{"report_id":"65025d5d-4c03-449f-99b9-f48b8dcf9777","version":6,"status":"done","tags":[],"date":"2025-02-01T20:29:32Z","url":{"schema":"http","addr":"jsasltmjqd.com/","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"172.67.214.122","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"jsasltmjqd.com/","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"title":"\"Whimsical Wonders: Exploring the Unknown\" - jsasltmjqd.com"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-04-12T20:29:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"jsasltmjqd.com","ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-11-14","domain_rank":0,"first_seen":"2024-12-16T19:45:50.278742Z","last_seen":"2025-01-21T14:43:20.485189Z","alert_count":7,"request_count":7,"received_data":123647,"sent_data":3376,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-includes/blocks/navigation/view.min.js?ver=e3d6f3216904b5b42831","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f13a5e9c3b948c72a8f92878f5d8cfc9","sha1":"f8b8bb1ccd7736793b5a26330f5e791903d20089","sha256":"ecfc357ad95e64230925cfe8fc310394fe5c1b4385eb08354b8fec69af0d6966","sha512":"1f3b3508abbd5fda04baddafc5e26f527945597f85dfc571b1c1f7535f61fafdb712ac22f4c00eeca64e8cd1fd048a24ab6b5244405af36fd13ec433c77f90da","ssdeep":"","tlshash":"087198f0307164209bfb4ea7731d15b97332f64160123e135eea4b8d58ddaa143daf26","size":3586,"data":"","first_seen":"2023-11-07T21:49:07Z","last_seen":"2026-04-01T22:48:19.47127Z","times_seen":4124,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"dee24ac7d31aeec822d66d486f4d63d6","sha1":"a25fe15e82c1b303934405f18f888e5335a31057","sha256":"48d1c5f62132b32192ba08d62c2e8f2636c39133da1c90e4168b37473ba1e193","sha512":"e08da9b0cab1bf94f88431bf2ea7134c6325264852603d830bf3a4fdda5e7fd43c1c78b54f4b5e7fccc8efe0c5a35002728e5156490f658edd6cdf1c5574ed9c","ssdeep":"","tlshash":"876188993779388b317b14e3aa6f0e0be775943716c4d034c9baa7141cb14a3c379d49","size":3292,"data":"","first_seen":"2024-05-30T17:26:38Z","last_seen":"2025-02-20T05:12:18.608274Z","times_seen":3415,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a3cb1924d8bf5884dc79c6696af97947","sha1":"9fa2f80c43eab6d8c9be21b1bdf6b9c1f4b92833","sha256":"32dc90f330229e33024144287af4bc1caeb455a9e30b562ee47cca9d5c006450","sha512":"584cdf01f469791c1d3c9ea63f084b2e106536859216f36c7d91cbd3097ad75a528e89c7aaf73bc652b825cd065a37e9a3160e00fbccfa4cde897d52a5c31889","ssdeep":"","tlshash":"e61189c0b21506f400612529c4380bcae6b9699cb6db1ca7cc0c9c2cf1b261f45b6f7e","size":1019,"data":"","first_seen":"2024-05-30T17:26:38Z","last_seen":"2025-02-20T05:12:18.61035Z","times_seen":3416,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-includes/js/dist/interactivity.min.js?ver=6.4.3","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f82ed20941533697ac8bdbd7742f645c","sha1":"864b56b3ffb01c3b78b17f90499a68f2d11e135f","sha256":"34019d3364166a309440c0b3e94391105694660f5ed76dc836eed8e4aedc1fb5","sha512":"0798944c7af319e5d563f3a904ffd5102ceddd6cac8caeaaef059db1f96270de5ddf9d84fbf63441c8196fa95a645d9ce734fd34e6022837aa9db2074a7d8943","ssdeep":"768:7oOVz6X9ZF29ssOOlj0HMejqjZZpCRotq7NhivRow9P:7oOVGrw9ssOOjGqjZDLtqhhiJX","tlshash":"a1e2d7e4b174b47047eb10a6813f491ab336751db44ec0d0b316e8da68f964f60a7fba","size":32378,"data":"","first_seen":"2024-01-31T20:39:55Z","last_seen":"2026-03-31T11:00:09.499888Z","times_seen":3815,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-includes/css/style.min.css?ver=6.4.3","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:02.810Z","timestamp":1738441742810,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /wp-includes/css/style.min.css?ver=6.4.3 HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 01 Feb 2025 20:29:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Feb 2024 21:32:00 GMT\r\netag: W/\"65e0f7d0-4096\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=uofGr1puXHfBBMZW%2BesYoQWrmdc%2FEgx7Tlae09TnM1DJAjBpVCupZm3MS02Qj8Z2jUQe%2FGnZgbKQW7MVUxDGcwc9tJGlUYFJmfnFsLtc3oUFAWG4vxHdnt8ThgmFsG941Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90b4b0fc8da61c02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=10920\u0026min_rtt=2072\u0026rtt_var=8346\u0026sent=15\u0026recv=9\u0026lost=0\u0026retrans=0\u0026sent_bytes=5963\u0026recv_bytes=1727\u0026delivery_rate=4123\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=7892d5104e6fdf11\u0026ts=511\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8152,"size_decoded":16534,"mime_type":"text/css","magic":"ASCII text, with very long lines (16534), with no line terminators","md5":"2ae7fd3571e46cc052e105900fc6cf08","sha1":"f9c40ca81ed324df5b822b508f0aaf5ac067fd20","sha256":"38b1136cf93f9cb1dc433fd40347fed72ebce9522a55393f95feae15a8268233","sha512":"9c99a883d3dee3e0dae96933a273e823a53000f9d9b7d74df4a649533a6f81306615c192945249e24dc7451efd5b0fbff2d865710016ab9f78f675acb4c89895","ssdeep":"384:iQsFvFy7i9bGUg5zyH5X3i/UYvnkLR3d/:iQsFvc7i9bGUg5zyH5Hi/UYvnkLdd/","tlshash":"d272b0d05bb49cf4a8bb933b6e4490184633e942c5097bd5a0f3e694b68cb545be3f0b","first_seen":"2023-10-29T19:19:17Z","last_seen":"2026-04-01T22:48:19.46642Z","times_seen":4007,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-02-01T20:29:02.205Z","timestamp":1738441742205,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 01 Feb 2025 20:29:02 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 17 Nov 2024 13:16:49 GMT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=cldsfavVi1MTnQMI8C4x3Npzvy8WjtbcW%2FJ7WufpJAtaOsTP78gDH6FnWqbtRZuYoERGslseUxWUBwiGNYeDo1x2p4nEBpab01Pni71CUguh0U9JP1hmV6IBs7jmmucb0Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 90b4b0f97f4f0b06-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=1397\u0026min_rtt=509\u0026rtt_var=1780\u0026sent=8\u0026recv=10\u0026lost=0\u0026retrans=0\u0026sent_bytes=3284\u0026recv_bytes=1252\u0026delivery_rate=7227953\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=2dbfed96409199e2\u0026ts=106\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":71693,"size_decoded":71693,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T04:46:10.842589Z","times_seen":13317089,"resource_available":true,"data":null}},"time_used":285,"timings":{"blocked":107,"dns":68,"connect":1,"send":0,"wait":71,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-includes/js/dist/interactivity.min.js?ver=6.4.3","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:02.813Z","timestamp":1738441742813,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /wp-includes/js/dist/interactivity.min.js?ver=6.4.3 HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 01 Feb 2025 20:29:02 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 29 Feb 2024 21:32:00 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\netag: W/\"65e0f7d0-7e7a\"\r\ncontent-encoding: br\r\ncf-ray: 90b4b0fc8da81c02-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32378,"size_decoded":32378,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32343)","md5":"f82ed20941533697ac8bdbd7742f645c","sha1":"864b56b3ffb01c3b78b17f90499a68f2d11e135f","sha256":"34019d3364166a309440c0b3e94391105694660f5ed76dc836eed8e4aedc1fb5","sha512":"0798944c7af319e5d563f3a904ffd5102ceddd6cac8caeaaef059db1f96270de5ddf9d84fbf63441c8196fa95a645d9ce734fd34e6022837aa9db2074a7d8943","ssdeep":"768:7oOVz6X9ZF29ssOOlj0HMejqjZZpCRotq7NhivRow9P:7oOVGrw9ssOOjGqjZDLtqhhiJX","tlshash":"a1e2d7e4b174b47047eb10a6813f491ab336751db44ec0d0b316e8da68f964f60a7fba","first_seen":"2024-01-31T20:39:55Z","last_seen":"2026-03-31T11:00:09.499888Z","times_seen":3815,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-includes/blocks/navigation/view.min.js?ver=e3d6f3216904b5b42831","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:02.814Z","timestamp":1738441742814,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /wp-includes/blocks/navigation/view.min.js?ver=e3d6f3216904b5b42831 HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 01 Feb 2025 20:29:02 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 29 Feb 2024 21:32:00 GMT\r\netag: W/\"65e0f7d0-e02\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=uGYhp9LzVk0rRR%2BCaJ5y%2BKSBXVECg4w3NqDrT81Ox34L51E7jsTyiEW8eFfb535F6hO%2Fq%2FFfaF%2FrtrdaYlnWCnbiWo7%2FNxUbMSg6lHzMlIuQkMgJI6SzVuN1e3%2Fdal7jjw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90b4b0fc8da91c02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=12184\u0026min_rtt=2785\u0026rtt_var=7758\u0026sent=13\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=4109\u0026recv_bytes=1683\u0026delivery_rate=213273\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=7892d5104e6fdf11\u0026ts=487\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3586,"size_decoded":3586,"mime_type":"application/javascript","magic":"troff or preprocessor input, ASCII text, with very long lines (3670), with no line terminators","md5":"815d94602a042d3cfb321c598f24c8cb","sha1":"be65a79972bd6ffa71a80d4fad1fd4977477d200","sha256":"c88b902093f35008012a6809ed68fbfec49ae0a3793685178203693c518308ac","sha512":"a0bccbf17cc82b688019dccfd51e07e18e8cb2bc7aded0f4babf89a791f233151b2516dcf55b2cc7c789520d5bad3b920cc84b1227c84f5f53b03479d02c3989","ssdeep":"","tlshash":"f37198f0307160209bfb4ea7731d15b97332f64160123e135eea4b8d58ddaa143daf26","first_seen":"2023-11-08T18:58:35Z","last_seen":"2025-02-20T05:12:18.600277Z","times_seen":2844,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":77,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-content/themes/twentytwentyfour/assets/fonts/inter/Inter-VariableFont_slnt,wght.woff2","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:03.063Z","timestamp":1738441743063,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /wp-content/themes/twentytwentyfour/assets/fonts/inter/Inter-VariableFont_slnt,wght.woff2 HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sat, 01 Feb 2025 20:29:03 GMT\r\ncontent-type: text/html\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=04gYttOjQLRO4Xj5QnqIibPfNdtYnHNJnGZ7WL0%2FyCSqFtTB%2FlS%2BIYBa3E2aZ8jl7y15aLjlUXYMPwEhaXt6L%2FUjVUwZDJYk9Tf9zWwlaxBwKg6KvHBYqAdSS1nytzvv7w%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90b4b0fe3eab1c02-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=8446\u0026min_rtt=1667\u0026rtt_var=7261\u0026sent=31\u0026recv=13\u0026lost=0\u0026retrans=0\u0026sent_bytes=21932\u0026recv_bytes=2547\u0026delivery_rate=41086\u0026cwnd=24000\u0026unsent_bytes=0\u0026cid=7892d5104e6fdf11\u0026ts=751\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":153,"size_decoded":153,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"5be3455f39050d93ba46668e816f3f75","sha1":"6fe46651a8b26452adf65fbeb667536f171b2cbf","sha256":"d58292ad475abe9ac1b8b927d9d4d69bfb21010abf321c848f3055a3cbed0002","sha512":"63d5c8a2641bd69b55e1f551e27f7a6538b8c9ea077b1615f5adf820fc5f32e9efe890fb0f3288b3a3731f9169e2001a7d5678a1fd0362c923672943f966c1ff","ssdeep":"","tlshash":"71c08c1cbc13708485034ba00ac33482c28aa227a4fa802284884203e0ce2bac4ea3d5","first_seen":"2024-02-14T16:16:59Z","last_seen":"2025-03-26T01:09:11.402973Z","times_seen":3238,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":11,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_normal_400.woff2","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:03.075Z","timestamp":1738441743075,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_normal_400.woff2 HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sat, 01 Feb 2025 20:29:03 GMT\r\ncontent-type: text/html\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2FBsu0jbwAl0Axv40hnNJMKIvNaEHZkmjpy%2BZuoitp7IIGkQa%2FdRl6o7Vai%2F%2FJXk11wwn%2FfGvfGQVdUzlojHnVjEDskgP%2BWxDv2dKarzZDAtxqIScL6E3nv%2F4fr4QbSyEGA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90b4b0fe3eac1c02-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=8446\u0026min_rtt=1667\u0026rtt_var=7261\u0026sent=32\u0026recv=13\u0026lost=0\u0026retrans=0\u0026sent_bytes=22754\u0026recv_bytes=2547\u0026delivery_rate=41086\u0026cwnd=24000\u0026unsent_bytes=0\u0026cid=7892d5104e6fdf11\u0026ts=753\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":153,"size_decoded":153,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"5be3455f39050d93ba46668e816f3f75","sha1":"6fe46651a8b26452adf65fbeb667536f171b2cbf","sha256":"d58292ad475abe9ac1b8b927d9d4d69bfb21010abf321c848f3055a3cbed0002","sha512":"63d5c8a2641bd69b55e1f551e27f7a6538b8c9ea077b1615f5adf820fc5f32e9efe890fb0f3288b3a3731f9169e2001a7d5678a1fd0362c923672943f966c1ff","ssdeep":"","tlshash":"71c08c1cbc13708485034ba00ac33482c28aa227a4fa802284884203e0ce2bac4ea3d5","first_seen":"2024-02-14T16:16:59Z","last_seen":"2025-03-26T01:09:11.402973Z","times_seen":3238,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsasltmjqd.com/favicon.ico","fqdn":"jsasltmjqd.com","domain":"jsasltmjqd.com","tld":"com"},"ip":{"addr":"104.21.86.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsasltmjqd.com/","date":"2025-02-01T20:29:03.183Z","timestamp":1738441743183,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsasltmjqd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Jan 2025 09:56:30 GMT","end":"Tue, 15 Apr 2025 10:54:06 GMT"},"fingerprint":{"sha1":"48:60:43:ED:66:39:BB:20:4A:06:95:E8:07:98:DD:7F:CA:84:3A:65","sha256":"0E:10:31:F0:2D:B7:50:5E:7A:68:62:68:4B:F0:D7:AD:57:3B:BD:7E:11:0C:B9:E9:C2:4B:AD:27:08:53:D5:41"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jsasltmjqd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsasltmjqd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 01 Feb 2025 20:29:03 GMT\r\ncontent-type: image/x-icon\r\nlast-modified: Thu, 29 Feb 2024 21:32:00 GMT\r\netag: W/\"65e0f7d0-75b\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=0Um2TLd%2BtrqzNgArFs7QOsTsIgooESFTzrARHkmxkypEPJ6MuNNxEAMI5JDxb7z0AGUtG%2FvYwitM86%2F8fxeqbLFy%2FQmW5id%2BuHZG3OZO4%2F8lSJb9GMHtAy04%2BWOW8ozFcA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90b4b0fecf061c02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=7638\u0026min_rtt=1667\u0026rtt_var=7062\u0026sent=34\u0026recv=15\u0026lost=0\u0026retrans=0\u0026sent_bytes=23606\u0026recv_bytes=2869\u0026delivery_rate=22439\u0026cwnd=24000\u0026unsent_bytes=0\u0026cid=7892d5104e6fdf11\u0026ts=847\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1883,"size_decoded":1883,"mime_type":"image/x-icon","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"53c3582b2a66549ef6776cdef33b60f1","sha1":"8b845761ca52ccdd22ebc2332fd751ff2449c2d7","sha256":"931f0fcc2f2381efefd7f6f4f06154bd5a7cbf934df8aed6278abecae795ff82","sha512":"7f0d17ca879772b177da222b5d4388fbb1d932ebca026583b0f2132e7ddef0f673897d42bb51f26fe191e903516125923da4b661ce33bd0dd5f68f426343a882","ssdeep":"","tlshash":"8f41f98ea9f712f09d707695154f12218b851574de518cc13b9260f4bd09c73b3a83b4","first_seen":"2024-05-30T17:26:38Z","last_seen":"2025-02-20T05:12:18.602478Z","times_seen":3414,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":76,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-02-01","alert":"Sinkholed","trigger":"jsasltmjqd.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}