{"report_id":"699edf1c-5f1c-4f49-bb1c-922afa69da91","version":6,"status":"done","tags":[],"date":"2026-02-27T10:20:40Z","url":{"schema":"http","addr":"vestofx.net","fqdn":"vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"172.67.70.2","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"title":"World-Class Platform | Vestofx Online Trading Platform","dom":{"size":22874,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3161)","md5":"b06c47aed043230fcc73e2c04516afb2","sha1":"a932f146407cc16fed1f44d2ef558b4ea5139403","sha256":"37d9e711c7e31804ff9dd88caad883fdf8b76cfabefdf83c6340fb5eaf4c890c","sha512":"4fe845a61a185cc148e9b80e8a5796cb31326ae5cd7294726a5c308a1af24da9184746d5cf6cb242e393a05cd168fc1f3357749e29fbdcf1e5fd618850af339a","ssdeep":"384:q85vetT5Q5oqQ5oGQ3omQboovAFVy5ibIeUVYf:qLZAFBMeUVYf","tlshash":"46a29661a4f408262063a191a9d9367d2f75ee13d5862a7832fc0bf80fe7cd5fd2b524","dom_hash":"domhash2123d571a7857444530c5e8ec7b9fcfa","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vestofx.net","fqdn":"vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"172.67.70.2","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-03T10:20:40Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.vestofx.net","ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-03","domain_rank":0,"first_seen":"2025-08-01T10:04:09.28555Z","last_seen":"2026-01-07T02:38:58.490771Z","alert_count":30,"request_count":30,"received_data":3281971,"sent_data":24955,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WPML:4.6.15","description":"WPML plugin makes it possible to build and run fully multilingual WordPress sites.","website":"https://wpml.org/","common_platform_enumeration":"","icon":"WPML.svg","categories":["WordPress plugins","Translation"]},{"name":"Yoast SEO:25.1","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Slider Revolution:6.3.3","description":"Slider Revolution is a flexible and highly customisable slider.","website":"https://www.sliderrevolution.com","common_platform_enumeration":"","icon":"Slider Revolution.svg","categories":["Widgets","Photo galleries"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-02-22T22:20:46.526035Z","alert_count":0,"request_count":2,"received_data":787015,"sent_data":887,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2001-07-05","domain_rank":0,"first_seen":"2025-10-24T16:25:01.875286Z","last_seen":"2026-01-07T02:38:58.962166Z","alert_count":0,"request_count":8,"received_data":114012,"sent_data":6887,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"rts-static-prod.freshworksapi.com","ip":{"addr":"108.157.214.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2017-03-15","domain_rank":64035,"first_seen":"2020-04-09T13:03:01Z","last_seen":"2026-02-26T19:38:16.342739Z","alert_count":0,"request_count":1,"received_data":88117,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"static.cloudflareinsights.com","ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-08-30","domain_rank":4073,"first_seen":"2019-09-24T14:34:56Z","last_seen":"2026-02-22T22:33:40.206342Z","alert_count":0,"request_count":1,"received_data":30596,"sent_data":508,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"assetscdn-wchat.me.freshchat.com","ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2001-07-05","domain_rank":0,"first_seen":"2024-11-20T14:16:12.252074Z","last_seen":"2026-02-22T06:08:09.501802Z","alert_count":0,"request_count":12,"received_data":2964470,"sent_data":8747,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"vestofx.net","ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-03","domain_rank":0,"first_seen":"2026-02-27T10:20:47.916128Z","last_seen":"2026-02-27T10:20:47.916128Z","alert_count":1,"request_count":1,"received_data":67874,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"uae.fw-cdn.com","ip":{"addr":"108.157.229.84","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2021-01-19","domain_rank":0,"first_seen":"2024-10-17T05:53:42Z","last_seen":"2026-02-21T06:08:24.799028Z","alert_count":0,"request_count":1,"received_data":363231,"sent_data":421,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"uae.fw-cdn.com/40252786/156577.js","fqdn":"uae.fw-cdn.com","domain":"fw-cdn.com","tld":"com"},"ip":{"addr":"108.157.229.84","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8d6047428fe2079ee8a0e4cfd51942d7","sha1":"24c840850d320fce90ec4f6360fd4e0ac2d52406","sha256":"5aee0b012cfe896f379f1c41f01bdbd59b3f365f006f76cb1697580eca9d54c6","sha512":"f3b1730bbd57a149ae5795b97458e8b0c46cbfadb6ecf94db34d712a933835f9a2075bce06e76c42bd8db35520f07db8db20b4e0d0c3f270698def402feb9ef8","ssdeep":"6144:UFqGiEmwCBIrM1/Q47GKhkiSzwyZMd6aKSOIOAbn5ONkNWBNOdbxUML57lzCJz5H:UFcEmdi41VkPI6aKSOIOAbn5+BNOdbx4","tlshash":"9874195ab2c570b616eb1035256fa21ab23a95d56409c050fe5edce03b78e0fa327f7c","size":362633,"data":"","first_seen":"2025-10-24T16:25:15.111378Z","last_seen":"2026-05-23T01:27:02.477261Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"be9760155985e1e2e1b14b267fbbe1df","sha1":"1f6f2b2ed7b96c4a2d297789c9b4f96728a9da8a","sha256":"cba178e1fc29c099c9c17ecd459459f11dcb5abb6a419a1c2cb8ff300414b231","sha512":"acd7ea28b28e88b7dbe65e578b44bc9e60d168b476daaecfd405e0fd55051c216c991c23f6f1a783d17338331f8a282a544ff298acd7e5b97764e734617347b9","ssdeep":"","tlshash":"fc315b2ba8bc47d00705825c14a57e1dacda2961c38cddfdd4c5fd1c03a6adcb408dab","size":1548,"data":"","first_seen":"2025-10-24T16:25:15.134766Z","last_seen":"2026-02-27T10:22:12.368138Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.2dce00063c7e7cfdcba4.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"49e10e71ecaa58b6ffb170f937c7c202","sha1":"53b1fd56d87ba4b9b318064f8b6ccb149c8dbbe7","sha256":"eb05202e2c708c4bc43d1305fe6f519273fa685de52a4ecd35199c1e43c12a25","sha512":"24316fd8c709b4a1a70d2e4c801136aba6a193dbeb7d81be0036f6d0b28b0fc0b4e080285782a59dffda38901faefafdd88707e7041073d66cd25fea38f6354f","ssdeep":"96:alG4CLrVFrZoPiYpiFR7VKM7vZycOLGQ4:cGnrVJZCisiFRJyGQ4","tlshash":"0fb1e784b2d0fed141f3545ed42b150170393e9e9549a598fabeecd92e2da863133f38","size":5358,"data":"","first_seen":"2025-10-24T16:25:15.11917Z","last_seen":"2026-02-27T10:22:12.326422Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1c862db5f2555377c2dc1e62ed7b3981","sha1":"c29e6dc25c08a70995127ec13ded6f80d9a36174","sha256":"27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac","sha512":"31143265b96385ef4b575b72591775139057dff85891be61591e3d55259b6d1dc95d86a0feec40c801d38e64278cfbe50c3c2a16757f986ad40f716935bf2bb2","ssdeep":"","tlshash":"2580008a208820008aa323a0002b2c8800a000b028808c808080e8a20ca2030220baac","size":26,"data":"","first_seen":"2023-04-11T21:13:06Z","last_seen":"2026-06-07T20:34:02.407753Z","times_seen":330924,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"56d4bf542fb539ee68a9d0b32684031f","sha1":"fff052ddd5e0191017e7996541cf27ac3b8f3f10","sha256":"51cf46626b8d6bb98a42c7d320871de36e71f5e40f6a1883cf086cb882411a86","sha512":"dc3fbdacb0e68c2b9b47c44decde46face1e78c9f628a9ffe2a2dd587d8dca03571e66c935d60c1650de9e55f9481f32edb4e6b89235564bcc77f2d0e6dba4b1","ssdeep":"","tlshash":"2b800410f011d50c10155d1151c00740400c150374d3d0c170c5c55040715454414351","size":33,"data":"","first_seen":"2025-03-08T06:00:53.728629Z","last_seen":"2026-06-07T05:04:09.252071Z","times_seen":1036,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/shared/web-tools/assets/dest/assets.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4cf7697e78f1f238f4bf996304e9d997","sha1":"f7f15daf47966632deed5fb84c4b32fbaa99e7d9","sha256":"89879f081d4aec2897f411261ede3fe959b179b480ab5d7bf5455fffd7e74854","sha512":"2fec35d5473b1ccfac48a84cf6f0b7ea1233e771b12fac89be906f5f5a46f126a413875ac3dd04a271a866241485f8bb5b517b051cdfa72d5e4b8f2ad5b95bf6","ssdeep":"3072:Z+9Ed9ny4iicj014nscTFXWTulNieePiT:ZR7n8icj014saNNieePiT","tlshash":"0cf30a49f220326502e322f1515f850a73b7653c7516c1fcb6a8d9e568bccc8a1abff9","size":159577,"data":"","first_seen":"2025-06-25T12:14:34.205708Z","last_seen":"2026-06-07T05:04:09.24556Z","times_seen":957,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YE6VZQGL5P\u0026cx=c\u0026gtm=4e62p1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0172c8f2efd1a884403ed89599f9cf5f","sha1":"26cec76b22098d39c960c8efee1c832a05ff0ce5","sha256":"88f34b8ca218024cb92b31650fd414c9f591227b6c67f377bdcaf2f68e4eb005","sha512":"b2fb3806fd87ed00557e5b122adf711d0a432c9053ae4e5ec97bc9ebcb55aa0afa532fa3f206cb5c0216c76db49d75c1f2f469c4756e734d6aa86d84b6f3afa8","ssdeep":"6144:ROk83dcl+cMoKTLvGRL8XZtTzWEzXJDlzRili5B2wllFfO:B8+l+cMoKPsL8PilSQwhO","tlshash":"cba40ade73d674225396f478503f018ba57b28a2b48cc89af189cce42d7469a4277f7c","size":455816,"data":"","first_seen":"2026-02-27T10:20:55.873652Z","last_seen":"2026-02-27T10:20:55.873652Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/vendor.de51237013b32cf0a4d53b8e8546bcd1.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"de51237013b32cf0a4d53b8e8546bcd1","sha1":"625140818b18867466e61ba02e2b7aea76c7dac9","sha256":"90d439f51bc5ff6fcae4c795c5277de15d41f5beee2af5e90e76f89c866460d6","sha512":"39ca2f753a74196a0964beba9aa6c1d54371d184523bb11cc0af952bbcbb384c4f4bf95dc4d4b9446b72de087a4fa15941ba13fe3be1f3057588fcc819f4aee8","ssdeep":"6144:x84AC0a1dI4DKg9WdGGzVSe1vmM1JTCZ6ls62Glk:x1AC5Q4DKgOLzVSefe3F","tlshash":"48e4e8dc7382b0a643a37175443f140bf23b6959684d8018f655e8e6bc7a94ea23bf3d","size":700731,"data":"","first_seen":"2024-11-20T14:16:18.365026Z","last_seen":"2026-03-05T06:08:05.766988Z","times_seen":39,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"282ccaee69bd72a34845494ae81b3dfa","sha1":"2b32f84ab3391c923feece479c22b5e65e531fbe","sha256":"36509733a252cf3c768ec58fa3a825e81e5650f62d990587f72a70b9e9745255","sha512":"5e64e3be46ef3c7bd5d620dab71f9e69b4e5c9a8fe22b8b6467f438aba1656463cd9d02b96fc6ab94dc38d96a50d26edff264d65a04d28ca83038673b392fd95","ssdeep":"","tlshash":"ca41649cf1ad9c840229236821d936eef4a89531a8dd5c4d740cf6b01fbc9074637eb7","size":2437,"data":"","first_seen":"2025-03-08T06:00:53.731783Z","last_seen":"2026-06-02T05:08:34.505715Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"571d863cc91b4c7d6bddb665a394501f","sha1":"fbc85da372674e0352d7faac9432dd30b1415012","sha256":"a049e9892b13958df96037c9a5de6454afb41ee7c9cb25a3e7b77d55b44238fb","sha512":"f8ae86b2269c32b3eea5e1bddf40e829083e5b502eba1c08a062c295d298b90b13e8e5ce8eb64b09196df5a88854968888eceb2050baa900612d5b6ff2ecee89","ssdeep":"","tlshash":"16e05e60ddd389db7d1059a1177d790559e0525ba368e844776df3068f8280b96ec1cc","size":302,"data":"","first_seen":"2025-10-24T16:25:15.140683Z","last_seen":"2026-05-26T05:09:05.556655Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ec30981fbcfda87c9bc1f21eedd3964","sha1":"771c2ae5446a934f0ad47ada2632e8d3a253359b","sha256":"901640c8d3e8ab1178f574cb9b027343a135b08c19283e183adfed11dbb012b9","sha512":"a0c41f47b228bdd532c3cb8f5e19f441da06039977dc31dbddd6876990d5794a7075fc2189c184ffa2311e778931ccf2aa54a2b8d6146b767e2e6511a632c8a7","ssdeep":"6144:I5qpAQxg9H4NoCXHUAD5p6v9zWwtXrpk0Rd0duRjrnTKbl7wnoyJDdBWSQEq:IWoH4N5Uv9vrpk0Rd0duRjrnTKbl7wnq","tlshash":"be644be8e931787a04e742d7d05a440433b5e92da30785a2f1bbe1695c4c69d02ebffe","size":334809,"data":"","first_seen":"2023-03-07T01:10:40Z","last_seen":"2026-06-07T09:15:43.536113Z","times_seen":1701,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-MZ6SJSDK","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"142340be5b70e7545ade011f3f752f53","sha1":"5cef4c85873942769e18672b318be7c771c1e46b","sha256":"e46a26d35a5a860d01f2a162a2bd0b262b7e7971c08454515b73e9c79a21d869","sha512":"01fe763d7645679463e55c2e3b56a6fd22de21f7dddcc412a5bf8058dbcc6a78b1111598985e782bdd726629c6eda45e47a19c09c89d20bb3b101e87931affb7","ssdeep":"6144:Ck83dcHcMoXTLvGd8XZCTzWEzXJDlz5ilq75WTpiu:r8+HcMoXPs84iluWTou","tlshash":"626408cdb7d6742243a3a478503f018bb27b7892b88cc895f185d8d42d74aaa4277f7d","size":329965,"data":"","first_seen":"2026-02-27T10:20:55.926404Z","last_seen":"2026-02-27T10:20:55.926404Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/9636.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9295d58448a67f95f2592ef1d3b9b660","sha1":"d4267006b28b97feefdc14b4087b51e5a595fa2f","sha256":"f4662d2f575abe45c21c94dafa40fad05d0523677071833b23699026592d1359","sha512":"1d6a2493016f61a2b4c9f66c51e862ab6dfa06e95bf45d93b044a56612bfd1a64d458e7fa947dd973e79e065bf1bc17feec9b9e03726fbb6c0222bb048760c7c","ssdeep":"6144:OJV6YH+S1qzNZTXF3ft17CKgs9jmOcTdAM7FY0fgbqXQgoTRODpmsfvLfRmlGODs:OJV6YHW5ro7FYeswvLfuAWN0U2GlUlmy","tlshash":"250529dcb1c6b8691be361b6402f360bb1356815948d841cfab5ece97dad9492233f3c","size":800279,"data":"","first_seen":"2026-02-20T01:51:23.656315Z","last_seen":"2026-02-27T10:22:12.362693Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rts-static-prod.freshworksapi.com/uae/rts-min.js","fqdn":"rts-static-prod.freshworksapi.com","domain":"freshworksapi.com","tld":"com"},"ip":{"addr":"108.157.214.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c71f521d3ce3267bb76641297d53a10f","sha1":"41e594a25f7c843e88773d13912c23319d9aa9df","sha256":"2b3e5b06631b287a91feb8dc6bb46b832239c2acb445f44e96f2761351167839","sha512":"4d729287f20334c83af5d55ec668f59f8b0826eaa597d393079aa94f024836b13c67a22f9bdd56677c5d5117cb39d97c63e4ce8b44a33ddf9a0aa4be031f6684","ssdeep":"1536:7BYvtXLd9SMHuLPC9Wv5TTk/CG2xF0Xy1cveuGEQU5:F4dnuOgTTk/CG2hcvB5","tlshash":"a78319c9b9a130a153f3b261447f220b623b582c5909806cb754d9f66c7eacdb317fb9","size":87538,"data":"","first_seen":"2025-02-21T18:31:36.5889Z","last_seen":"2026-03-10T05:59:02.700937Z","times_seen":4670,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0811d4e02f65e5c725a2a51c9aa53fee","sha1":"6b066dc2c70e07db69f449b998222f907532407d","sha256":"9b3a68140b44ab4663d7db0eec5ced4d99e16d850fee5114c83f9e18137a80ee","sha512":"07776248ec156416703c6037f7b23681b13e59d417103497ff73ac9bdca174950a90bb953525bf95776688562e53683ad48eb3f5efd6df2f7d517fc875560537","ssdeep":"","tlshash":"bbe0c0db701208b2669f85b623b5a125b153250d78091823edfdc8246e68587481719c","size":358,"data":"","first_seen":"2025-10-24T16:25:15.14216Z","last_seen":"2026-05-23T01:27:02.591655Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"09d0554a0e9a8751df4fb6bd4a984dc7","sha1":"1b1c5e859b07c34c5a3e643eb40eab76bfc7b0c8","sha256":"41d764db49ec1705c84b60b85bc505a0997616846bf4a8b52849bfcaf8d21909","sha512":"1153dc991fb37bf10ccc0b709ac16a1773a175bdb5677e3952cebf0dfa70752766c5e856db2078d72a8c0d19ff6fff824d596b48f99d169b2a6b3b74b4ee802b","ssdeep":"1536:bVgx8P3+/66QGKFx8sWGQ/IWRyNrZSqCe+hkiwGbIi8o52Ncwli2wvjmsIHsUIeD:C66vKhaIWR0SiiwGMi+c9LjZIM1I","tlshash":"fdc33bdd7151b432029666a5453f0a0ff23b9d59750b492cf228e4c87d388a990fbfba","size":121722,"data":"","first_seen":"2023-03-07T01:10:40Z","last_seen":"2026-06-07T11:34:24.077924Z","times_seen":2765,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.d07c4c12164a01652c23.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"81ddab6f69f35be652fc944c184217ce","sha1":"65ed570c16138ce1308ff97322f9ea77d0d77618","sha256":"1c835026743389149c30e8e906f8c289f38a324a40adc4d05368928cd58ab9c8","sha512":"16d0b2ee2541b6902e52114c220087ef65026a29d89f87281acbc1eebcbd68ac7da73e4dbb588fcb6d1d6bfce6f25d7744f3415900c458d3e75e79f9c58bd6bf","ssdeep":"1536:QXNy5gu4xvhbdHeMIto70rC7wiN+F3n3MKJVUyCYhu6WiWng24rhsiTO/6QGenK8:oQMIto70CW3e","tlshash":"4293b7eaf1a0a8b865a6e19594737906653c3a1b1345e1e8b6ecccf43f649cf1113f32","size":93905,"data":"","first_seen":"2025-11-10T15:10:07.291709Z","last_seen":"2026-02-27T10:22:12.352695Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3db532a5fa5d4ea267efaaa85b11a5e6","sha1":"b553c6fe517020e575166636d9cfbb65991bffbf","sha256":"50d4c56ec1c78a053dfaa7cdee17ee607519acfb7cb1c6917f3f6713b42f87fd","sha512":"a9e109e4fac3e5af919475ecfce32c93194e00b9fc3fb30ed26200bf81226d952e12a1635e6cbd2a350562143cea3c5cc87eb697e9454cd1d31901037cc53373","ssdeep":"","tlshash":"ef116d9e3104aefc42911f2898331fdc396460b225bc9eb4b8bdc96c02becc44111a93","size":957,"data":"","first_seen":"2025-03-08T06:00:53.73391Z","last_seen":"2026-06-07T05:04:09.256902Z","times_seen":741,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5e1427ac2d0874c0917327af3f043308","sha1":"487b86c22a71eb634d5cc98988c1184570849762","sha256":"3ea30c86405557f3e71e4744b41d2814094fa23923dee7b54cb45477235047e6","sha512":"927656c0ce789f07ce2093958f8038acb3c183b579524779d6457f45b59d9f9285684a11ffcdddb7ff5af528371a4d8afc9176bcd3b225c72ba13d25401994a7","ssdeep":"","tlshash":"9b11a48ee9ee1419417b79284b6bb2003533067b540b9d407fcc63852f202a3a1977c4","size":1051,"data":"","first_seen":"2025-10-24T16:25:15.143756Z","last_seen":"2026-06-02T05:08:34.51266Z","times_seen":62,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/bm_plugins.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3bdfb886cbc0effab973ab84d822b4b0","sha1":"f8d3c5a6047aaff45df46c8b6a6aa2348574f9fd","sha256":"5d33f8f92398caa6341140a9110c3c488d59787c04971e90ddcc8fc45d3b5a08","sha512":"9a2b734b98931d5055cddb25f8332f302d4b448d846db9cdd54c6fbc7c28d4ac061c11c44a3647355f2a0d7b361d13f5eab77aa408211e8dca34b5083b2a223a","ssdeep":"48:yCkaHk7hoDSV7gDm7K1ihKgYKZ0QZR5vL7PksoTb9F3pp3SW8wpTJwOg9iuWHGKd:seiuKxX+bb5kqApfWmK0lASHFbp8","tlshash":"66a1460db695a67d01ff55be210f231036312de8d8498cbc7ca09dd516e9dca2b22bed","size":5085,"data":"","first_seen":"2025-12-23T03:56:37.026085Z","last_seen":"2026-06-02T05:08:34.419785Z","times_seen":106,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6f740b956919fbaa673bb496be184ac1","sha1":"fa7d2aef8069f1be31c655fb889c897eae36757a","sha256":"c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304","sha512":"e35920e657641e1a0fd7854febd24180da274bf4a9e243a3d3c356cb92281f7174c451d2bf89a98f618368cfecdc77fa11308eb8665b2719b4780390aa755364","ssdeep":"","tlshash":"93417b829b5c80fd88267269ad395315a67acc73130905b2be4d2c9dec54923c7cb9be","size":2326,"data":"","first_seen":"2023-03-07T01:02:18Z","last_seen":"2026-06-07T18:46:50.567202Z","times_seen":14231,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d19cdc3e020da1bb7b47b79066d6237e","sha1":"c4b9c3dde8451b823b483a1edfb375ef635bb53a","sha256":"0b05e98a9063ba631486fa69811c464ab2443b3434cd94f856ec61d26746fbca","sha512":"e79a4a815e53ed45a0c5777a794a065e950a859b683c2ee75d5d8bef6e792edb54b9d6cb5a498d1cee1192331646fc865a1e8de9e4b3c7d5509ab39c37caa72e","ssdeep":"","tlshash":"5be0c00cf748e144007b309c4e221ded046a3937584e1aa2781cc4923b7423221ce18d","size":347,"data":"","first_seen":"2025-09-27T05:04:52.117023Z","last_seen":"2026-05-23T01:27:02.61382Z","times_seen":212,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d97b34584d9c3e1efde8535e07053b3a","sha1":"814fc1af1a7e941e6ecf8279aebff6799ed2f396","sha256":"e749a4884acbf04ae1d21dede8d3eed7440616bf4206b40b1eef85fdbd45ef6e","sha512":"8df9cdc9a2870564361f366063d1dd31fb98a93671bad1aff9f7dc7b2a53059386da695b5598a7697d66e89f7a8b570521243523e917b7badcf9cf01e20b65d9","ssdeep":"","tlshash":"8e017b78b0ae03e4037318b02dfd5a4f274193310f6680d5568482f91b1ee11aa4bbdb","size":666,"data":"","first_seen":"2025-10-24T16:25:15.146476Z","last_seen":"2026-06-02T05:08:34.513447Z","times_seen":112,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/jquery.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0bdc04968d2fe6799360150868a8b8b6","sha1":"3cca78feb86ab7549f20306ab25c7ab76c72b21f","sha256":"7682ae16052155906f82c882564658da00e3f9bf19eadf56cfe13f44c0c3d308","sha512":"adc14659167e1b6c739d06a8319e5643d73ee686aa2ffa9f44665024e3a03b2b0143040ac2eadcb7e63c00ceffff4c91ae7eb8ccb3b6c34d1055a9e7692e0dcd","ssdeep":"1536:AP1vk7i6GUHdXXeyQazBu+4HhiO2wd0uJO1z6/A4fGAub0i4ULgGiyz4npa98HrL:z4UdWJiz6UAIJ8pa98HrL","tlshash":"d183d6d9b2c67062977734b851bf410bb17a98dab80c8c60f0a4d4e47eb4a8d517bf2d","size":84319,"data":"","first_seen":"2023-03-07T12:12:17Z","last_seen":"2026-06-07T16:19:40.669241Z","times_seen":1666,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/all.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2667da957f4993360a3a9506c21e92fb","sha1":"1713a59fc818b36b0febfd1ee5a2073dd7059785","sha256":"a065c6438575f102aaaf0ac0d4d363e5c541db7231538d0b32e710e0cac6dc5f","sha512":"1a9989f0ff632320ce55c8f1688c4643cf5f86b273f14b9b3bb73b5bf362cb41390067eddfc9cf16446050d81e8b82621936aec89e8268ca451bdfc7e5f99542","ssdeep":"3072:si6qHDiiKFd+sEj7ZNhI9MexF+LMM2/Kiazjp:sinDdKChNIO","tlshash":"ca54f989b251722106eb71f9103f450eb336a93ca50784a8b1a9dad52c7cc4e61b7fbd","size":289374,"data":"","first_seen":"2025-12-23T03:56:37.016748Z","last_seen":"2026-04-12T05:08:55.40757Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/config_iframe.html?host=https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\u0026token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026origin=https://www.vestofx.net","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"750e29b18d2c201639a24f0daf89c03e","sha1":"443198b3bdaf773440ebc1faf3cb414907bc88b5","sha256":"4c3281e34b5a39f73bd6bce5cef60fda5e1d7322535ea0287734430dc0e90434","sha512":"e33baafea430c6430b3ca361d84a869e68c2e9461eb692eeb38ab800fe7e2698781c9c103b2c4cf42ef94419b827c900c8590d3e98a4bb38c4dddacb5a674dd3","ssdeep":"","tlshash":"0bf0c00d9853825700e396ccab069a0b98241c0eba14ce803e2d7a814f6fdcdb03e706","size":615,"data":"","first_seen":"2025-03-05T20:24:53.753807Z","last_seen":"2026-06-07T05:21:04.601705Z","times_seen":7882,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/fd-messaging.51f15242bcc420927211.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ca853c096d062a7680b9d7ebcfc52fc3","sha1":"5e86bcd19ae157fce0bd99052bb8ff58f18a6ebc","sha256":"dc7d6543e7c9daac65dcdc18190eb740b253bb87a46e10482e9211917a7fb20b","sha512":"80163b69518f0951b40f36e66fd4d0917b3a6183c8b9a0ade378c64668ad03629a9aa4bcc1a6e5349a884cb628449958cb466710d2aedc2d6b06efcef0878ea4","ssdeep":"3072:jqIiedSmJUMNKu2RSDcbEizS4E5Lk+VAM1+a6qjvBpGTMwUoRcFIzifdY0sTsHtM:jqC1i9EAo+a6hY1giK0sTstw4AfyTxXy","tlshash":"de05e9c9f1d1f8a516d394a994b72406a239390a13089098f5fddcf66f6dace2037f39","size":798041,"data":"","first_seen":"2026-02-20T01:51:23.614438Z","last_seen":"2026-02-27T10:22:12.350268Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T20:32:05.992799Z","times_seen":363381,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"850d16f5e7a34e419445d79e8ea7be91","sha1":"2e70594bbae52e837daaf3cf192310514b401c42","sha256":"9bb26cf385ec0cc1515dc259277b6386b1370d13844542672a8993fa8980a30f","sha512":"92b0fc21bf43d2a1f8b9f7bab51f5d0030f0753efebe3856b0b66eb1dba7053d1f0d409a8b8f3bd6af78471de43a2596d371c318ce666550e48013dcfe4bef2c","ssdeep":"","tlshash":"cff09e248412a75141745035ae4fa48368f443246f29c8cba78cca8e89d590999ddade","size":466,"data":"","first_seen":"2025-12-25T19:13:06.582005Z","last_seen":"2026-06-02T05:02:12.820374Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/js/widget.js","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c74d72e0470bb808d2d168961ec397a9","sha1":"9a8eaae9bbbb24d4d8d9c2b484ddab2e670e74b6","sha256":"1c0b1637be28d429e4e96f47330b1ffd386663a583ce04f20162092512ba38f0","sha512":"72ac9da2d447ef3e31c702ccadc9c52e8b0dcdd80de876d7f126231ece2bfff38a10c479e720d2838eea936f24d9684979b7aa33b39c322e5a182f028e8f96ec","ssdeep":"768:4N3uaJhHtCt6HeqVNONkfbVEPFqKjDH1FSi3X4Gl8vL6L:O3VOCDON6VEdqKjDVEi3XFv","tlshash":"5563185eb282743505f3d465a2af32067132358aa426c8107a6edde96f60ecf5233f7d","size":69900,"data":"","first_seen":"2026-02-20T01:51:23.670394Z","last_seen":"2026-03-05T06:08:05.725687Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.a657eeb177d99adfb7df.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"174adb30925fc4179f9d4205dec1ed7a","sha1":"d76daf15c30b97f586256a34e327346a84c7217e","sha256":"f9ba83d10aa734dc1248f9987a7267f70f6f0eea9aab7b4cd98d12d4b71ba96d","sha512":"f885e10df14807bd8a5adcba6877c75406cf7084e85b9f79867cc25b94b773bc801215c31409a29812ff0e225d8b1d8b4204f613816abb999bf2d130d3aab2a3","ssdeep":"192:p0DCtRVvQIcim/NFPWy3UFfgYJArPpQ3bSU9XHZDjHU/PImvtZGqR:iQRZcNoyE9X2On99jFmvtoqR","tlshash":"d232d85ea5511e7a0b9752e634ca3e6379f4006513c16aa4f8ce841c03e9fcdb25fb8d","size":11746,"data":"","first_seen":"2026-01-27T16:56:59.00608Z","last_seen":"2026-06-07T17:07:55.486572Z","times_seen":2913,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"00413ce9b11daf889d673279fe01081d","sha1":"7502e21df1c82c9d67bfad8951504ef344d1a2a9","sha256":"f5238f76fcf0734c3aa149031c64e3afb0ba0121a0278ba6fa856a5799379006","sha512":"3a271ccb8278a6f36f3bdb9760cb9564f99fd7089a5420b20c7069aa7e72d8bfda4cd026d16ed846db28673804fbfeb2a6866b72fd0472f0e375256b2c7fe905","ssdeep":"","tlshash":"73e0d866b0ee530a98a332b1473b7100752bb456a0059b863e6c9e904f8432c0937b2a","size":419,"data":"","first_seen":"2025-10-24T16:25:15.148412Z","last_seen":"2026-06-02T05:08:34.515289Z","times_seen":112,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/shared/general/general.min.js?ver=1.0","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba35efc80b46532c55652935df3911e1","sha1":"e8541d16b9d7b3826fa26a2fc3fb1f0c0ab54423","sha256":"70757c29c26d289fca08ab3229fef6007e6695abb4ce1422e9bef90a1e7bed5a","sha512":"03c8205e6889b067f4b002d2dadfb8f4d2e22b2dfd8a79e52881877aabde5a924c5734d19342bdb0abde020a76bb60131798fd4a95239a11c6c61e261e48e2cf","ssdeep":"768:OP7fz7ZubY3SJtfxIWDJGD5mc+VTYMnp6Thgf0PflFjSUgGjKz:8TzmtfVVA9gfz7","tlshash":"8823295d7389533ee5f791b6789b020b5aae35040ac0c49c7479cfcc1ea8ec66867736","size":46562,"data":"","first_seen":"2025-10-24T16:25:15.128007Z","last_seen":"2026-06-02T05:08:34.476677Z","times_seen":112,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/v67327c56f0bb4ef8b305cae61679db8f1769101564043","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9dc6464da80362edfde8cd10567de865","sha1":"6323d6fde4148ae6e8daa0bbc813814b7e7c8d88","sha256":"e7aa4e094a5dab2c40e1be1fbf91c58b7e26423e48e188a485a72994e8d050b0","sha512":"add716638ec1c9777be9c6c2173ce721c11a08def58ea916041aa5c21175498ecab9b74b29988419e3fb03289e2999463fd85b63f3211abc17cc90bf1ee94dca","ssdeep":"384:B4K61zI7CIyN4UletDDG0l/nvqtLxnzU50c74MNKJM4e6GODfPOsWN69O90:kN4UwDDlIUsJXvfP1090","tlshash":"29d208edb590b13613f7a47240bf210bb33b756264894418e22bd5c12c78aeed257fad","size":30200,"data":"","first_seen":"2026-01-22T17:09:23.016308Z","last_seen":"2026-06-07T16:56:48.615748Z","times_seen":5235,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2019/09/Icon-Education-Centre-01.svg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2019/09/Icon-Education-Centre-01.svg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1427\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 96473\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"66e2ad6e-593\"\r\nexpires: Sat, 28 Mar 2026 07:32:24 GMT\r\nlast-modified: Thu, 12 Sep 2024 08:59:26 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AAry%2BShLkt8plLN28C84qJJNSEfTZs5kOr3ITre3POnmeU569W%2F6E2%2BmWvxI9nLlJbxtzS6mPiQZESYscPsTXMIHDGdJrlqg1FGniqpx\"}]}\r\ncf-ray: 9d46f2e5ba543483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1427,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"94806006998573435ee17ed9f9678db9","sha1":"0cd5f8ac9308782ce480ca2babef25f485190475","sha256":"84034252d005f1f43f51b15a99d84d223255bdf717fb2c22e03c3739dbb13c94","sha512":"76c2a0c7f312cf4e400ccea5471a16f43597b811eaf3029526a201d9927f1d8e8336e198f65548e88ce107dfb6211071285496cbd0e610a1252cc0c31dfc43d6","ssdeep":"","tlshash":"dc210fa9038ce76b4d0c4324a76a54dafb69d44b8c20b2c8bf5b1c67fd9d0c5584cb21","first_seen":"2025-06-25T12:14:34.202579Z","last_seen":"2026-06-07T05:04:09.179129Z","times_seen":741,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2019/09/Icon-support-01.svg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.203Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2019/09/Icon-support-01.svg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1561\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"66e2ad6e-619\"\r\nexpires: Sat, 28 Mar 2026 08:51:50 GMT\r\nlast-modified: Thu, 12 Sep 2024 08:59:26 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n8KcVsZq8iMlkeo%2F4udQ79sXg5sTf9fzGsCz5yFVWr2r3BLp7kN7w8v5LRMzE%2FF%2BxWX%2FZMeX6FZHD3SrSPcFQhDgNeYefFe5H8cBP5KB\"}]}\r\ncf-ray: 9d46f2e5ca723483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1561,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7598332ee0f4b66ca28bf3307bcf5419","sha1":"7732ed2dfc6632246aa90c1bc612c65b9eff8ca3","sha256":"86a2d060f08961df311e2ca5e2534915b75f8bdb65b85327045f93a0eb46f90d","sha512":"58d53d8ad640cd5ad682dcec26d5d8a33a49ae6fc2141566d5f2594d0a74ddb7c494c7f99eb779229d683684d913e67e46c3d60a0d1bc573f33cd79b44b69f6d","ssdeep":"","tlshash":"b831af1b0315ceeea9cc43289a65894d32b4dcdba474e0d09b631803e5ae4f5651d7b5","first_seen":"2025-06-25T12:14:34.22872Z","last_seen":"2026-06-07T05:04:09.248027Z","times_seen":741,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YE6VZQGL5P\u0026cx=c\u0026gtm=4e62p1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.316Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:39:20 GMT","end":"Mon, 20 Apr 2026 08:39:19 GMT"},"fingerprint":{"sha1":"60:64:B6:72:E4:67:A4:EC:78:B2:F2:B8:3E:17:7A:A6:A8:CE:74:4C","sha256":"3E:71:C0:44:31:9B:1A:8A:23:FF:D9:4F:B9:3F:89:6D:7C:66:33:BE:14:26:CB:01:F2:79:BB:FE:F3:3A:71:98"}}},"request":{"raw":"GET /gtag/js?id=G-YE6VZQGL5P\u0026cx=c\u0026gtm=4e62p1 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\nexpires: Fri, 27 Feb 2026 10:20:18 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 150770\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":455816,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"0172c8f2efd1a884403ed89599f9cf5f","sha1":"26cec76b22098d39c960c8efee1c832a05ff0ce5","sha256":"88f34b8ca218024cb92b31650fd414c9f591227b6c67f377bdcaf2f68e4eb005","sha512":"b2fb3806fd87ed00557e5b122adf711d0a432c9053ae4e5ec97bc9ebcb55aa0afa532fa3f206cb5c0216c76db49d75c1f2f469c4756e734d6aa86d84b6f3afa8","ssdeep":"6144:ROk83dcl+cMoKTLvGRL8XZtTzWEzXJDlzRili5B2wllFfO:B8+l+cMoKPsL8PilSQwhO","tlshash":"cba40ade73d674225396f478503f018ba57b28a2b48cc89af189cce42d7469a4277f7c","first_seen":"2026-02-27T10:20:55.873652Z","last_seen":"2026-02-27T10:20:55.873652Z","times_seen":1,"resource_available":true,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/hotline-web.d41d8cd98f00b204e9800998ecf8427e.css","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/hotline-web.d41d8cd98f00b204e9800998ecf8427e.css HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\ncontent-length: 0\r\nlast-modified: Tue, 17 Feb 2026 08:15:06 GMT\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: \"eaa278ba388b6e1b60a54fd05e208a86\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: KYJErZNo2y9wJ3SKYr9JsSgl6IvWZfWtuJchilkgt5XuIuf7QLjhow==\r\nage: 42\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":420,"timings":{"blocked":190,"dns":13,"connect":8,"send":0,"wait":39,"receive":0,"ssl":165},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/en/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-27T10:20:16.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /en/ HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=um1B%2FvfX822DLR3kupf%2Fsjgxz%2FcQj%2Fbgag00JI3SvmJjSZmEm6%2BBXNyp0NzGu6WZl%2Fa63xDHXFoVujg4U%2F6gGh0QsRphBTV7TNtaGMMG\"}]}\r\nserver: cloudflare\r\nset-cookie: _culture=en; max-age=7776000; path=/\r\nx-forwarded-for: 91.90.42.154\r\nx-site: Fri, 27 Feb 2026 10:20:17 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=7,cfOrigin;dur=548\r\ncontent-encoding: br\r\ncf-ray: 9d46f2dcdd613483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WPML:4.6.15","description":"WPML plugin makes it possible to build and run fully multilingual WordPress sites.","website":"https://wpml.org/","common_platform_enumeration":"","icon":"WPML.svg","categories":["WordPress plugins","Translation"]},{"name":"Yoast SEO:25.1","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Slider Revolution:6.3.3","description":"Slider Revolution is a flexible and highly customisable slider.","website":"https://www.sliderrevolution.com","common_platform_enumeration":"","icon":"Slider Revolution.svg","categories":["Widgets","Photo galleries"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}],"data":{"size":67345,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8856), with CRLF, LF line terminators","md5":"774e3a2e55f1013db4a25b16c974f659","sha1":"71dafb8d8252f3a9ac3776b41fb58d79b957ee0a","sha256":"d1439ad2c3b667181edf85787302ea5861cd1f278c0f8dca24b64a3acae09bc8","sha512":"1c7384da8f31df0c7e920def64912ccf59769ba33d8ca156d09e9a485979ee5af1f6dd1d29d969880dc056633b5d6d46fdaf21727fde7df189b18b0f6ab4178c","ssdeep":"768:6ip1pCtYgZdapzDULtaJqEcGYT1Kl9bgwuBoRb9cSSxjhT:6ip1piYIapCJTol9bgwuBab9cSSxjhT","tlshash":"6063c5a164e8543a426b66846138b328fbddd023cb055d6433fc76adcff6fa149b311a","first_seen":"2026-02-27T10:20:55.876776Z","last_seen":"2026-02-27T10:20:55.876776Z","times_seen":1,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/jquery.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/js/prod/jquery.min.js?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 84319\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-1495f\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oDWt%2FfsJAd7N5qa6EEjura1eeLy3bP1Y7DJm%2FlSX%2B69XSkAuS2eF0r%2B4tP7SylmcV3YfxplO9YYwSLF2KkhGacEiyvMMiyePSuKxoMTI\"}]}\r\ncf-ray: 9d46f2e209933483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84319,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32180)","md5":"0bdc04968d2fe6799360150868a8b8b6","sha1":"3cca78feb86ab7549f20306ab25c7ab76c72b21f","sha256":"7682ae16052155906f82c882564658da00e3f9bf19eadf56cfe13f44c0c3d308","sha512":"adc14659167e1b6c739d06a8319e5643d73ee686aa2ffa9f44665024e3a03b2b0143040ac2eadcb7e63c00ceffff4c91ae7eb8ccb3b6c34d1055a9e7692e0dcd","ssdeep":"1536:AP1vk7i6GUHdXXeyQazBu+4HhiO2wd0uJO1z6/A4fGAub0i4ULgGiyz4npa98HrL:z4UdWJiz6UAIJ8pa98HrL","tlshash":"d183d6d9b2c67062977734b851bf410bb17a98dab80c8c60f0a4d4e47eb4a8d517bf2d","first_seen":"2023-03-07T12:12:17Z","last_seen":"2026-06-07T16:19:40.669241Z","times_seen":1666,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2015/05/Platforms-1.png","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2015/05/Platforms-1.png HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 164167\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"670684da-28147\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Wed, 09 Oct 2024 13:27:54 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zt09yQE7%2B2WWeqGqTLmjceDf7rcF18yaTxxvL7Slob5FM3CsBoLzNBPeRMB%2FnxedegYE1vy9RMfvVAdnJaEiTjpJF1fMhrcyu799JSOf\"}]}\r\ncf-ray: 9d46f2e2099a3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":164167,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1060 x 1280, 8-bit colormap, non-interlaced","md5":"7d38c0dda8c29b2975da9006978dc17d","sha1":"f9515f2c1504212cfe40eaf6b0f5001d19a56210","sha256":"ce22cc284af0c21c4d25167f80f523b8b8602375d21b66919856c21d78aec898","sha512":"15fa707cf2d58097d4b6dd71caeec4b79d6afa93031381e4bc613a61c9b053501bce51829d7b502d2bfec56bc13226b842b66545327c14dac0e249749ea902eb","ssdeep":"3072:TGgvjcKD+7AWy9CXBD5p7kMdH5HpGkar/IyUBrrX5k1BrPf+ZjYquJ4AynycV:iicKuAWmi55pRLarQZk1luOqjnycV","tlshash":"42f31349cf3d2f0dfc91475a61a98ffbed7316781030a68e26e95aef1c6a2404c013b5","first_seen":"2025-10-24T16:25:15.087915Z","last_seen":"2026-05-23T01:27:02.523261Z","times_seen":14,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":130,"receive":125,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2019/09/Icon-CFD-01.svg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2019/09/Icon-CFD-01.svg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2271\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"66e2ad6e-8df\"\r\nexpires: Sat, 28 Mar 2026 08:51:50 GMT\r\nlast-modified: Thu, 12 Sep 2024 08:59:26 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E0sqH3JOBgPqYhgTX2DYJ%2BozZG0OiNGvJ%2FuN1ueJCrmPThHkRfheGD186%2ByAP2pHTay0rG%2F%2FLPk3vRn8kouNlR%2FDWk1JHrJcu28kRIH%2F\"}]}\r\ncf-ray: 9d46f2e5ba4b3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2271,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9c1d364c754397ac93f470502d11d561","sha1":"6934b705c742e08e1b19a716d98a2dce2f3d7a0e","sha256":"79c276f090b46ad6287ddb39656b817f0ddf77866375f4ec3c93647b07474065","sha512":"d6846f07ff9cfbda6efc4aee2d9f3fbbed748457089e7342e0aa10d0a55bb4caf4f9a9fc4bfa7d3a161202a15294a1dafb5846d95dcd0f2c757100889a1705e2","ssdeep":"","tlshash":"1541472603466bad7acc8374ba2c088df6e0e8db5074f1c4df572c05e8ed4da656d3a5","first_seen":"2025-06-25T12:14:34.23814Z","last_seen":"2026-06-07T05:04:09.199057Z","times_seen":741,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 60289\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 96514\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-eb81\"\r\nexpires: Sat, 28 Mar 2026 07:31:42 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6CR%2FlAc5Ygptznd5YiIVJ3jHHVR7dQTZW90xR1wHgPE9unW4ubjP4Mc%2FUKk8IJXV4VIYTNzsvDLQh1l9AMEr%2FqE55BBs8Q3mZB%2FoTBg%2F\"}]}\r\ncf-ray: 9d46f2e1f9883483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":60289,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators","md5":"cdcd5bc66c5f341dbea8118b06f087dc","sha1":"6319bb7556398283ebbf757eca36ebf3af09b444","sha256":"7f618063d56febc293240fa3a3d8281433f248faa4045a4e076fe45b8d69e9ec","sha512":"4589a456eaaa3de0cd0bf42b1adde0f850f76085a988a9f893ba895b309c1fe9fccc1899ec8541d189cdb82c2ca3f2cbd5e01d57abee983fadd87a0125b3d523","ssdeep":"1536:2shMbEX0szVQwHkub8ukhqQ9HmU2WMghSk5h5rEUUrIUkx0+8rkUIpLM+IrAI9dz:JbHkubes","tlshash":"cd43c67198921da82327ca81e7ec0bd4ae25cd329e030cadf597321dc39e599467d7ce","first_seen":"2023-04-08T23:38:17Z","last_seen":"2026-06-07T05:04:09.246851Z","times_seen":1991,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":98,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/default/images/flags-sprite/flags-sprite-24.png","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/default/images/flags-sprite/flags-sprite-24.png HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 69402\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-10f1a\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dLYqH%2FB%2BUSpLmoTUUKqqENjkaGCVx3r5MR0qXjNIl7IsWasMECoFDFuXtyepPaHD7I8qHRFva7PiFdICB3K8nQPSRJjaOKTMqGd9uUa4\"}]}\r\ncf-ray: 9d46f2e48f653483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":69402,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 408 x 384, 8-bit/color RGBA, non-interlaced","md5":"877f334f1789c11a14705a1a2d384fae","sha1":"43692d99af65a70e3f955f85921c9df043d37a58","sha256":"716c40a40639d19c69dda02f31b977b5ca40c6cb42e220d638b4c4729f16bf47","sha512":"71eaee5ccd441d5477a308617494631d554787ec4c54c9faedd3a920da1b4a5028c0980f8128d41b2fe9b12cfcb56b47c187ef98911fff45bbac395841464251","ssdeep":"1536:DVD2FCjm85/B3qM4HAIRnlYuz+E5n50G/6xYG:xD2GBabHxaCniwGZ","tlshash":"ee6302598ce9e8a35d7fc61d3b9312ba866f6148ab48ad3b0e338a54d907cf4484ccd4","first_seen":"2025-06-25T12:14:34.240536Z","last_seen":"2026-05-26T05:09:05.549261Z","times_seen":356,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":106,"receive":75,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.d07c4c12164a01652c23.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:21.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/chunk.d07c4c12164a01652c23.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:15:02 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:21 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"cd07154128916317a492946e703bfa94\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: n-kaOkrYfnNsPMg6HVICbojQ7HIFbRIZWtQsRU-Ox4jDRGCWZb2wRA==\r\nage: 49\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":93905,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"81ddab6f69f35be652fc944c184217ce","sha1":"65ed570c16138ce1308ff97322f9ea77d0d77618","sha256":"1c835026743389149c30e8e906f8c289f38a324a40adc4d05368928cd58ab9c8","sha512":"16d0b2ee2541b6902e52114c220087ef65026a29d89f87281acbc1eebcbd68ac7da73e4dbb588fcb6d1d6bfce6f25d7744f3415900c458d3e75e79f9c58bd6bf","ssdeep":"1536:QXNy5gu4xvhbdHeMIto70rC7wiN+F3n3MKJVUyCYhu6WiWng24rhsiTO/6QGenK8:oQMIto70CW3e","tlshash":"4293b7eaf1a0a8b865a6e19594737906653c3a1b1345e1e8b6ecccf43f649cf1113f32","first_seen":"2025-11-10T15:10:07.291709Z","last_seen":"2026-02-27T10:22:12.352695Z","times_seen":28,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 334809\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-51bd9\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=545wUsmcZJEnWkQLLLRIL9nglJ7EHetCjGUCO3Du1kGqDXtqYZimNYFkgYPQ8AHZo%2BdDURAqD5%2BzKnR85b2E27O9str5YrUQ6x78j5Jv\"}]}\r\ncf-ray: 9d46f2e209973483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":334809,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (64270)","md5":"9ec30981fbcfda87c9bc1f21eedd3964","sha1":"771c2ae5446a934f0ad47ada2632e8d3a253359b","sha256":"901640c8d3e8ab1178f574cb9b027343a135b08c19283e183adfed11dbb012b9","sha512":"a0c41f47b228bdd532c3cb8f5e19f441da06039977dc31dbddd6876990d5794a7075fc2189c184ffa2311e778931ccf2aa54a2b8d6146b767e2e6511a632c8a7","ssdeep":"6144:I5qpAQxg9H4NoCXHUAD5p6v9zWwtXrpk0Rd0duRjrnTKbl7wnoyJDdBWSQEq:IWoH4N5Uv9vrpk0Rd0duRjrnTKbl7wnq","tlshash":"be644be8e931787a04e742d7d05a440433b5e92da30785a2f1bbe1695c4c69d02ebffe","first_seen":"2023-03-07T01:10:40Z","last_seen":"2026-06-07T09:15:43.536113Z","times_seen":1701,"resource_available":true,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":168,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2024/09/logo.png","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2024/09/logo.png HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 2113\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"670684db-841\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Wed, 09 Oct 2024 13:27:55 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4KQejyI1CGPOk8rx0vf0uJLFa%2FYlWMdgPbNzWRqjhSVN%2BU0hoM3kJxSmRxdWkaoAHyiJVamA3LcLpM5D27wMQfrTXVQ7hTtPi2wtvfKv\"}]}\r\ncf-ray: 9d46f2e2099f3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2113,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 312 x 80, 8-bit colormap, non-interlaced","md5":"958db84d3f76b7e37e530962c713e7cb","sha1":"d1927f75dd63432317a750d6fe6519b1aef65442","sha256":"141a90b7df2cc92316c3345698e48146dfbff0135a07ebf09d479d8c3870ffbd","sha512":"e322c475155a72e5c8c172a006b9b6d40038ed456a1a90a070c8ee6871163c92d9bdcc86d13606b373af255763d136b5380faea82769f14584caa6889be861a3","ssdeep":"","tlshash":"d7413cda12682c3980a8ea9f5321327a5e714e1e780508141ee8a1cb3c7cf6794c05aa","first_seen":"2025-10-24T16:25:15.084508Z","last_seen":"2026-05-23T01:27:02.497216Z","times_seen":15,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/bm_plugins.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/js/prod/bm_plugins.min.js?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5085\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3af4-13dd\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:48:20 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UB7jixsNdyj4wxCpf6uwZ4SWO%2FNPjtXrv7uKLqave4MjtSITFER%2FdJrWNfEF5rYB5eJZMC2GVXs8FOesA08cerDtAxkB6W%2Fj6Ov85vGf\"}]}\r\ncf-ray: 9d46f2e209b03483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5085,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5085), with no line terminators","md5":"3bdfb886cbc0effab973ab84d822b4b0","sha1":"f8d3c5a6047aaff45df46c8b6a6aa2348574f9fd","sha256":"5d33f8f92398caa6341140a9110c3c488d59787c04971e90ddcc8fc45d3b5a08","sha512":"9a2b734b98931d5055cddb25f8332f302d4b448d846db9cdd54c6fbc7c28d4ac061c11c44a3647355f2a0d7b361d13f5eab77aa408211e8dca34b5083b2a223a","ssdeep":"48:yCkaHk7hoDSV7gDm7K1ihKgYKZ0QZR5vL7PksoTb9F3pp3SW8wpTJwOg9iuWHGKd:seiuKxX+bb5kqApfWmK0lASHFbp8","tlshash":"66a1460db695a67d01ff55be210f231036312de8d8498cbc7ca09dd516e9dca2b22bed","first_seen":"2025-12-23T03:56:37.026085Z","last_seen":"2026-06-02T05:08:34.419785Z","times_seen":106,"resource_available":true,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/widget_info_v2?locales=en-US,en-US\u0026platform=web","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:21.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/widget_info_v2?locales=en-US,en-US\u0026platform=web HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:21 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncf-ray: 9d46f2f98c955fac-OSL\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-xss-protection: 1; mode=block\r\nx-request-id: d7d1ef48-22b6-4a62-bac5-cdeb846c6a70\r\ncontent-encoding: gzip\r\nvary: accept-encoding\r\nx-server: h56rk\r\nx-status: MISS\r\nx-envoy-upstream-service-time: 82\r\nx-trace-id: 00-6aa3f303d3055d8057356ad655056f3f-affe13ea6b25bd92-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 92\r\nx-fw-ratelimiting-managed: true\r\nx-ratelimit-total: 1000\r\nx-ratelimit-remaining: 997\r\nx-ratelimit-used-currentrequest: 1\r\nx-ratelimit-limit: 1000\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15142,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"1490ebdda022607cc52870ea5f6f8fb2","sha1":"df3860d8ef010fb719a3a656cb565747aab7bc9d","sha256":"22e292d170a2a8df8268aac5b6c069deb8dea4e5d9ff2b54a14ac1f68b220192","sha512":"99a794c5072a4a7651dbde1c56a1d7a39227504a982169bf1a30a579739d2896893a339c0f2089fc80dbbe5663f7c48c8a73a72e421fa2e0a88f8c3847a9c256","ssdeep":"384:gJUmnP97kTHJS7benx+9QVvAhXp99QC9Pqip:gJUmnP9wQQhA59d97p","tlshash":"4962f1a8c91c6cfe574361c7f18739060f78122aebd4b514e8ad861ceaf79980371b67","first_seen":"2026-02-27T10:20:55.892455Z","last_seen":"2026-02-27T10:20:55.892455Z","times_seen":1,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.584b8637d585f6f10498.css","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/chunk.584b8637d585f6f10498.css HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nlast-modified: Tue, 17 Feb 2026 08:14:56 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"e87fc3bbbfcda02a93a2c8328591e26f\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: pi8dNBAAfOvAZ_DDP0cI7tZg4XPk0S_pR6fBpLGIepsCQR379Tt-Hw==\r\nage: 75\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":258286,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"998e7632ee0310c2b5f4de75a95cda60","sha1":"a4539d15fb940ac5394b813ae0c5b63d439234bc","sha256":"e8f128f4f89bb1f7333b62ec3f2865324b616d67982fe176ea4c60c47a898277","sha512":"c69914ebfdb9a53f5db72707004355e6de68f21d86ed60c3054848fd35c917d9d930b2c19904142f5dfc3b332a92450aab1129fe456951c7a28f6fbcd865a44d","ssdeep":"768:B5oTyBrIUtikus7W/SZYsALhmN+m+12BJldHsoKG7TtLOr5eildp70lF4EPodQ8X:BBrIUfGRm+m+4OLO6hNCE1IvHRS4pXW","tlshash":"2b44b4b0c4f21426227786b399c4353c1935c222e64325feb2f25b6f96dd6ca71a3778","first_seen":"2026-02-20T01:51:23.666498Z","last_seen":"2026-03-05T06:08:05.728853Z","times_seen":6,"resource_available":false,"data":null}},"time_used":626,"timings":{"blocked":295,"dns":12,"connect":16,"send":0,"wait":31,"receive":0,"ssl":266},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.2dce00063c7e7cfdcba4.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:20.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/chunk.2dce00063c7e7cfdcba4.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:14:53 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"1622f2cd03b613465b26ff76dacae90e\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: rh968rMVdiuzV_lopGMgFDYP0Bf2Ii4-RgnAvNLeq4nS-Sp3KbVQcA==\r\nage: 52\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":5358,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5358), with no line terminators","md5":"49e10e71ecaa58b6ffb170f937c7c202","sha1":"53b1fd56d87ba4b9b318064f8b6ccb149c8dbbe7","sha256":"eb05202e2c708c4bc43d1305fe6f519273fa685de52a4ecd35199c1e43c12a25","sha512":"24316fd8c709b4a1a70d2e4c801136aba6a193dbeb7d81be0036f6d0b28b0fc0b4e080285782a59dffda38901faefafdd88707e7041073d66cd25fea38f6354f","ssdeep":"96:alG4CLrVFrZoPiYpiFR7VKM7vZycOLGQ4:cGnrVJZCisiFRJyGQ4","tlshash":"0fb1e784b2d0fed141f3545ed42b150170393e9e9549a598fabeecd92e2da863133f38","first_seen":"2025-10-24T16:25:15.11917Z","last_seen":"2026-02-27T10:22:12.326422Z","times_seen":31,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/shared/web-tools/assets/dest/assets.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/shared/web-tools/assets/dest/assets.min.js?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 159577\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-26f59\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wq8PmwAKyEZVsOJt51Gj4Ks6hS%2Bz%2Bh4vs9CqTITJI4cvG2ASIJBMxd2kzoqV2ZZkngIhHpaN3J7YYDjZcAP05V808nns07jdg6Q3Uyje\"}]}\r\ncf-ray: 9d46f2e219b33483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":159577,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4cf7697e78f1f238f4bf996304e9d997","sha1":"f7f15daf47966632deed5fb84c4b32fbaa99e7d9","sha256":"89879f081d4aec2897f411261ede3fe959b179b480ab5d7bf5455fffd7e74854","sha512":"2fec35d5473b1ccfac48a84cf6f0b7ea1233e771b12fac89be906f5f5a46f126a413875ac3dd04a271a866241485f8bb5b517b051cdfa72d5e4b8f2ad5b95bf6","ssdeep":"3072:Z+9Ed9ny4iicj014nscTFXWTulNieePiT:ZR7n8icj014saNNieePiT","tlshash":"0cf30a49f220326502e322f1515f850a73b7653c7516c1fcb6a8d9e568bccc8a1abff9","first_seen":"2025-06-25T12:14:34.205708Z","last_seen":"2026-06-07T05:04:09.24556Z","times_seen":957,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":116,"receive":126,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2024/09/favicon.png","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2024/09/favicon.png HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 2677\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"670684db-a75\"\r\nexpires: Sat, 28 Mar 2026 08:51:50 GMT\r\nlast-modified: Wed, 09 Oct 2024 13:27:55 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PVsA2NyKCX%2BrVw4BILdXNR8bJzBEFtwsRhebaoSfJ6FnqD3NK99lSvKFcPtIXZmImvJdZMPGZatYVEWdHBs7LoPTS3AyJs1I4xjFjztU\"}]}\r\ncf-ray: 9d46f2e76e8f3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2677,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit colormap, non-interlaced","md5":"a3ac29a284749280a95335c748e5ed73","sha1":"d4202283c6eea10cade0e62a8120aefde3b4152f","sha256":"7f23678e5a30f9abf7643e045dc2a8a544065c91aefe43da1ea14d98cbf59217","sha512":"e1c09926717810656b35b9d0b2422968783c0f84ddfd06186c5c9da6d6d79eee9948e639ac23c1abe89efd8d9c8c56a93ddb63af0fcb4f7a501b7216749e6d7a","ssdeep":"","tlshash":"7c515d06ee435d56d2170cfdefbb243ca4e3086b70348c16470de59cc5d6a8584cb19b","first_seen":"2025-10-24T16:25:15.104259Z","last_seen":"2026-05-23T01:27:02.450658Z","times_seen":17,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/js/widget.js","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /js/widget.js HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9d46f2e8b8ea5fac-OSL\r\nlast-modified: Tue, 17 Feb 2026 08:15:33 GMT\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: public, max-age=900\r\nx-server: 6n8gw\r\ncontent-encoding: gzip\r\nx-envoy-upstream-service-time: 3\r\nx-trace-id: 00-19375d8f0e25377603ca05cb1c6aace5-68f582afc652f58f-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://edge-admin.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 5\r\nx-fw-ratelimiting-managed: false\r\nx-request-id: 5c4a6d09-af97-4871-b310-a787cef118c9\r\ncf-cache-status: HIT\r\nexpires: Fri, 27 Feb 2026 10:35:18 GMT\r\nset-cookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U; path=/; expires=Fri, 27-Feb-26 10:50:18 GMT; domain=.freshchat.com; HttpOnly; Secure; SameSite=None\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":69900,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"c74d72e0470bb808d2d168961ec397a9","sha1":"9a8eaae9bbbb24d4d8d9c2b484ddab2e670e74b6","sha256":"1c0b1637be28d429e4e96f47330b1ffd386663a583ce04f20162092512ba38f0","sha512":"72ac9da2d447ef3e31c702ccadc9c52e8b0dcdd80de876d7f126231ece2bfff38a10c479e720d2838eea936f24d9684979b7aa33b39c322e5a182f028e8f96ec","ssdeep":"768:4N3uaJhHtCt6HeqVNONkfbVEPFqKjDH1FSi3X4Gl8vL6L:O3VOCDON6VEdqKjDVEi3XFv","tlshash":"5563185eb282743505f3d465a2af32067132358aa426c8107a6edde96f60ecf5233f7d","first_seen":"2026-02-20T01:51:23.670394Z","last_seen":"2026-03-05T06:08:05.725687Z","times_seen":6,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":41,"dns":26,"connect":1,"send":0,"wait":108,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/user/f970b95c-5eeb-483b-f2fc-d4ed607574bb/activity?widgetInfoTraceId=b738b91a-7c62-4764-8b1d-0a41bc3b56ae","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:21.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"PUT /app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/user/f970b95c-5eeb-483b-f2fc-d4ed607574bb/activity?widgetInfoTraceId=b738b91a-7c62-4764-8b1d-0a41bc3b56ae HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"PUT"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:22 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 17\r\ncf-ray: 9d46f2fc89865fac-OSL\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-xss-protection: 1; mode=block\r\nx-request-id: 4efdc79a-bbc8-45b0-97d5-dbc1b2644b1d\r\nx-server: h56rk\r\nx-envoy-upstream-service-time: 6\r\nx-trace-id: 00-8474ebdce719fd71226d92181ad13910-fb95e8ef1ebd4af9-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 15\r\nx-fw-ratelimiting-managed: true\r\nx-ratelimit-total: 1000\r\nx-ratelimit-remaining: 996\r\nx-ratelimit-used-currentrequest: 1\r\nx-ratelimit-limit: 1000\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"5b64e8b89092b2e3dfd448b10700627f","sha1":"484b3032619fa1acd135d114565b0a5166281c22","sha256":"f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4","sha512":"61c86d8f7c4c3e60739191712080650f22caa78427e5bf9215ebc16ed8ed305cb21ab3099459fc431caf9d881ce5ea7662fec4e6b9963ba54b56d2c50bbe3142","ssdeep":"","tlshash":"46600003000000f300f03000033c3c3030f00000c000003cc00c300ccf0030030c300c","first_seen":"2023-04-05T09:34:46Z","last_seen":"2026-06-07T20:42:53.165543Z","times_seen":70411,"resource_available":false,"data":null}},"time_used":405,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":405,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/user/f970b95c-5eeb-483b-f2fc-d4ed607574bb","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:20.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/user/f970b95c-5eeb-483b-f2fc-d4ed607574bb HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:21 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-xss-protection: 1; mode=block\r\nx-request-id: 0b4e2b59-b60a-4281-bdda-52449ed5c066\r\nx-server: hw6dk\r\nx-envoy-upstream-service-time: 13\r\nx-trace-id: 00-bbd44732b26230e6384b675d675fa76c-ddddaf334e9b0b78-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 18\r\nx-fw-ratelimiting-managed: true\r\nx-ratelimit-total: 1000\r\nx-ratelimit-remaining: 998\r\nx-ratelimit-used-currentrequest: 1\r\nx-ratelimit-limit: 1000\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 9d46f2f6cfec5fac-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":63,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"986b346dcc5bc15f4f28a5878eb3bd54","sha1":"0576953cc35e7ddfad56bf9e0ca4c35411c62aea","sha256":"02a00e3ef645e0351f654665d42b03388e6a73e0ab4f853c8904faecf322b229","sha512":"6d1fd24e5f55b63034ae72bfd9319cfb5840e6e5566c03effbfe28da04dddd605a66b6b7a46193e02547c216cfdec63cc801e78806c550f8038b9dcff1cdf350","ssdeep":"","tlshash":"b6a0024d018e89cf2a447351799c341121e192c064b0a114c708d876a7810d8189320a","first_seen":"2023-04-05T13:53:36Z","last_seen":"2026-06-07T05:21:04.594914Z","times_seen":6169,"resource_available":false,"data":null}},"time_used":434,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":434,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2015/05/Elevate.jpg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2015/05/Elevate.jpg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/homepage.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 137944\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 96473\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"670684ea-21ad8\"\r\nexpires: Sat, 28 Mar 2026 07:32:23 GMT\r\nlast-modified: Wed, 09 Oct 2024 13:28:10 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mwN1ifvJprQdeJD0YUerCBeZ%2FsU2VDjtKHBgKqYaHY7y7MRNXaJx1lfy3Ox82Lm3gvhhzMsEoAvMSotu%2FScF5gjYSynEtXroyiaHtfvi\"}]}\r\ncf-ray: 9d46f2e589ed3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":137944,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3840x1456, components 3","md5":"b2ece6e2a8fdfa2cb31f74bbecbea22a","sha1":"c5f6d73b48f1fdd4f4056712323c1cf8d5ce4597","sha256":"d20fbaa14fa0f150090cada026ab2400a9d7898d71a564fe113edc6fb0eb13ac","sha512":"8ba1cb9789a7310850f5f501aef58cdcee20c55df1c61d77eafe3fa0e3ebec72a0d4b949b9b5f1c0509025402c856c1285c2554f51e2f3c9b520d98618fdea24","ssdeep":"3072:pK2KT/p9fmIli8gT8K+q8b7XgDevBCGUvV:pSU7gkOgD6oj9","tlshash":"15d3f173ab04809bd44817b4e9e35b153fb3817eeb58914ada9e03304adb7197c6c7e2","first_seen":"2025-10-24T16:25:15.076038Z","last_seen":"2026-05-23T01:27:02.528489Z","times_seen":14,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:19.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:19 GMT\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nlast-modified: Tue, 17 Feb 2026 08:15:33 GMT\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0\r\nx-server: hvvgg\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nx-envoy-upstream-service-time: 1\r\nx-trace-id: 00-3422b98f9c4842b2dcae66f733ea22a1-81d1d13083f0a3b7-01\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 5\r\nx-fw-ratelimiting-managed: false\r\nx-request-id: 24d7edbc-7a2b-9faa-9212-69c6ca2f3136\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nserver: cloudflare\r\ncf-ray: 9d46f2ef1b195fac-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4995,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (3161)","md5":"8137e306cd9aa9b8c23aa15b9447353b","sha1":"1113f3d31c63fddbf3b9eeb4487acd561079095f","sha256":"cacb2af49a8d7a62d9104939ab0f3bf7d628701a4ec1a441df7cc85a88cf0bc3","sha512":"183353971fd4730d01061d39d6d04366fc286168d863d5f27c5f613cb15b410cbef985e7084a9e4f1cc231fc33915a3b4f6e8e6321f914d61280375bff5969f2","ssdeep":"96:xNypry9NoJ/RH9ZMhU+LXYvsHMcsMkOILO9wQUbvMpLN+b9NohpULGCPDYmxLIW5:vypry9qZH9ZMhlLXYvsX9kVLEUbvML+L","tlshash":"a7a164c1a5b82c0c2d237c13ca4d375a82151e1bf848f0f9d0ac5cb8266b5fa6357e7a","first_seen":"2026-02-20T01:51:23.652415Z","last_seen":"2026-03-05T06:08:05.772673Z","times_seen":6,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/fd-messaging.51f15242bcc420927211.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/fd-messaging.51f15242bcc420927211.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:15:05 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"b1855cb5d4105d074cf0ff46d0f3ac56\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: h_5eieSD4oOBda4S1ITQBtuaTFnOPVPjalRVGIzDekJLw6cc7_hvbw==\r\nage: 33\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":798041,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"ca853c096d062a7680b9d7ebcfc52fc3","sha1":"5e86bcd19ae157fce0bd99052bb8ff58f18a6ebc","sha256":"dc7d6543e7c9daac65dcdc18190eb740b253bb87a46e10482e9211917a7fb20b","sha512":"80163b69518f0951b40f36e66fd4d0917b3a6183c8b9a0ade378c64668ad03629a9aa4bcc1a6e5349a884cb628449958cb466710d2aedc2d6b06efcef0878ea4","ssdeep":"3072:jqIiedSmJUMNKu2RSDcbEizS4E5Lk+VAM1+a6qjvBpGTMwUoRcFIzifdY0sTsHtM:jqC1i9EAo+a6hY1giK0sTstw4AfyTxXy","tlshash":"de05e9c9f1d1f8a516d394a994b72406a239390a13089098f5fddcf66f6dace2037f39","first_seen":"2026-02-20T01:51:23.614438Z","last_seen":"2026-02-27T10:22:12.350268Z","times_seen":5,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":167,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-27T10:20:16.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 27 Feb 2026 10:20:16 GMT\r\ncontent-length: 0\r\nlocation: /en/\r\nserver: cloudflare\r\nset-cookie: client-gateway-vestofx-cookie=5d276c05177260a5; Path=/; HttpOnly; Secure; SameSite=Lax\r\nx-redirect-by: ClientGateway\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=9,cfOrigin;dur=73\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GegS7X0f9RFfWkM42Vy6YtVbeK724FygfK9HgqGAEI%2BLqlP02tPqFZZL2NuUY2cDMbEpJAgV6VIbHfpLnKGJajdvvDxncj6nCcm859FH\"}]}\r\ncf-ray: 9d46f2dc3bd43483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67345,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":50,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/homepage.min.css?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/vestofx/css/homepage.min.css?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 39340\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3b20-99ac\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:49:04 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aD4wWMpZ1GrFgydYDYK%2BHlQ9xk26fSknH75w%2FZj0PZvdlDDjmoFKw2lLeoyGJZak8oFeV%2Bae3jwkzJ2mkSSXbUzXKhxIurrDzaJkOryN\"}]}\r\ncf-ray: 9d46f2e1f98e3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":39340,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (39144)","md5":"77f6bc7c369c0cf80bd671f418d0abf7","sha1":"bc452ffded36b61625512b29117073ad5cf4e4c3","sha256":"e204ab7890f3cab3afbbea74d034ba28648893d6bfce365f62084f525836d06b","sha512":"35c315f18a3f6d17b87cef2e1b7f81a963f226bb4d1b40bc26d11dc39b353e467b397ed9a15deb3d96326e092b4e09ac022c1f6e91ea20ceb8bcafbcef05c47c","ssdeep":"768:31KSqQinNsBxVGCFWqcHmlM+9Qs1Mmv7Uhh:32DnNsMkcHiM+9QyyL","tlshash":"ee03ebc527e0574cb4578f25ff222ca8371ea0ba6f5703dc9b5b5b24cb871da2602d68","first_seen":"2025-12-25T19:13:06.573794Z","last_seen":"2026-02-27T10:22:12.347673Z","times_seen":7,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/js/prod/all.min.js?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/js/prod/all.min.js?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 289374\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3af9-46a5e\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:48:25 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yWbLDoYUgiriEHoph9YvqgX0ge6JFtd97AkjOMap6vQaGfRUc7sIVlUAnpb2CmD3%2FLgmEISASiQRm9HX%2Bb1HJC1GnMOZwZ%2FraID6p%2BGv\"}]}\r\ncf-ray: 9d46f2e209ac3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":289374,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (46676)","md5":"2667da957f4993360a3a9506c21e92fb","sha1":"1713a59fc818b36b0febfd1ee5a2073dd7059785","sha256":"a065c6438575f102aaaf0ac0d4d363e5c541db7231538d0b32e710e0cac6dc5f","sha512":"1a9989f0ff632320ce55c8f1688c4643cf5f86b273f14b9b3bb73b5bf362cb41390067eddfc9cf16446050d81e8b82621936aec89e8268ca451bdfc7e5f99542","ssdeep":"3072:si6qHDiiKFd+sEj7ZNhI9MexF+LMM2/Kiazjp:sinDdKChNIO","tlshash":"ca54f989b251722106eb71f9103f450eb336a93ca50784a8b1a9dad52c7cc4e61b7fbd","first_seen":"2025-12-23T03:56:37.016748Z","last_seen":"2026-04-12T05:08:55.40757Z","times_seen":11,"resource_available":true,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":163,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/default/fonts/inter/Inter-Medium.ttf","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/default/fonts/inter/Inter-Medium.ttf HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 292140\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 94073\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-4752c\"\r\nexpires: Sat, 28 Mar 2026 08:12:24 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z7NJ50dO2QXuh4qfObOTNCBm%2F9zly8Ei4LiN0PQqOceBEkXnB0uOB71XjZLypKlzoM2TBAilAJ%2BYGYhwILMONm%2FxQ0HejmAw7i6f1MiC\"}]}\r\ncf-ray: 9d46f2e49f9e3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":292140,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 32 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)Inter MediumRegular3.012","md5":"5ff1f2a9a78730d7d0c309320ff3c9c7","sha1":"471c09743f2ae171051f13575fa99b3a0700ca77","sha256":"5249ae5f8ddfded34c98c6e3cf09e08f178f234e1bfa28a68f98f6f957628418","sha512":"a438689e56fec53737babd81aac0f6695e5fa55a074b2c76be2c2c955f7947dff7bda566cb7d48951acc73e2ecb956cd4dd7fe145083a8d2c52a77727a9b4fa7","ssdeep":"3072:KtoAXXHGxFuEg+4PtzG4/1Cr5gVtDA1EFiEvG1eCO5eQtLL3szzSNfS8Xvz9FmRv:0pXimPNXyEiO/skTvG","tlshash":"f5545c03f317c32dc9172d3987e2dba072a3bc916a16e14af7643aa5ca8b1f45e470d5","first_seen":"2023-05-03T21:39:05Z","last_seen":"2026-06-07T05:04:09.180981Z","times_seen":1190,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":151,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2015/05/Hero.jpg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2015/05/Hero.jpg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/homepage.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 271409\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"670684e9-42431\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Wed, 09 Oct 2024 13:28:09 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yu%2BZ2M%2BASZ2dTWFEgg8NDbXYilz%2FjF9b6vAzYtdYO1oHaT4M6uhwhdfFQv0UgGztfIosq2xDN%2BoCpNHBmkCVMTmCGlrgecQmy1dfBh0m\"}]}\r\ncf-ray: 9d46f2e589e33483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":271409,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3840x1528, components 3","md5":"1fa892f80f8c4adba9aa4e5878d2329f","sha1":"01eea562a99ddf7dee854626ffc7da2b2508b904","sha256":"d033910e1c92fcf45692be8029a1acbfcdd98fd6a4fa269e7040ee3bf5bafb94","sha512":"15228216a7a0a9670eec99076f13b1728d5772a2cf09eb5e48ba96553419a779a29ac4412c431a020f64c5cc8adb5d1cdfd0123a94af2be4959caf02a087702f","ssdeep":"6144:ED5kPfHdKZqQI8+LTOiDlCzR7r+EypRY15Jaj:E8f9K3IBnOAlCzkEyM1uj","tlshash":"704423170f261046e6977a3adb792bb4504c9c2bb227c5be76d8b339ff51ea03453188","first_seen":"2025-10-24T16:25:15.106903Z","last_seen":"2026-05-23T01:27:02.412481Z","times_seen":14,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":172,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/default/fonts/inter/Inter-Bold.ttf","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/default/fonts/inter/Inter-Bold.ttf HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 293448\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 94073\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-47a48\"\r\nexpires: Sat, 28 Mar 2026 08:12:24 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TeFqThRhRvDz%2Bi%2B9v5SlDjQ04r3Z4wk3TkgYlF7ijc5knSkbnjZkAri5T3FY%2BZsbcrpn9q9ZsgWUL68KBMPN8WIRIPE6LK4iRFMBQYTN\"}]}\r\ncf-ray: 9d46f2e59a163483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":293448,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 30 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)InterBold3.012;RSMS;Inte","md5":"91e5aee8f44952c0c14475c910c89bb8","sha1":"47bb768bc0dce7072a0c11562c76aec42edd1b6a","sha256":"d597e753e78d8bf9db34c13343146545fb3be5a1c99a175bc381fe3f6f787f31","sha512":"e3048be0fa2131da0c81af01744fb43962c6daacd5a7e8c2ac223c5e97119a7bd181717b36f4e7b8028885434dae419cbf9d9638f1fc71670bded0eb15441b3e","ssdeep":"3072:smawQkE3zHk/P6tJ1kqDXyVK9GD2lr05kPeA22955eQtLv3szzSP6S8Xvz9FWRHN:sRzjJjDXys9Gaes2295Ts73oiwm1G","tlshash":"3c546b13f313c32dc9172d3a8792c7a0b267bc822b17e11ab7643aa5c95b1f45e5b1c9","first_seen":"2023-05-03T21:39:04Z","last_seen":"2026-06-07T05:04:09.216413Z","times_seen":1138,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":152,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/config_iframe.html?host=https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\u0026token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026origin=https://www.vestofx.net","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /widget/config_iframe.html?host=https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\u0026token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026origin=https://www.vestofx.net HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:19 GMT\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nlast-modified: Tue, 17 Feb 2026 08:15:33 GMT\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0\r\nx-server: hvvgg\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nx-envoy-upstream-service-time: 3\r\nx-trace-id: 00-8f4044a1db8e5e205e50273b802124af-8af84dc5f519c047-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 6\r\nx-fw-ratelimiting-managed: false\r\nx-request-id: 66a0a134-1ab0-4f35-bfd7-083d2716914a\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nserver: cloudflare\r\ncf-ray: 9d46f2e9aaa75fac-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":701,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"daf95fa92dea87122fd9f9ce2014d935","sha1":"b2c3cf27406f26cfa0d497c869426aae8012a24e","sha256":"bae1f759fd4cd9055a14e9384f474c8e53358ea04bffda92bde1e11b0599c61c","sha512":"32d4c8e692be9f2ccc6bf0c5d7c69e33835184f00ae6607c5ffefca2dca59e6e109845dbe3704d06dc648c750b1838d94913cda580c309976563ae5761d7d42a","ssdeep":"","tlshash":"1501a29d9ce3924714e3a6c89f46a60b5c24185e7514ce803e5c7a904f6fecdb42f705","first_seen":"2023-04-05T13:53:36Z","last_seen":"2026-06-07T06:50:49.415148Z","times_seen":8255,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript\r\nexpires: Fri, 27 Feb 2026 11:08:17 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NED7cs0AOqing31HU%2Fc508Hb6fobYi9CAEJUxd0AYAVh5qQuRXrwqDxdGxMxSeunvMuaenhOt7AziZHKsXlndGjbq09FHYmvdyJHTpXU\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9d46f2e209a33483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T20:32:05.992799Z","times_seen":363381,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rts-static-prod.freshworksapi.com/uae/rts-min.js","fqdn":"rts-static-prod.freshworksapi.com","domain":"freshworksapi.com","tld":"com"},"ip":{"addr":"108.157.214.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:20.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshworksapi.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Mon, 05 Jan 2026 00:00:00 GMT","end":"Mon, 01 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"27:E1:E8:8C:53:77:87:BA:A8:71:24:CD:1A:20:BD:50:95:DC:9E:27","sha256":"4F:FA:67:34:7C:DE:5F:61:6D:81:7E:D5:04:E9:C0:FB:D4:26:83:AE:32:E7:1D:FB:31:AA:FA:35:30:AF:E0:15"}}},"request":{"raw":"GET /uae/rts-min.js HTTP/1.1\r\nHost: rts-static-prod.freshworksapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 20 Feb 2025 10:15:03 GMT\r\ncontent-encoding: gzip\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: tPEySEcevkOiZlX7S9D6WnwFYVMkWEwv\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: no-cache\r\netag: W/\"c71f521d3ce3267bb76641297d53a10f\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 59202edf772149f3e7805f2a4994d252.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: AAV4cNu9mTfF1j-ag1fuJOYLpOdFdnhKU-NSChwCRqoqiVHMbE_0nQ==\r\nage: 4\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":87538,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"c71f521d3ce3267bb76641297d53a10f","sha1":"41e594a25f7c843e88773d13912c23319d9aa9df","sha256":"2b3e5b06631b287a91feb8dc6bb46b832239c2acb445f44e96f2761351167839","sha512":"4d729287f20334c83af5d55ec668f59f8b0826eaa597d393079aa94f024836b13c67a22f9bdd56677c5d5117cb39d97c63e4ce8b44a33ddf9a0aa4be031f6684","ssdeep":"1536:7BYvtXLd9SMHuLPC9Wv5TTk/CG2xF0Xy1cveuGEQU5:F4dnuOgTTk/CG2hcvB5","tlshash":"a78319c9b9a130a153f3b261447f220b623b582c5909806cb754d9f66c7eacdb317fb9","first_seen":"2025-02-21T18:31:36.5889Z","last_seen":"2026-03-10T05:59:02.700937Z","times_seen":4670,"resource_available":true,"data":null}},"time_used":118,"timings":{"blocked":43,"dns":19,"connect":8,"send":0,"wait":31,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/sitepress-multilingual-cms/dist/css/blocks/styles.css?ver=4.6.15","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/plugins/sitepress-multilingual-cms/dist/css/blocks/styles.css?ver=4.6.15 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 59240\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-e768\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8YBNU4b1Fr%2F8BFekcH9qibtU19aekTg3TvyXG5f1v4BoWoHsFqttNPRSD053nuHWZvV3TXaYfo189OKRauOIEHNWkXy9LGqxuiFtso0u\"}]}\r\ncf-ray: 9d46f2e1f9903483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59240,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (18820)","md5":"4940e4ae72b6124a6eab7e97fc8df1f4","sha1":"20986cbb9965f176b6c6ccf1adefcf783f9e9e9a","sha256":"58c855e7eb9b917e71e6b733e73c542c25bacb986f3ba7df2be1570200312135","sha512":"c7f03dd29ca7bd8ea746477dc3e234fd860b21cc2d6823dbfa48d2bbb28f8bcd3256394af849b2a5ba2ddb2074d7d9f5bf7053eae621efe39b05dca162517895","ssdeep":"768:qu4BXbuqfvcFoc1qmjJVsDzI3u+uu4BXbuqfvcFD:qXdc1qmjJVsDzI3u+uXY","tlshash":"7643502197605dbcd4bf8b331ee079789023d921c90b67d9e8e2f358a6cf54506b3b1a","first_seen":"2023-06-28T02:16:25Z","last_seen":"2026-06-07T15:54:29.352288Z","times_seen":6718,"resource_available":false,"data":null}},"time_used":172,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/default/fonts/icomoon/fonts/icomoon.ttf?d636a2","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/default/fonts/icomoon/fonts/icomoon.ttf?d636a2 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 55652\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 94073\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-d964\"\r\nexpires: Sat, 28 Mar 2026 08:12:24 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wy5Z2m1662XoDKkpiwFuuThfDM59X5ExOJEJe7sZkrtLRxFpHa9C%2B7h0GBZzWp8et21%2F%2Bj0bGh2Smdya2KV1MXbhN0dFONcgfWISNXvv\"}]}\r\ncf-ray: 9d46f2e49fb13483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":55652,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 14 names, Macintosh, type 1 string, icomoon    ","md5":"538c22ed4455f014b3133b62327b895c","sha1":"820341081e853a8fd8249d60613c8db4e5261ae5","sha256":"bf7e33ec859d3857c120dedbcfbfe85b67b339b0e1876b16f78067f27137035c","sha512":"817c64668f0413b23f9348d112b62064355c4dbb5394c23434d2ae4463fa3ae6f4c56f6e7e3cd0e2219d0858a70cb2ac2b6c8bbeb972c54cfd2e8a6ab1bb71ca","ssdeep":"1536:jws8OfhFXCI7pKjjjjjCcaHckQ6FVHY00WrCiKSZYcO1IpCK9:ZThFXr7Hc6c+Y00WrCyO1LK9","tlshash":"d1436c0b874acfafd855dafa086691321ce1dd02837fd256d8456c85b0295fc8d38baf","first_seen":"2025-03-08T06:00:53.603946Z","last_seen":"2026-06-07T05:04:09.205407Z","times_seen":1036,"resource_available":false,"data":null}},"time_used":172,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":69,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2019/09/Icon-Accounts-01.svg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2019/09/Icon-Accounts-01.svg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2332\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"66e2ad6e-91c\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 12 Sep 2024 08:59:26 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Q8MaivRfIkX80mZkDkka7tqTSFiYuEfr7oJ4KANx%2FLc%2FlPFY5Wy3ncKXHIHjBxVe%2F0EpjYoeecpEAD0eZi7eK6Dgj9kyhZNJfT%2Bug%2BLS\"}]}\r\ncf-ray: 9d46f2e5ba5e3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2332,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f74798ca4f9f6920c5e2c3fda2b8e939","sha1":"cb775d13f2c469a81931d5e96097774600cc098b","sha256":"fe5634a5698c7a7a07293278e246d9268979b3cbce2e2db547006456f637d396","sha512":"41d4ba1156b367cba8bd81f0877d123c64df8923bb8eed188dafbc3ec80be81acc5299f3568c2c40ada6dc357adba33d13f729158cb6b53b94c57cc801e9eb74","ssdeep":"","tlshash":"1541887b03069796ae9c5728b5541049f6e0d4c7f8a4e1c0b76b280aecd90f7bd5d3a8","first_seen":"2025-06-25T12:14:34.184742Z","last_seen":"2026-06-07T05:04:09.200824Z","times_seen":741,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/vendor.28b05fd2eddc1ffa507fea38763ed22e.css","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/vendor.28b05fd2eddc1ffa507fea38763ed22e.css HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nlast-modified: Tue, 17 Feb 2026 08:15:13 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"7457f154ba7e0bfcffd45dc3441cee32\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: HiTuMVHaA11rW9IxBk_gqSokWgzpGWTaZp4gsaaB9Me-_jMRKFK4oA==\r\nage: 135\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":24116,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (24116), with no line terminators","md5":"28b05fd2eddc1ffa507fea38763ed22e","sha1":"9eb0506e358e257020e86268a75cfdcd1913ce8d","sha256":"2cb97feb2c238ed396a0b5ce039627d066145b364e6ce3a84769957807f7ec12","sha512":"1c2ba55c72c07a43036ebf212ebd78e38e764e4a633fc7f1a9fdeb8cf5d68686f8939d0a4b2878908edbeb9c22ca8bf967c80100a40dc00e3b12ff9072dde358","ssdeep":"192:6wQLOh/TVc6jU+4v7fix43obCfCfI5SsyDcuIzA5Z4ITzkD4DS:6wQihK6jU+4vTixaACag5S22jET","tlshash":"c0b2c52709b3242af537d5e261708eb5362b8d07f4264f7a85197e7ca3821d819f3fa1","first_seen":"2025-12-03T11:19:31.309122Z","last_seen":"2026-06-07T17:07:55.288338Z","times_seen":3492,"resource_available":false,"data":null}},"time_used":609,"timings":{"blocked":287,"dns":17,"connect":8,"send":0,"wait":31,"receive":0,"ssl":263},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/chunk.a657eeb177d99adfb7df.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:20.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/chunk.a657eeb177d99adfb7df.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:15:00 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"f7c1c1971b63d8a2c09ab643539bd97c\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: CVnxEr3RXeM621KzB6lTSJVlADT3yTtngBVh7bAEcUCTaXp-ipyXcw==\r\nage: 223\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":11748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11742), with no line terminators","md5":"174adb30925fc4179f9d4205dec1ed7a","sha1":"d76daf15c30b97f586256a34e327346a84c7217e","sha256":"f9ba83d10aa734dc1248f9987a7267f70f6f0eea9aab7b4cd98d12d4b71ba96d","sha512":"f885e10df14807bd8a5adcba6877c75406cf7084e85b9f79867cc25b94b773bc801215c31409a29812ff0e225d8b1d8b4204f613816abb999bf2d130d3aab2a3","ssdeep":"192:p0DCtRVvQIcim/NFPWy3UFfgYJArPpQ3bSU9XHZDjHU/PImvtZGqR:iQRZcNoyE9X2On99jFmvtoqR","tlshash":"d232d85ea5511e7a0b9752e634ca3e6379f4006513c16aa4f8ce841c03e9fcdb25fb8d","first_seen":"2026-01-27T16:56:59.00608Z","last_seen":"2026-06-07T17:07:55.486572Z","times_seen":2913,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/faq/category?platform=web\u0026locales=en-US%2Cen-US\u0026since=\u0026lastLocaleId=","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:21.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /app/services/app/webchat/d54d92e7-527c-4af0-acac-b5f68d7271d0/faq/category?platform=web\u0026locales=en-US%2Cen-US\u0026since=\u0026lastLocaleId= HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:22 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncf-ray: 9d46f2fcfa565fac-OSL\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\ncontent-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' * https://cloudflareinsights.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com https://ajax.cloudflare.com https://static.cloudflareinsights.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-xss-protection: 1; mode=block\r\nx-request-id: ea2642ea-b5fb-49f4-ba0a-7c86d7d893a7\r\ncontent-encoding: gzip\r\nvary: accept-encoding\r\nx-server: hw6dk\r\nx-envoy-upstream-service-time: 20\r\nx-trace-id: 00-ed86a834f57932514ef7ddd9383de1f4-e5cfbb83fdc78001-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 31\r\nx-fw-ratelimiting-managed: true\r\nx-ratelimit-total: 1000\r\nx-ratelimit-remaining: 995\r\nx-ratelimit-used-currentrequest: 1\r\nx-ratelimit-limit: 1000\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3329,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"7935915c4f484957d90ff87c5d7e0fd6","sha1":"d514453885603c5dbd35f31edb1a37e4cff4e1af","sha256":"663f93303288b7202609a309a057eb8348138e11cbcc81f769138edf85fa654c","sha512":"2702e0c5362a70b08b09a923b8831f970f1415ac16971039aa38ab15e8a04ce7d28d38fecce2adb2beb8e83456d3d196ed735358eae51800e0e157edd82f25c0","ssdeep":"","tlshash":"ec61981906a85ff437824382aace1e0e2ab8c37733577998ecb6c31c61daf5505b3166","first_seen":"2025-11-13T06:05:37.565544Z","last_seen":"2026-02-27T10:22:12.329438Z","times_seen":3,"resource_available":false,"data":null}},"time_used":424,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":424,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-MZ6SJSDK","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.143.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:39:20 GMT","end":"Mon, 20 Apr 2026 08:39:19 GMT"},"fingerprint":{"sha1":"60:64:B6:72:E4:67:A4:EC:78:B2:F2:B8:3E:17:7A:A6:A8:CE:74:4C","sha256":"3E:71:C0:44:31:9B:1A:8A:23:FF:D9:4F:B9:3F:89:6D:7C:66:33:BE:14:26:CB:01:F2:79:BB:FE:F3:3A:71:98"}}},"request":{"raw":"GET /gtm.js?id=GTM-MZ6SJSDK HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\nexpires: Fri, 27 Feb 2026 10:20:18 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Fri, 27 Feb 2026 09:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 112672\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":329965,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5376)","md5":"142340be5b70e7545ade011f3f752f53","sha1":"5cef4c85873942769e18672b318be7c771c1e46b","sha256":"e46a26d35a5a860d01f2a162a2bd0b262b7e7971c08454515b73e9c79a21d869","sha512":"01fe763d7645679463e55c2e3b56a6fd22de21f7dddcc412a5bf8058dbcc6a78b1111598985e782bdd726629c6eda45e47a19c09c89d20bb3b101e87931affb7","ssdeep":"6144:Ck83dcHcMoXTLvGd8XZCTzWEzXJDlz5ilq75WTpiu:r8+HcMoXPs84iluWTou","tlshash":"626408cdb7d6742243a3a478503f018bb27b7892b88cc895f185d8d42d74aaa4277f7d","first_seen":"2026-02-27T10:20:55.926404Z","last_seen":"2026-02-27T10:20:55.926404Z","times_seen":1,"resource_available":true,"data":null}},"time_used":468,"timings":{"blocked":157,"dns":54,"connect":21,"send":0,"wait":39,"receive":52,"ssl":141},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/default/fonts/inter/Inter-Regular.ttf","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/default/fonts/inter/Inter-Regular.ttf HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 287928\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 94073\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a92-464b8\"\r\nexpires: Sat, 28 Mar 2026 08:12:24 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:42 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NJ6MRT%2FrGWK40fNsyDxPeT%2FpOCS9K4kpcIy%2FzgxwXmWRzWGoZqo%2BiB8llLQvlBiXf7etb2FsUaV%2FEd2XfbKGpcGnHe%2B9C1N2Bux%2BK62z\"}]}\r\ncf-ray: 9d46f2e59a1a3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":287928,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 30 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)InterRegular3.012;RSMS;I","md5":"515cae74eee4925d56e6ac70c25fc0f6","sha1":"f2fa90d264ae0063b0cda7fee6721b405dd4b866","sha256":"1041a8cf17dab7579acef0cc46b21f6497ec1ae01918ddc3495416efb81a4780","sha512":"a5bfd1be888847881cce91e5904c60e04d19c09353f21d76ecaa89a6bacc9ff17a5af8ee99c1b90859158bf35726e19e49703a1ddd14c0b874162950ff8d286a","ssdeep":"6144:fZyBanooMW/8sDxbmbX5mgz9h1wlxFzsCeq5CG:fgBanooMW/8obmbX5mgZh1wlxFoCeS","tlshash":"7b544b13f353c32dc5272e394792dba0b367bc912b16a106fb643aa5d99b1f41e8b0c5","first_seen":"2023-05-03T21:39:05Z","last_seen":"2026-06-07T05:04:09.204422Z","times_seen":1454,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":144,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/cdn-cgi/rum?","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"POST /cdn-cgi/rum? HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-type: application/json\r\nContent-Length: 1032\r\nOrigin: https://www.vestofx.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false; _ga_YE6VZQGL5P=GS2.1.s1772187618$o1$g0$t1772187618$j60$l0$h0; _ga=GA1.1.600341830.1772187619\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1032,"data":"{\"memory\":{},\"resources\":[],\"referrer\":\"\",\"eventType\":1,\"firstPaint\":0,\"firstContentfulPaint\":1526,\"startTime\":1772187616528,\"versions\":{\"fl\":\"2024.11.0\",\"js\":\"2026.1.1\",\"timings\":2},\"pageloadId\":\"67601c2d-3d77-4db3-99a1-7074be0a35a7\",\"location\":\"https://www.vestofx.net/en/\",\"nt\":\"navigate\",\"timingsV2\":{\"unloadEventStart\":0,\"unloadEventEnd\":0,\"domInteractive\":1572,\"domContentLoadedEventStart\":1600,\"domContentLoadedEventEnd\":1628,\"domComplete\":2091,\"loadEventStart\":2091,\"loadEventEnd\":2093,\"type\":\"navigate\",\"redirectCount\":0,\"initiatorType\":\"navigation\",\"nextHopProtocol\":\"h2\",\"workerStart\":0,\"redirectStart\":0,\"redirectEnd\":0,\"fetchStart\":236,\"domainLookupStart\":236,\"domainLookupEnd\":236,\"connectStart\":236,\"connectEnd\":236,\"secureConnectionStart\":236,\"requestStart\":238,\"responseStart\":810,\"responseEnd\":843,\"transferSize\":15605,\"encodedBodySize\":14773,\"decodedBodySize\":67345,\"name\":\"https://www.vestofx.net/en/\",\"entryType\":\"navigation\",\"startTime\":0,\"duration\":2093},\"siteToken\":\"606c003f22c14ef490aef95489c19aa0\",\"st\":2}"}},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: text/plain\r\naccess-control-allow-origin: https://www.vestofx.net\r\naccess-control-allow-methods: POST,OPTIONS\r\naccess-control-max-age: 86400\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OPW0MjgTgIVMmAA51vdgt98qN6ptqWSe%2BII9Gas0rzr0Hrf6TASNFM1KPmmBvMhWTTxqtRjj1dxFbMtVRZkRvujof6VM0%2F%2BvrxOgFGDp\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 9d46f2e889113483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vestofx.net/","fqdn":"vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-27T10:20:16.553Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Fri, 27 Feb 2026 10:20:16 GMT\r\ncontent-length: 0\r\nlocation: https://www.vestofx.net/\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Og6glQJTLd8Tjn%2Ba9fEEcdz77lbK0cs1tJUlq8SIuitz0LfpKBvtVK87yAwOpWpA4Yx%2BR1ath8ntJYuIdcgXDDJwFEI495t%2BSJI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver-timing: cfEdge;dur=3,cfOrigin;dur=0\r\nserver: cloudflare\r\ncf-ray: 9d46f2dbcab83483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67345,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":109,"timings":{"blocked":48,"dns":10,"connect":8,"send":0,"wait":12,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/themes/general/client/brands/vestofx/css/general.min.css?ver=6.8.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 336130\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3b1f-52102\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:49:03 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8rSplw3ymTfILha%2FQWBjYUIpZOJxFmlF%2BlHnSyeHCI9%2BQKrp7X5YZM4rm00RpGkrt1uwHhmqdvWzHE7F75NphNtD2AfniTPJVe2Qbi5T\"}]}\r\ncf-ray: 9d46f2e1f98c3483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":336130,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (22011)","md5":"3bb3e35698efaf4a5ea7276a2f9883b5","sha1":"147a51837c33a92fdf9bb702b055a4f00e7d6b38","sha256":"2cc14bfa4dec37c1c89b5d723587dea81ef84e2d18c867acd4bc0a87f9a3f4b2","sha512":"f3c92d2d53cf1ea7c80cec26f4af832552afb89f7812d13341fb919f21cd9e859795e7f7daca20d06163085a620718b00a8a5825be8043ce2cb1580996ebd50b","ssdeep":"1536:f6HxmZcjKSjchh8KfpYplrwdiNyGmCoJVsq8zfMoRatp9ggoOnEQb5FZ9af1TJmj:6Tjc8HpP+A5yEre","tlshash":"9164f962c8a6316c7737cd1ef2d02b181a39d112e7530efef76aa41d8bc619241e3b56","first_seen":"2025-12-25T19:13:06.571006Z","last_seen":"2026-02-27T10:22:12.346934Z","times_seen":7,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":147,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/css/widget.css?t=1772187619680","fqdn":"fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"162.159.140.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:19.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 11:59:16 GMT","end":"Thu, 30 Apr 2026 12:59:12 GMT"},"fingerprint":{"sha1":"5C:8B:EA:71:0C:70:6C:F0:45:CC:DF:9C:4C:A4:0B:E0:93:71:AB:7E","sha256":"BE:AB:31:75:E8:AC:0C:4B:20:29:14:C3:78:89:B7:AF:6C:30:62:81:85:31:8B:C7:FF:8C:1E:40:16:73:65:6B"}}},"request":{"raw":"GET /widget/css/widget.css?t=1772187619680 HTTP/1.1\r\nHost: fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncontent-type: text/css\r\ncf-ray: 9d46f2ef1b1b5fac-OSL\r\nlast-modified: Tue, 17 Feb 2026 08:15:33 GMT\r\nexpires: Sat, 27 Feb 2027 10:20:20 GMT\r\ncache-control: public, max-age=31536000\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-server: 8pglx\r\ncontent-encoding: gzip\r\nx-envoy-upstream-service-time: 2\r\nx-trace-id: 00-f4b3d9672e05231737778bff1c8aaf33-3f0c33be1f577967-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.me-central-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 6\r\nx-fw-ratelimiting-managed: false\r\nx-request-id: c47eadae-c6ae-4953-9c40-4953ce15df5e\r\nvary: accept-encoding\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":8868,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8867)","md5":"3365a17e08f061c3b90af40025808b8f","sha1":"10252d2cc2ef915579b025a6eb46b91de193be13","sha256":"58e78ddbe7394cd14a1e3bc3d8a85a8f9a5c319653ce2a50008ed33560df6b1b","sha512":"b564562d78d8bd692a369944c76d24abc406f7b7809a0e9ee70c4c52279f70effcdfaf1953bd393153fae9e86551164f2db1dd561aca3984f5f831b5c626eae9","ssdeep":"96:q7G6Bb3IUe4+krzK5l57cYtQtl8qcGiaBASfmlU5Vtbr+jGo1YKjSWBQMjGGuWKG:eb3IU/cGiaB7fiiZ8UobP","tlshash":"0102efbf4ab1161180a706a716cc4e5c5a38d9a7f2720ecfb7813c899354ac83b7577e","first_seen":"2024-05-10T10:20:36Z","last_seen":"2026-06-07T06:50:49.400539Z","times_seen":7898,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":503,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/9636.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/9636.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:14:50 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"8e57125cd6d609e7a1751aaf4799e771\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: 8QXqAyhPpexrgw2ACnuD5s60D47Nh0zJTx7w8Pm2kE_Beds_Emhu8w==\r\nage: 236\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":800279,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65322)","md5":"9295d58448a67f95f2592ef1d3b9b660","sha1":"d4267006b28b97feefdc14b4087b51e5a595fa2f","sha256":"f4662d2f575abe45c21c94dafa40fad05d0523677071833b23699026592d1359","sha512":"1d6a2493016f61a2b4c9f66c51e862ab6dfa06e95bf45d93b044a56612bfd1a64d458e7fa947dd973e79e065bf1bc17feec9b9e03726fbb6c0222bb048760c7c","ssdeep":"6144:OJV6YH+S1qzNZTXF3ft17CKgs9jmOcTdAM7FY0fgbqXQgoTRODpmsfvLfRmlGODs:OJV6YHW5ro7FYeswvLfuAWN0U2GlUlmy","tlshash":"250529dcb1c6b8691be361b6402f360bb1356815948d841cfab5ece97dad9492233f3c","first_seen":"2026-02-20T01:51:23.656315Z","last_seen":"2026-02-27T10:22:12.362693Z","times_seen":5,"resource_available":true,"data":null}},"time_used":497,"timings":{"blocked":231,"dns":13,"connect":13,"send":0,"wait":31,"receive":0,"ssl":203},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/notif.da662fefc5060dabf2859ea199198b14.mp3","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:20.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/notif.da662fefc5060dabf2859ea199198b14.mp3 HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ncontent-type: audio/mpeg\r\ncontent-length: 4302\r\nlast-modified: Tue, 17 Feb 2026 08:15:10 GMT\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: \"86f910821a5cad0fe169f2e5304e97ee\"\r\ncontent-range: bytes 0-4301/4302\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: 968ikrhMJTA0Q3DbRmrpKBy1Se3pQ2ubznAeCVM286kpyrL1zbaPEQ==\r\nage: 265\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4302,"size_decoded":0,"mime_type":"audio/mpeg","magic":"Audio file with ID3 version 2.4.0, contains:\n- MPEG ADTS, layer III, v2,  56 kbps, 22.05 kHz, Monaural","md5":"a529450a7cfb4a60dea41ef294fa90dd","sha1":"50eb9373dfa8c38ec6aebfa6e2a5f4494871aa37","sha256":"eb2e3f703cf8ee0156a1d625e053c0968b0dfcff62ea4254ddd8ba9fece3ad32","sha512":"831837a0d1d386f6f63671eb2958afa43a854762435d8739bd830eb6e6309c7ab174f5c026a8b2dc2a0e9f2c1206352403779ddc3e7e8a75f41e685e1016bf21","ssdeep":"96:yVTnqWFkHlqkFkMg7q3D6dNenUtr1dtDj1QFAsi/XtI83wElrGOJq:KqWFWML7qdnYjy6XbwElA","tlshash":"e8916e5db8d64de1d78dca76a328b98f3395f85c0d465cf6375ad10211e117f0056863","first_seen":"2023-04-05T13:53:36Z","last_seen":"2026-06-07T05:21:04.559176Z","times_seen":6492,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uae.fw-cdn.com/40252786/156577.js","fqdn":"uae.fw-cdn.com","domain":"fw-cdn.com","tld":"com"},"ip":{"addr":"108.157.229.84","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.fw-cdn.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Thu, 23 Oct 2025 00:00:00 GMT","end":"Fri, 20 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:53:B7:9A:8E:72:54:3C:47:34:68:5F:BF:1C:21:9C:C4:0A:7C:68","sha256":"4B:E4:EF:75:1A:22:DC:18:EF:B5:5E:57:9F:42:D5:DB:C6:FE:3E:06:8B:B9:20:C6:18:DB:6F:48:B9:2C:DA:C0"}}},"request":{"raw":"GET /40252786/156577.js HTTP/1.1\r\nHost: uae.fw-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nlast-modified: Mon, 28 Jul 2025 12:43:58 GMT\r\ncontent-encoding: gzip\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 4zihvrM7Dxg1mGBuKbXKsPls.UY7A03c\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:19:29 GMT\r\ncache-control: max-age=120\r\netag: W/\"8d6047428fe2079ee8a0e4cfd51942d7\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: ZPrdWay_JUmGIS9kN_JbGbxS4AmpQ2R3rO-9s0gLI0ZYV8kGe-Ks1g==\r\nage: 49\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":362633,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (62898)","md5":"8d6047428fe2079ee8a0e4cfd51942d7","sha1":"24c840850d320fce90ec4f6360fd4e0ac2d52406","sha256":"5aee0b012cfe896f379f1c41f01bdbd59b3f365f006f76cb1697580eca9d54c6","sha512":"f3b1730bbd57a149ae5795b97458e8b0c46cbfadb6ecf94db34d712a933835f9a2075bce06e76c42bd8db35520f07db8db20b4e0d0c3f270698def402feb9ef8","ssdeep":"6144:UFqGiEmwCBIrM1/Q47GKhkiSzwyZMd6aKSOIOAbn5ONkNWBNOdbxUML57lzCJz5H:UFcEmdi41VkPI6aKSOIOAbn5+BNOdbx4","tlshash":"9874195ab2c570b616eb1035256fa21ab23a95d56409c050fe5edce03b78e0fa327f7c","first_seen":"2025-10-24T16:25:15.111378Z","last_seen":"2026-05-23T01:27:02.477261Z","times_seen":15,"resource_available":true,"data":null}},"time_used":371,"timings":{"blocked":162,"dns":15,"connect":8,"send":0,"wait":31,"receive":0,"ssl":150},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/shared/general/general.min.js?ver=1.0","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.652Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/shared/general/general.min.js?ver=1.0 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 46562\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-b5e2\"\r\nexpires: Sat, 28 Mar 2026 08:51:49 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1F08NZ6L4QhkgdBqyJre7rheqA9HQnDUkXmPZ6kOBWrSyKVBOMLbu4bPFlAJEbEtiP4lQTjAyC1nDtqkR1c6L%2BEQsTEiwThISZUfHkGi\"}]}\r\ncf-ray: 9d46f2e209a73483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":46562,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (45846)","md5":"ba35efc80b46532c55652935df3911e1","sha1":"e8541d16b9d7b3826fa26a2fc3fb1f0c0ab54423","sha256":"70757c29c26d289fca08ab3229fef6007e6695abb4ce1422e9bef90a1e7bed5a","sha512":"03c8205e6889b067f4b002d2dadfb8f4d2e22b2dfd8a79e52881877aabde5a924c5734d19342bdb0abde020a76bb60131798fd4a95239a11c6c61e261e48e2cf","ssdeep":"768:OP7fz7ZubY3SJtfxIWDJGD5mc+VTYMnp6Thgf0PflFjSUgGjKz:8TzmtfVVA9gfz7","tlshash":"8823295d7389533ee5f791b6789b020b5aae35040ac0c49c7479cfcc1ea8ec66867736","first_seen":"2025-10-24T16:25:15.128007Z","last_seen":"2026-06-02T05:08:34.476677Z","times_seen":112,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/v67327c56f0bb4ef8b305cae61679db8f1769101564043","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Feb 2026 14:29:28 GMT","end":"Mon, 18 May 2026 15:29:15 GMT"},"fingerprint":{"sha1":"8B:A9:51:50:78:B2:5E:75:31:54:23:BC:80:D6:CA:53:34:E5:CD:8F","sha256":"AF:D9:FB:4F:B0:E1:BD:80:DF:22:93:A7:4A:99:5B:50:0A:BE:47:59:37:98:C6:BF:C5:DF:8D:8F:F0:8D:FD:23"}}},"request":{"raw":"GET /beacon.min.js/v67327c56f0bb4ef8b305cae61679db8f1769101564043 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.vestofx.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2026.1.1\"\r\nlast-modified: Thu, 19 Feb 2026 17:45:24 GMT\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9d46f2e23af1b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30200,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (30200), with no line terminators","md5":"9dc6464da80362edfde8cd10567de865","sha1":"6323d6fde4148ae6e8daa0bbc813814b7e7c8d88","sha256":"e7aa4e094a5dab2c40e1be1fbf91c58b7e26423e48e188a485a72994e8d050b0","sha512":"add716638ec1c9777be9c6c2173ce721c11a08def58ea916041aa5c21175498ecab9b74b29988419e3fb03289e2999463fd85b63f3211abc17cc90bf1ee94dca","ssdeep":"384:B4K61zI7CIyN4UletDDG0l/nvqtLxnzU50c74MNKJM4e6GODfPOsWN69O90:kN4UwDDlIUsJXvfP1090","tlshash":"29d208edb590b13613f7a47240bf210bb33b756264894418e22bd5c12c78aeed257fad","first_seen":"2026-01-22T17:09:23.016308Z","last_seen":"2026-06-07T16:56:48.615748Z","times_seen":5235,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":1,"connect":4,"send":0,"wait":13,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/uploads/vestofx/international/2019/09/Icon-Legal-01.svg","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:18.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/uploads/vestofx/international/2019/09/Icon-Legal-01.svg HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en; _fw_crm_v=f970b95c-5eeb-483b-f2fc-d4ed607574bb; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1772187617940%2C%22last_visit%22%3A1772187617940%2C%22url%22%3A%22https%3A%2F%2Fwww.vestofx.net%2Fen%2F%22%2C%22path%22%3A%22%2Fen%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; roaming=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1184\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"66e2ad6e-4a0\"\r\nexpires: Sat, 28 Mar 2026 08:51:50 GMT\r\nlast-modified: Thu, 12 Sep 2024 08:59:26 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GIvskDLqp4OarnxC87KiwwgZvUGSYF1CO%2FUXPEidMIh8oTVKUtJi533PoyKnh4oC75oyopovHOT8cGS12CLk8Uhc%2BbusS0fx9TOWJ2Oj\"}]}\r\ncf-ray: 9d46f2e5ca703483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1184,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"891fe489b5045e0f360d8746d33e4f7a","sha1":"c83dd35677417fb122937bbbed2b8b9d36b70d88","sha256":"1781e45aac437cdf6325a69fc70b86f1331d0fd17f1691096f6f3e00a9f0b7dc","sha512":"db8114e5a5fcba10055648611e6435c414b10134135ec50c41e27e1c9c92ee0eebb58319148190b95fa74676a93e30acc4cd347e2711c70a72674b413f1e6391","ssdeep":"","tlshash":"ac214caa0796e6d2ba5c833c76ae14cdf6a8eccb5068f4d45b440c17e86f4e9156c388","first_seen":"2025-06-25T12:14:34.190196Z","last_seen":"2026-06-07T05:04:09.196088Z","times_seen":740,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/vendor.de51237013b32cf0a4d53b8e8546bcd1.js","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/vendor.de51237013b32cf0a4d53b8e8546bcd1.js HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Feb 2026 08:15:13 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:20 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"2ae0221fa520de0c1e7ca1f378bd5233\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: 1WCvf5dk05WwOVHvPNC9ocGwSRNcWpLzmu1maJH_LfLOFi6EPB_Q3w==\r\nage: 135\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":700731,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38263), with NEL line terminators","md5":"de51237013b32cf0a4d53b8e8546bcd1","sha1":"625140818b18867466e61ba02e2b7aea76c7dac9","sha256":"90d439f51bc5ff6fcae4c795c5277de15d41f5beee2af5e90e76f89c866460d6","sha512":"39ca2f753a74196a0964beba9aa6c1d54371d184523bb11cc0af952bbcbb384c4f4bf95dc4d4b9446b72de087a4fa15941ba13fe3be1f3057588fcc819f4aee8","ssdeep":"6144:x84AC0a1dI4DKg9WdGGzVSe1vmM1JTCZ6ls62Glk:x1AC5Q4DKgOLzVSefe3F","tlshash":"48e4e8dc7382b0a643a37175443f140bf23b6959684d8018f655e8e6bc7a94ea23bf3d","first_seen":"2024-11-20T14:16:18.365026Z","last_seen":"2026-03-05T06:08:05.766988Z","times_seen":39,"resource_available":true,"data":null}},"time_used":377,"timings":{"blocked":171,"dns":14,"connect":8,"send":0,"wait":31,"receive":0,"ssl":145},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/fd-messaging.991baa15f06accba2951.css","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:19.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/fd-messaging.991baa15f06accba2951.css HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nlast-modified: Tue, 17 Feb 2026 08:15:14 GMT\r\ncontent-encoding: br\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:20:21 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: W/\"2538d0af95a11529b3d861d3a81375d8\"\r\nvary: accept-encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: 8HL5CjCk8BVkGZEL7fJ-WUVNrbaOCF0TtI_dJ7EwceQrLoWQIqC0VQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":258286,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"998e7632ee0310c2b5f4de75a95cda60","sha1":"a4539d15fb940ac5394b813ae0c5b63d439234bc","sha256":"e8f128f4f89bb1f7333b62ec3f2865324b616d67982fe176ea4c60c47a898277","sha512":"c69914ebfdb9a53f5db72707004355e6de68f21d86ed60c3054848fd35c917d9d930b2c19904142f5dfc3b332a92450aab1129fe456951c7a28f6fbcd865a44d","ssdeep":"768:B5oTyBrIUtikus7W/SZYsALhmN+m+12BJldHsoKG7TtLOr5eildp70lF4EPodQ8X:BBrIUfGRm+m+4OLO6hNCE1IvHRS4pXW","tlshash":"2b44b4b0c4f21426227786b399c4353c1935c222e64325feb2f25b6f96dd6ca71a3778","first_seen":"2026-02-20T01:51:23.666498Z","last_seen":"2026-03-05T06:08:05.728853Z","times_seen":6,"resource_available":false,"data":null}},"time_used":757,"timings":{"blocked":170,"dns":10,"connect":16,"send":0,"wait":413,"receive":0,"ssl":139},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assetscdn-wchat.me.freshchat.com/static/assets/freshchat-line.7327fc2a43ff6a857c38e96ffa7e00f2.svg","fqdn":"assetscdn-wchat.me.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"3.164.240.10","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/widget/?token=d54d92e7-527c-4af0-acac-b5f68d7271d0\u0026referrer=aHR0cHM6Ly93d3cudmVzdG9meC5uZXQ=\u0026eagerLoad=true","date":"2026-02-27T10:20:21.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.freshchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 10 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EF:1C:72:A1:91:53:23:E2:ED:AE:40:0E:C7:23:C6:DB:3D:29:94:85","sha256":"78:F2:49:0D:41:A1:CE:8F:4D:2A:B0:6E:C5:FD:C7:35:32:B4:20:57:E8:D9:19:3F:64:49:B1:C6:45:E7:6B:F5"}}},"request":{"raw":"GET /static/assets/freshchat-line.7327fc2a43ff6a857c38e96ffa7e00f2.svg HTTP/1.1\r\nHost: assetscdn-wchat.me.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fairmontfinancialservicesptyltd-org-c124349445cf63117536911.freshchat.com/\r\nCookie: __cf_bm=8KsZor2bE6X.ScoL75lxkuNPoA.xjdcavzmPvv0_PAY-1772187618-1.0.1.1-TMJAibRoW8iBUZHH8eR2tTyJlWEF97W089D_uSF0R.OYbaasp9CvZqGclJJb7.wLpiM.H1VwWOXiqfAi9CGCE6DJV4r.Clq5H4ET2HQOm9U\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 663\r\nlast-modified: Tue, 17 Feb 2026 08:15:05 GMT\r\nx-amz-server-side-encryption: aws:kms\r\nx-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:me-central-1:600853678009:key/e3add5b2-6469-4f38-95e1-7b41edd3ab38\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Fri, 27 Feb 2026 10:18:25 GMT\r\ncache-control: max-age=31536000, no-transform, public\r\nexpires: Wed, 17 Feb 2027 08:14:48 GMT\r\netag: \"5b7aeda7d57c361ac7b787d344b10a6c\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 bf9e29084831d9a2b72227f617c2b80c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: BBcQbWc6dY4N6ipU8OnkAtGyg-Dl87QzsnzbCuoUAQo2kvFpCmtASw==\r\nage: 117\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":663,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cd452acf4efb05843ef7575e5a9de756","sha1":"be8d842348dc19a58dcf46588cdfa8010616da05","sha256":"2b82601133216ec29983087a0532e9b0af553f7f4a8b3b00ff9d7ffcc1142542","sha512":"876e715eff7147480a7500eabaffa267eb4d81ea0ee93d474e35285ed9530e688f6398eaa7dadca15380073bf8745dcf0db2a171998dee005ee401c6a859a592","ssdeep":"","tlshash":"950178bb93e94ea7922f1b5cd55c938abc31f085b168046427d3393fa94fab308f0614","first_seen":"2023-04-24T23:33:50Z","last_seen":"2026-06-06T22:08:25.429662Z","times_seen":3535,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.vestofx.net/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3","fqdn":"www.vestofx.net","domain":"vestofx.net","tld":"net"},"ip":{"addr":"104.26.1.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.vestofx.net/en/","date":"2026-02-27T10:20:17.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vestofx.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 09:01:42 GMT","end":"Tue, 12 May 2026 10:01:38 GMT"},"fingerprint":{"sha1":"46:80:97:89:11:4F:D4:BB:32:78:AC:A9:B7:45:3B:E1:5A:A2:99:DE","sha256":"4D:7D:F5:CE:BB:6F:3A:20:69:19:B1:2F:DF:A2:AB:60:B8:A8:85:EE:67:4B:01:FC:48:6D:3C:F2:DA:A6:1B:50"}}},"request":{"raw":"GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1\r\nHost: www.vestofx.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.vestofx.net/en/\r\nCookie: client-gateway-vestofx-cookie=5d276c05177260a5; _culture=en\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 10:20:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 121722\r\naccept-ranges: bytes\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nage: 91708\r\ncache-control: public, max-age=2592000, no-transform\r\ncf-cache-status: MISS\r\nx-forwarded-for: 91.90.42.154\r\netag: \"697b3a91-1db7a\"\r\nexpires: Sat, 28 Mar 2026 08:51:48 GMT\r\nlast-modified: Thu, 29 Jan 2026 10:46:41 GMT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xuODjnox6LVugu0Mc8WPetY4jaJDYZLloS%2F0q9aM7aZdsIwi6BoakYTjOYIs4i04M1yqivqlGCPKcB9J03nnVesjlNUgPR2N5yZ3XOTn\"}]}\r\ncf-ray: 9d46f2e209963483-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":121722,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (42889)","md5":"09d0554a0e9a8751df4fb6bd4a984dc7","sha1":"1b1c5e859b07c34c5a3e643eb40eab76bfc7b0c8","sha256":"41d764db49ec1705c84b60b85bc505a0997616846bf4a8b52849bfcaf8d21909","sha512":"1153dc991fb37bf10ccc0b709ac16a1773a175bdb5677e3952cebf0dfa70752766c5e856db2078d72a8c0d19ff6fff824d596b48f99d169b2a6b3b74b4ee802b","ssdeep":"1536:bVgx8P3+/66QGKFx8sWGQ/IWRyNrZSqCe+hkiwGbIi8o52Ncwli2wvjmsIHsUIeD:C66vKhaIWR0SiiwGMi+c9LjZIM1I","tlshash":"fdc33bdd7151b432029666a5453f0a0ff23b9d59750b492cf228e4c87d388a990fbfba","first_seen":"2023-03-07T01:10:40Z","last_seen":"2026-06-07T11:34:24.077924Z","times_seen":2765,"resource_available":true,"data":null}},"time_used":234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":123,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"www.vestofx.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}