{"report_id":"680dd934-3fbc-481a-a4b3-f3fad228170d","version":0,"status":"done","tags":[],"date":"2026-06-26T13:17:55Z","url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"title":"$ARBS Airdrop","dom":{"size":35450,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with overstriking","md5":"45dcb29b8d7d0c24a22c9eb6ab2ef6b8","sha1":"914cd1506f96d92c75eed532ff05750168e626d3","sha256":"c29ae12d15c08c7ee527e37f7e73a2d6e8f279714e3cc003994f0e1668c11299","sha512":"1c2fe2ae73e6df5c515356a9023199ff6b65ef9873104971d1d6e4410120dfcc6b19a275e199022f87f5896100f53fe3c59cb8ae6e3bc7ddd051ec59ed69fb06","ssdeep":"384:gr088zv/wlAolBB/JlUiQF4AkbOQNx8fTW4I:PTzv/gfifaP","tlshash":"5ef2849b6af315723817a0b52feb674b7760d013c40edd243eec52488f89aca986374d","dom_hash":"domhashcec3de559fe75adc4cc3c884a3510906","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-31T13:17:55Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":13319,"sent_data":532,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":3,"received_data":148035,"sent_data":1713,"comment":"","tags":null,"fingerprints":null},{"fqdn":"arbsvvap.app","ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-26T13:16:54.036567Z","last_seen":"2026-06-26T13:16:54.036567Z","alert_count":8,"request_count":4,"received_data":124553,"sent_data":1982,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a1873dbb67a35a9b689669e91aa1baac","sha1":"f05150ff4e89694a753ed61fe83b572949c8265c","sha256":"dec81a20cb23aa86f31e1e4f7408c636ea4be9f65d0dceed966d61b3aaa8cb01","sha512":"3370726e999565e50146e79888d45778037fbb80767af727caaa526a9414603ab8b4fdcdc1c634b1e8d29e65aed07e2ed549ddf97839755ae006b1c57cd711a5","ssdeep":"","tlshash":"40f097e42f0669a733880c7000cd910029906b37ab40766db8b8c3550f2cb3c4c36993","size":521,"data":"","first_seen":"2026-06-26T13:16:58.273418Z","last_seen":"2026-06-26T13:17:56.887718Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4a2a0d7e18fa1fb9fe386f14777a87a9","sha1":"c2f804db7e4eb826be23091dcfcddb4248697eec","sha256":"426b8b996be1891a387dbd8fd6255740381f1d87e8d4b4ac3b144e6c4e74ef38","sha512":"5bf1bcf12e7901a001722835ecdf92d9ec9bcd91dfac9190cd72f9c4d7ee0dd034a23bc278d2ae88055d9853259c608746a2366e80834188f3110602f9fb0252","ssdeep":"96:+SF/avbGTsyk0Mzaqgdp3Y1q31qAvbHJQLQ24ZCx8nw8T+ovaXN1Y3EeW3ce5eXz:qbGgyk0EaqgaqFqAv7JAQqx8fTRvaX4J","tlshash":"dfc155892af31b26616f38790bcfa20835215023158ddd5dbeacc1085fbcd2759a7bdb","size":5639,"data":"","first_seen":"2026-06-26T13:16:58.274327Z","last_seen":"2026-06-26T13:17:56.88845Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a1873dbb67a35a9b689669e91aa1baac","sha1":"f05150ff4e89694a753ed61fe83b572949c8265c","sha256":"dec81a20cb23aa86f31e1e4f7408c636ea4be9f65d0dceed966d61b3aaa8cb01","sha512":"3370726e999565e50146e79888d45778037fbb80767af727caaa526a9414603ab8b4fdcdc1c634b1e8d29e65aed07e2ed549ddf97839755ae006b1c57cd711a5","ssdeep":"","tlshash":"40f097e42f0669a733880c7000cd910029906b37ab40766db8b8c3550f2cb3c4c36993","size":521,"data":"","first_seen":"2026-06-26T13:16:58.273418Z","last_seen":"2026-06-26T13:17:56.887718Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4a2a0d7e18fa1fb9fe386f14777a87a9","sha1":"c2f804db7e4eb826be23091dcfcddb4248697eec","sha256":"426b8b996be1891a387dbd8fd6255740381f1d87e8d4b4ac3b144e6c4e74ef38","sha512":"5bf1bcf12e7901a001722835ecdf92d9ec9bcd91dfac9190cd72f9c4d7ee0dd034a23bc278d2ae88055d9853259c608746a2366e80834188f3110602f9fb0252","ssdeep":"96:+SF/avbGTsyk0Mzaqgdp3Y1q31qAvbHJQLQ24ZCx8nw8T+ovaXN1Y3EeW3ce5eXz:qbGgyk0EaqgaqFqAv7JAQqx8fTRvaX4J","tlshash":"dfc155892af31b26616f38790bcfa20835215023158ddd5dbeacc1085fbcd2759a7bdb","size":5639,"data":"","first_seen":"2026-06-26T13:16:58.274327Z","last_seen":"2026-06-26T13:17:56.88845Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"arbsvvap.app/favicon.ico","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:33.119Z","timestamp":1782479853119,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"arbsvvap.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 12:22:17 GMT","end":"Mon, 31 Aug 2026 13:20:38 GMT"},"fingerprint":{"sha1":"F3:D5:71:2B:F9:DC:DA:1A:EB:3D:A6:B8:1E:D6:00:A2:E8:CE:23:5C","sha256":"C0:7C:DE:C0:70:09:C7:61:7B:1A:A4:7E:5C:20:00:6C:4C:5F:5D:6B:CB:CD:86:1C:BF:1A:B0:77:DC:D6:1F:F7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: arbsvvap.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://arbsvvap.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 26 Jun 2026 13:17:33 GMT\r\ncontent-type: text/html\r\nlast-modified: Wed, 03 Jun 2026 13:23:53 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\npriority: u=6,i=?0\r\nage: 61\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jv3zyL%2Bf%2BG3gjzFi3%2BSqdpS4aJtzxOc1ZL6s1w8ih8ROVMPYNTSvAje3egzKDuurhhOQv5wdTupOcWJQqSiUl7gyvF9zssZrUmXBpNgyXcgHJJjxMmgjOoNMXjqmtRI%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a11c7e29fb091525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35270,"size_decoded":9750,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with overstriking","md5":"4f11efa41922f5d3c5fc8bc0d22b6398","sha1":"5cec57f50360a59964a9c2202b95d69c2bfd1cb8","sha256":"4536272e43fed575d7d4e145fd84a3093c187f50eee98669400778fd19c0c28e","sha512":"4e8b35282617eb5f1d04b646becf03c8fd83a25e095f30f55370b1fe98d3f79b49d52bc852e016a41f6a77228c1fc53e2be72471bece25f8937e7dd43daf35af","ssdeep":"384:du88zv/wlGlfB/vjUiQF4AkbOQNx8fTW4o:MTzv/gwifaz","tlshash":"c6f2839b6af315653817a4b52feb574b7760d013c40edd283eec52488f8daca98a334d","first_seen":"2026-05-03T17:51:42.564611Z","last_seen":"2026-06-26T13:17:56.883744Z","times_seen":4,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-26T13:17:32.229Z","timestamp":1782479852229,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"arbsvvap.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 12:22:17 GMT","end":"Mon, 31 Aug 2026 13:20:38 GMT"},"fingerprint":{"sha1":"F3:D5:71:2B:F9:DC:DA:1A:EB:3D:A6:B8:1E:D6:00:A2:E8:CE:23:5C","sha256":"C0:7C:DE:C0:70:09:C7:61:7B:1A:A4:7E:5C:20:00:6C:4C:5F:5D:6B:CB:CD:86:1C:BF:1A:B0:77:DC:D6:1F:F7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: arbsvvap.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Fri, 26 Jun 2026 13:17:32 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 03 Jun 2026 13:23:53 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iPSg%2FWZfp%2BwEGtoS93vum063BLY%2B0DivtI4Gb76fhpVGvC5m3JyeDWEI%2FKBkNzlSgSl6QXNFQgIB%2FEIgwhd9MoRTvi424Tbzl3TCl%2BUzRsEHB78uNnXmZNaGtqD1pE4%3D\"}]}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 61\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: zstd\r\ncf-ray: a11c7e2498021525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35270,"size_decoded":9731,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with overstriking","md5":"4f11efa41922f5d3c5fc8bc0d22b6398","sha1":"5cec57f50360a59964a9c2202b95d69c2bfd1cb8","sha256":"4536272e43fed575d7d4e145fd84a3093c187f50eee98669400778fd19c0c28e","sha512":"4e8b35282617eb5f1d04b646becf03c8fd83a25e095f30f55370b1fe98d3f79b49d52bc852e016a41f6a77228c1fc53e2be72471bece25f8937e7dd43daf35af","ssdeep":"384:du88zv/wlGlfB/vjUiQF4AkbOQNx8fTW4o:MTzv/gwifaz","tlshash":"c6f2839b6af315653817a4b52feb574b7760d013c40edd283eec52488f8daca98a334d","first_seen":"2026-05-03T17:51:42.564611Z","last_seen":"2026-06-26T13:17:56.883744Z","times_seen":4,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":12,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.832Z","timestamp":1782479852832,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:10 GMT","end":"Mon, 31 Aug 2026 08:38:09 GMT"},"fingerprint":{"sha1":"8A:2F:DC:6F:C0:09:07:D3:E5:9C:B7:EE:C2:C4:63:DC:59:36:B5:1B","sha256":"64:7C:E4:55:AB:5C:58:7E:89:F1:19:3B:95:DB:7B:4B:E6:75:42:2C:0C:51:2E:66:85:F5:BB:51:58:08:39:19"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700;800\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://arbsvvap.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 26 Jun 2026 13:17:32 GMT\r\ndate: Fri, 26 Jun 2026 13:17:32 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12635,"size_decoded":1486,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"4b1d52c19ccef2398d1de007b3c9a55c","sha1":"c57fa2bcac927a7d60c526cb7ec2b6249019dfe7","sha256":"05f842619ec9f615de0b749034eadaea60e3554d798683fb01ee1eb27abd1e68","sha512":"9dfc4ab3832325eb1438bd85674e15ceb62771b94f06ea8e48a2e286453d571218df3f6727b8df4c1bdfa47218eb5fed0298601da289391a736a76a230d68c3b","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGfNx0NO3kCxHx:vXuM0p2+g7r","tlshash":"1e427892002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T22:54:08.549336Z","last_seen":"2026-06-27T06:02:23.835588Z","times_seen":12313,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":16,"send":0,"wait":34,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/logo.png","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.839Z","timestamp":1782479852839,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"arbsvvap.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 12:22:17 GMT","end":"Mon, 31 Aug 2026 13:20:38 GMT"},"fingerprint":{"sha1":"F3:D5:71:2B:F9:DC:DA:1A:EB:3D:A6:B8:1E:D6:00:A2:E8:CE:23:5C","sha256":"C0:7C:DE:C0:70:09:C7:61:7B:1A:A4:7E:5C:20:00:6C:4C:5F:5D:6B:CB:CD:86:1C:BF:1A:B0:77:DC:D6:1F:F7"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: arbsvvap.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://arbsvvap.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 26 Jun 2026 13:17:32 GMT\r\ncontent-type: image/png\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PzkjsmmQ5IEGPwvxAin%2FyjnKe4Rr7nsyIQXoT8UX3Gr5yn1FLEnZtg17%2F5UFnLZ68usytAdmvTekCuutxViWoIdWUnxFXGJ6uChqZaC8DxwP75%2Fb7MuaYEg5lAnN7cI%3D\"}]}\r\ncast-mode: default\r\nlast-modified: Wed, 03 Jun 2026 13:23:53 GMT\r\netag: \"6a202ae9-2854\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 61\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\ncontent-length: 10324\r\ncf-ray: a11c7e284ac81525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10324,"size_decoded":11253,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"293819b972cf7ef46cdfccaa7e00db11","sha1":"7cac1329ca6722aec050178924cd4d873bc0aa0b","sha256":"fbe99aeaa936c05512b5f0676b693cddf6ee56729a44e6efd5e8f765bc0e0070","sha512":"b64c660f7929e61a77dda604540b134905815b6ffe1b5a750e0b5d57a20f1d6c7a0462bd804f6bdfcb5c16ad1b6316da36ce7692904765e24be5af642c98cbfb","ssdeep":"192:sN93u7mUHGlewkJFLyxEt9AwFVwopgO/GMFdCW4LSrxA6DC:sPa7bR9zVwoNCZLoAp","tlshash":"78228ee65b08d680dd5aa434b0a10bf5c7baee0cf9921f5e41c50f31bf693a49da4533","first_seen":"2026-04-14T16:41:18.703489Z","last_seen":"2026-06-26T13:17:56.885329Z","times_seen":11,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.985Z","timestamp":1782479852985,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://arbsvvap.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 01:48:06 GMT\r\nexpires: Fri, 25 Jun 2027 01:48:06 GMT\r\ncache-control: public, max-age=31536000\r\nage: 127767\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49345,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-27T05:35:35.469355Z","times_seen":219920,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":33,"send":0,"wait":18,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.986Z","timestamp":1782479852986,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://arbsvvap.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 01:48:06 GMT\r\nexpires: Fri, 25 Jun 2027 01:48:06 GMT\r\ncache-control: public, max-age=31536000\r\nage: 127767\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49345,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-27T05:35:35.469355Z","times_seen":219920,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":30,"dns":0,"connect":0,"send":0,"wait":22,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.988Z","timestamp":1782479852988,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://arbsvvap.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Jun 2026 01:48:06 GMT\r\nexpires: Fri, 25 Jun 2027 01:48:06 GMT\r\ncache-control: public, max-age=31536000\r\nage: 127767\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49345,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-27T05:35:35.469355Z","times_seen":219920,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":30,"dns":0,"connect":0,"send":0,"wait":29,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"arbsvvap.app/image.png","fqdn":"arbsvvap.app","domain":"arbsvvap.app","tld":"app"},"ip":{"addr":"104.21.52.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://arbsvvap.app/","date":"2026-06-26T13:17:32.995Z","timestamp":1782479852995,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"arbsvvap.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 12:22:17 GMT","end":"Mon, 31 Aug 2026 13:20:38 GMT"},"fingerprint":{"sha1":"F3:D5:71:2B:F9:DC:DA:1A:EB:3D:A6:B8:1E:D6:00:A2:E8:CE:23:5C","sha256":"C0:7C:DE:C0:70:09:C7:61:7B:1A:A4:7E:5C:20:00:6C:4C:5F:5D:6B:CB:CD:86:1C:BF:1A:B0:77:DC:D6:1F:F7"}}},"request":{"raw":"GET /image.png HTTP/1.1\r\nHost: arbsvvap.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://arbsvvap.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 26 Jun 2026 13:17:33 GMT\r\ncontent-type: image/png\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UQJU2CkYsTLqqAmgpR0mU040QcCNm23jrozmt7dlhZelPtvb25emSMCCgBjktae5cnIIL%2FcilPZ6p4D%2B%2BK0zFJqOgcf9hALQRhA6Bdo%2F0zUiKZBG3G7fMbrAzJ3dlDU%3D\"}]}\r\ncast-mode: default\r\nlast-modified: Wed, 03 Jun 2026 13:23:53 GMT\r\netag: \"6a202ae9-9c82\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 61\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\ncontent-length: 40066\r\ncf-ray: a11c7e293ae71525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40066,"size_decoded":40997,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x500, components 3","md5":"dc234ccb428620c7f446a4c5d3166e8d","sha1":"5bf3b1bef2c290e5ccb0ce7c3b401489cc69bdb9","sha256":"0d7bec064ad64709fc7a955d79a8ceeb275a197b39a14f0eced32e9fbccf1a7e","sha512":"b32c65d7a903eded4a9899ffaafa2970a1ac0c302acbdce2cb5e6af73d0c7c0aab48bd92cf6b521a56f5162b7044629fc0d596113642e47ba25fdeac15cce441","ssdeep":"768:d2ikOnwPKjv8r80H6NCOPMN9uOGS41MwFuwf5F9yVF6GU:jktyjW8mGP0WOd410wfByVjU","tlshash":"b303d02a677089e1c17c657284624b7c5323fd88eded236395c2dcb0b3b62a85e164df","first_seen":"2026-04-14T16:41:18.704952Z","last_seen":"2026-06-26T13:17:56.886992Z","times_seen":11,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-26","alert":"Sinkholed","trigger":"arbsvvap.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}