvVaw1lnf95rBYuUCmACuYGXdqn#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.100","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"eventHandler","is_inline":false,"md5":"08b6b9ca0d80994d01bf2a34da2a115b","sha1":"0e10568e01d39a4a2106da150e6917d204ef472d","sha256":"9e7e321d551183b8ac07f02f213d70d513d85d6e99add8faa4b71e2012cc8365","sha512":"f8f23789ec200c1772d78d962c00595a2887d74856530490c6a063986f7ec3ab7b554b59a2d003e7d08d59cf98df310931899b50cd2f9fef6b013a517b0df5ac","ssdeep":"","tlshash":"e2a024d31004544007c1c101f133d7401033104f445d74c5d0743400c31c5375d01d4c","size":80,"data":"","first_seen":"2026-01-29T15:15:40.705169Z","last_seen":"2026-01-29T22:10:06.320764Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"coldschain-tech.com/favicon.ico","fqdn":"coldschain-tech.com","domain":"coldschain-tech.com","tld":"com"},"ip":{"addr":"104.21.84.118","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coldschain-tech.com/oauth.htm#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","date":"2026-01-29T15:15:15.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"f94dc305.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Dec 2025 19:03:53 GMT","end":"Sun, 15 Mar 2026 20:03:45 GMT"},"fingerprint":{"sha1":"87:EA:63:24:EC:63:01:73:1A:AA:51:D3:7D:C0:B7:F2:D2:B6:5B:7D","sha256":"81:5E:88:03:DA:C3:0C:03:2F:14:F5:F8:16:23:BF:69:0D:1F:76:C9:07:9E:D7:B2:44:00:2C:D3:61:32:8C:29"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: coldschain-tech.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coldschain-tech.com/oauth.htm\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Thu, 29 Jan 2026 15:15:16 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pdVv3jK2PCGrxH1o1UGI3dWRLtVSe3fLVaiIa6JHYrvbgKHBmZW8MDpFe2k%2FmhkQeVskNtHr%2B25pfYTFpDeeBj6rh%2B2Mphj3nLYMrbrNZg20\"}]}\r\ncf-cache-status: EXPIRED\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncache-control: max-age=14400\r\ncontent-encoding: br\r\ncf-ray: 9c59af179e0e56cb-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27150,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (611)","md5":"46dd133ee00dc1bae5e4eeba7b88432f","sha1":"8af86a4ac91ce48c062216fb94a6e1d57618a19b","sha256":"9eb52ee46c7ab5ea4ca0982415da99fded1b7d7354f75e50847bdae6cb44eb66","sha512":"cb49f9e3812e2c262af374e79bd8905cb508a45bf2c2d6af62eed85af43770872486a55e9425882feda9fb3a57a317a3c18be1e286adaf0c76be7f1b0dfa8474","ssdeep":"384:6bamwIluB0sJQqCeSQup5szCUXAG0VVi82OgoKACZQQofNJXY3gW3:603Mp5If8WOmgW3","tlshash":"e3c291dc7be968e4e5de43aaef2831a8320ba0fb17425904f51d12142f0655cec6f6ed","first_seen":"2024-07-03T19:18:11Z","last_seen":"2026-06-03T01:40:21.901132Z","times_seen":32073,"resource_available":true,"data":null}},"time_used":305,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"info.fichaga.email/favicon.ico","fqdn":"info.fichaga.email","domain":"fichaga.email","tld":"email"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://info.fichaga.email/dK@1UibB0I/$stonewayelectric@billtrust.com","date":"2026-01-29T15:15:18.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fichaga.email","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Dec 2025 18:42:39 GMT","end":"Sat, 21 Mar 2026 19:41:14 GMT"},"fingerprint":{"sha1":"33:42:23:21:88:E9:6A:18:BF:1A:7F:5A:8F:DD:99:16:AC:AF:1D:E4","sha256":"27:0F:94:2C:69:58:5C:67:87:42:60:06:46:06:46:FF:E9:E5:13:50:70:B6:D0:A5:0F:28:A1:01:C0:2B:CA:F9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: info.fichaga.email\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://info.fichaga.email/dK@1UibB0I/$stonewayelectric@billtrust.com\r\nCookie: XSRF-TOKEN=eyJpdiI6Im9OVTNFeFluR0hGODdJOUMrQlFYZ2c9PSIsInZhbHVlIjoiYmRQZU0yTGFDaGRaQlpKVTNsYlBYN0t6NWVOTFNIQ0lPOS9wZjE5RzloNzQ5V0JySTV6Y2prcnh6R0VqWDdoN3NyVTBDVms2NytYVW5iWEZUY1hETVdVd3BWdGNoUDRZNmtlc3ZEUVZWS1dEaVZQU3dSbVMwY2FxYnQ4UEVjdWYiLCJtYWMiOiJjMjUzYjcwZjY0YzRlNDQxYThhZTBmMzM0YzI1MjMzNWZiZjMzODc1NzMxOTM4OWE2NGIxODM5Yjk4OWM4YmRhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRHbjZCL1h5ckhHQTFpNDdsRlRUOEE9PSIsInZhbHVlIjoiUThSaUhOOXdPb0NWelJPelhMbDQyd0VNQ1B0ZGdiZHVUVk51S3ZCaXJ6eEk3Sm56bHA2dW04Si92eko1TUV6ZlVTdlFZaXNvWW9PelVOcVE5TUxyQ1h6ZWZ5cGFEWWNoU21WUWNaMTIvTjBQaGZOZEtkdFA1RExSUVUydG02d1MiLCJtYWMiOiIyZDc0NWM5MWVkMTk0YTQ0ZDE3OWIwYzQ0NTljZGExMjJiMzkzMzQwOWQwMTk3NzE2ZWJhNTVjODYzYmI5NzczIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 29 Jan 2026 15:15:19 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-cache, private\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bnLzRtaIgtWeSyzgr7I4Hm8HSd3ZeKSXfyMmQ1kclEzAbQ9Gmmtc6gWLzBDHsXO%2FP6vF%2F2MUCiG1A9ZIFHF2UXO0WBkTead4\"}]}\r\ncf-cache-status: BYPASS\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\nset-cookie: XSRF-TOKEN=eyJpdiI6InpzbDZubmpucE5HOGZIM213eHR1bHc9PSIsInZhbHVlIjoibVBKWlVaRlZIVTFiSUVkOWYwcUtLMzBiUHNjMnZ1Tnh4NFBiWlhxUmtrcDFreDVkeFRnbE1rSUxaeW1rTHd3ZzhMbmw3RVIrVnlzWGw2NWE0QkxpTXNObjVaTmN2eVk0M213eTVrQ09zVHFidzVtZExvNXc1cGxEaW15c3djdnciLCJtYWMiOiI0NjVlYzE4N2M0OTM0NTYwODE1NjE3NzZhNzEyNWJkYTllN2FlMjk5YzJhZDhiZTk0NTc1ODVjOTJiODM5NTM5IiwidGFnIjoiIn0%3D; expires=Thu, 29-Jan-2026 17:15:18 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6IlI5Mm94aHRsSllUSjUzOTU4VmtwZUE9PSIsInZhbHVlIjoiTHVRRHVGTFljaURVRzJLUTgzNWIxZEpHVmxqUlppNTRETXo5bVZhNFZ2YkFrS2d3bFl1S0JUeFYvNURCY3BnYnVsOXF6eXBuN01valZXdTNRckx2T1hwbzhSNU9HczJTL2JVa3p0blZqSXZoTDlOL01rMHdjY2xQa3ZQZWp5WWsiLCJtYWMiOiJkNTdiZjkyM2FmZWU1NjE3OTMxMmFmNDg3YzYzNzdkNTNiNjM2MGVjYzMxMzNkN2M4NjQ3ZjIxNzdkN2MwNGQyIiwidGFnIjoiIn0%3D; expires=Thu, 29-Jan-2026 17:15:18 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\ncontent-encoding: br\r\ncf-ray: 9c59af26aeacdfec-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14150,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (377)","md5":"78205d9016de2e597479f4d2afa2553d","sha1":"403cf36d2420d8069dcf3f6d496cd65e762606b0","sha256":"0f119d5572942fd873942e793d2fecad09a1e559d12896534f021e4e6fab2fa4","sha512":"6e97ae8e87b621afa58c2befad09dbaa1b750adf8e6a4b9fa873e0a6f7e123daae0c00fc07a57b33bf3d884a887518e2dcb4c22cc2469cb1fd2a106b3bb34d89","ssdeep":"384:PRaGboRKozZd9qBpKJSmf0l+uC1CmSBzA:BboRBr986f0l+11/28","tlshash":"9852613250a0743b2923e4c6aa61574f79f1e51bdd270640b6fca2e44fd3dd2cea7609","first_seen":"2025-11-01T06:14:30.995109Z","last_seen":"2026-02-17T07:18:09.17602Z","times_seen":4555,"resource_available":false,"data":null}},"time_used":966,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":965,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/url?q=https%3A%2F%2Fcoldschain-tech.com%2Foauth.htm\u0026sa=D\u0026sntz=1\u0026usg=AOvVaw1lnf95rBYuUCmACuYGXdqn#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.100","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-29T15:15:14.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:38:47 GMT","end":"Mon, 06 Apr 2026 08:38:46 GMT"},"fingerprint":{"sha1":"75:E9:26:C7:DD:92:81:20:5B:89:A0:8B:39:66:D0:FC:A9:48:0E:11","sha256":"D9:D6:E8:97:8C:48:98:BD:41:C2:5C:82:66:57:E8:87:9F:34:86:DE:9D:FA:BA:AC:CD:B8:AC:96:81:9F:33:89"}}},"request":{"raw":"GET /url?q=https%3A%2F%2Fcoldschain-tech.com%2Foauth.htm\u0026sa=D\u0026sntz=1\u0026usg=AOvVaw1lnf95rBYuUCmACuYGXdqn HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlocation: https://coldschain-tech.com/oauth.htm\r\ncache-control: private\r\ncontent-type: text/html; charset=UTF-8\r\nstrict-transport-security: max-age=31536000\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\ndate: Thu, 29 Jan 2026 15:15:14 GMT\r\nserver: gws\r\ncontent-length: 367\r\nx-xss-protection: 0\r\nexpires: Thu, 29 Jan 2026 15:15:14 GMT\r\nset-cookie: __Secure-ENID=31.SE=E0g_czLOZqxb1EhjNFJK3s6JZM9M80To9Dg0uPd_8J16Ydb6ii136xe0-zbM9D48ozlKLyjoyNfUbxkMh8su6-jGePk1TXHFN3Hm7fwa5Firm8uIYoEuXH8aTC7xfK3XWM5fLSqHvKLWMeIGWj6AlWlxVJlDBvKaj3oEEwLUtskxHf6ZT-unYFvPEz1SI-zuMFM_T_FQ-GlML3NgiXIL69wfAL-cYIEvfHfoiM6CPtdt42QIVYE6V-953UZ7I2GnCtXqGw4Yz6UVvpT1Wg; expires=Mon, 01-Mar-2027 07:33:32 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax\n__Secure-BUCKET=CG8; expires=Tue, 28-Jul-2026 15:15:14 GMT; path=/; domain=.google.com; Secure; HttpOnly\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":367,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"38b8487c699b0ae50e9e18f41c0fa44c","sha1":"afdc4066b5d5530c7f82c9cde733cc8ce20e88ff","sha256":"ffe35380bd716375d136747b789fc171a8f540406491ec7cc910f47a8cf7659f","sha512":"a31c1148be417b245fb5817f1f75cb9b9db0a4487aa2c62ca8ec94660294a215979ebb0ce6d7887783e1a3395f3e7828e8bcc24ef9ef20c8724a1629bfaf96dd","ssdeep":"","tlshash":"8de020f32880341d6780d545f595f7554015280ecc9d8cded4b165accdf8b7ae681ee9","first_seen":"2026-01-29T15:15:40.693107Z","last_seen":"2026-01-29T22:10:06.310096Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":106,"dns":0,"connect":28,"send":0,"wait":50,"receive":1,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coldschain-tech.com/oauth.htm#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"coldschain-tech.com","domain":"coldschain-tech.com","tld":"com"},"ip":{"addr":"104.21.84.118","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-29T15:15:14.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"f94dc305.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Dec 2025 19:03:53 GMT","end":"Sun, 15 Mar 2026 20:03:45 GMT"},"fingerprint":{"sha1":"87:EA:63:24:EC:63:01:73:1A:AA:51:D3:7D:C0:B7:F2:D2:B6:5B:7D","sha256":"81:5E:88:03:DA:C3:0C:03:2F:14:F5:F8:16:23:BF:69:0D:1F:76:C9:07:9E:D7:B2:44:00:2C:D3:61:32:8C:29"}}},"request":{"raw":"GET /oauth.htm HTTP/1.1\r\nHost: coldschain-tech.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 29 Jan 2026 15:15:15 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OAbENY9Wh6ZT20lCeXYR%2Fc1hs48KqMjXqYHffFsIMvCaBbj6M5Wb2MLD%2F4siHDa3MRRVS4ZBKnkoVPKgkNAHjFb8Ut%2BKt0nlX%2FnSqCbBKqx3\"}]}\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nlast-modified: Fri, 23 Jan 2026 15:38:32 GMT\r\ncontent-encoding: br\r\ncf-ray: 9c59af117fdb56cb-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1786,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"ec2e9ace7557064cdd2b818864ca05a7","sha1":"75d9c6cb67ff3d02a0018b2f7b1bec387bcab9ec","sha256":"06272f51333c4081434e894a1906067a122466a5f8a2254ce57c7618f6df5545","sha512":"3d574717737519062e8f593efc55df9b0499991a0e0eeabc9ade3d63853eb640f0a65ed1f8bb290b41d334a4c937fe77f6e5dce1713b8eb1a1dbb000cab0c609","ssdeep":"","tlshash":"4431014532e3118025a38335979f754926aa616b764cdc08bd4fa3405f06b267c93bd9","first_seen":"2026-01-29T15:15:40.695034Z","last_seen":"2026-01-29T22:10:06.301402Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1003,"timings":{"blocked":66,"dns":49,"connect":1,"send":0,"wait":870,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"foodordersavings.com/wp-include/#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","fqdn":"foodordersavings.com","domain":"foodordersavings.com","tld":"com"},"ip":{"addr":"44.194.224.227","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-29T15:15:16.773Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.foodordersavings.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 05 Dec 2025 23:46:05 GMT","end":"Thu, 05 Mar 2026 23:46:04 GMT"},"fingerprint":{"sha1":"5F:9A:12:68:0C:13:A9:1F:C2:FE:01:26:DC:D3:45:57:E5:D6:DE:02","sha256":"76:A1:AD:25:13:26:58:2B:C0:50:3A:64:08:DF:7A:82:16:1E:39:44:09:FE:13:AE:1B:DA:AB:44:1D:58:3A:83"}}},"request":{"raw":"GET /wp-include/ HTTP/1.1\r\nHost: foodordersavings.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coldschain-tech.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 29 Jan 2026 15:15:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 23 Jan 2026 15:36:04 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1045\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1045,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"b07aecc4e6d5c84831c7e05561f0d2cc","sha1":"f1a3d9aa1a3887d51924bc4911e4a1cfa0a3451d","sha256":"5787ced486f6cce5c3ba4c2798c875690508a12684200a4ded22f3a0f257a384","sha512":"6c70ff772c6120c39bbe3f866c4af7802db68084ad0cadfce0fdcf0c8708341d44bc21c20bc873c545efdf84a24da81f0462921c7f9b0c240caf728c8251e10b","ssdeep":"","tlshash":"1311ced124b2335b0a388035f04ed290430157fcaab9eafff86866631bcea9c4531b80","first_seen":"2026-01-29T15:15:40.696855Z","last_seen":"2026-02-26T22:23:00.422593Z","times_seen":3,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":238,"dns":45,"connect":93,"send":0,"wait":93,"receive":0,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"info.fichaga.email/dK@1UibB0I/$stonewayelectric@billtrust.com","fqdn":"info.fichaga.email","domain":"fichaga.email","tld":"email"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-29T15:15:17.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fichaga.email","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Dec 2025 18:42:39 GMT","end":"Sat, 21 Mar 2026 19:41:14 GMT"},"fingerprint":{"sha1":"33:42:23:21:88:E9:6A:18:BF:1A:7F:5A:8F:DD:99:16:AC:AF:1D:E4","sha256":"27:0F:94:2C:69:58:5C:67:87:42:60:06:46:06:46:FF:E9:E5:13:50:70:B6:D0:A5:0F:28:A1:01:C0:2B:CA:F9"}}},"request":{"raw":"GET /dK@1UibB0I/$stonewayelectric@billtrust.com HTTP/1.1\r\nHost: info.fichaga.email\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://foodordersavings.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 29 Jan 2026 15:15:18 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-cache, private\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PVvvO9hGURv70fzwWB5RsXVyBtox6pnmcfdHtwtSzJakhplLPvtDQgFNJHMQPIACG1udjH7kH1ei2%2BvtUQcpUK9lNC0WZ0D5zbI%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nset-cookie: XSRF-TOKEN=eyJpdiI6Im9OVTNFeFluR0hGODdJOUMrQlFYZ2c9PSIsInZhbHVlIjoiYmRQZU0yTGFDaGRaQlpKVTNsYlBYN0t6NWVOTFNIQ0lPOS9wZjE5RzloNzQ5V0JySTV6Y2prcnh6R0VqWDdoN3NyVTBDVms2NytYVW5iWEZUY1hETVdVd3BWdGNoUDRZNmtlc3ZEUVZWS1dEaVZQU3dSbVMwY2FxYnQ4UEVjdWYiLCJtYWMiOiJjMjUzYjcwZjY0YzRlNDQxYThhZTBmMzM0YzI1MjMzNWZiZjMzODc1NzMxOTM4OWE2NGIxODM5Yjk4OWM4YmRhIiwidGFnIjoiIn0%3D; expires=Thu, 29-Jan-2026 17:15:17 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6InRHbjZCL1h5ckhHQTFpNDdsRlRUOEE9PSIsInZhbHVlIjoiUThSaUhOOXdPb0NWelJPelhMbDQyd0VNQ1B0ZGdiZHVUVk51S3ZCaXJ6eEk3Sm56bHA2dW04Si92eko1TUV6ZlVTdlFZaXNvWW9PelVOcVE5TUxyQ1h6ZWZ5cGFEWWNoU21WUWNaMTIvTjBQaGZOZEtkdFA1RExSUVUydG02d1MiLCJtYWMiOiIyZDc0NWM5MWVkMTk0YTQ0ZDE3OWIwYzQ0NTljZGExMjJiMzkzMzQwOWQwMTk3NzE2ZWJhNTVjODYzYmI5NzczIiwidGFnIjoiIn0%3D; expires=Thu, 29-Jan-2026 17:15:17 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\ncontent-encoding: br\r\ncf-ray: 9c59af20f8ce56b1-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3824,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3822), with no line terminators","md5":"203977c48272430008fac18721e2e232","sha1":"abaa42e2efa6f21aeb07d906ee4c13bb91fccda7","sha256":"0d75581c93298afcca3cbd465616c207693d456f541a77404af03f5c5f031329","sha512":"d73704a2963bd4108cf175e399d0ef04dd31871f52825651729690652a14c53e25443270e92c24583790140ed8ac6a099a1674e386bdee10b2432d7192776ca9","ssdeep":"","tlshash":"a581a53792000529a2dbd29a36e1d34f34b98001e6039f6c69ffb5a5d28ed25d7bb394","first_seen":"2026-01-29T15:15:40.698817Z","last_seen":"2026-01-29T15:15:40.698817Z","times_seen":1,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":68,"dns":51,"connect":1,"send":0,"wait":803,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-29","alert":"Sinkholed","trigger":"info.fichaga.email","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"foodordersavings.com/favicon.ico","fqdn":"foodordersavings.com","domain":"foodordersavings.com","tld":"com"},"ip":{"addr":"44.194.224.227","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://foodordersavings.com/wp-include/#?1187507008Family=c3RvbmV3YXllbGVjdHJpY0BiaWxsdHJ1c3QuY29t","date":"2026-01-29T15:15:17.311Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.foodordersavings.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 05 Dec 2025 23:46:05 GMT","end":"Thu, 05 Mar 2026 23:46:04 GMT"},"fingerprint":{"sha1":"5F:9A:12:68:0C:13:A9:1F:C2:FE:01:26:DC:D3:45:57:E5:D6:DE:02","sha256":"76:A1:AD:25:13:26:58:2B:C0:50:3A:64:08:DF:7A:82:16:1E:39:44:09:FE:13:AE:1B:DA:AB:44:1D:58:3A:83"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: foodordersavings.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://foodordersavings.com/wp-include/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Thu, 29 Jan 2026 15:15:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-03T01:11:07.561442Z","times_seen":38264,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":92,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}