{"report_id":"754f6b25-43e3-4317-8276-feabaaeefbfa","version":6,"status":"done","tags":[],"date":"2026-03-04T13:54:05Z","url":{"schema":"http","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"104.21.18.167","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"title":"DANA - Apa pun transaksinya selalu ada DANA","dom":{"size":18570,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (4108)","md5":"d6cfada4f4797426a26b2e9479198e6a","sha1":"c1d22dee4093dea38667732df2904e2b63ce0b56","sha256":"fbd3e118425b55b8353bf85b70aa1c01c4866fffe2349b49c8047b350fdac12f","sha512":"dfb8f579e5fed46f0b5c8cbb2ff70c744980815299a8a976500b0d31a7eed25b8e755dda7ec9496e233b2ec95c3e3b43718777f9d0966ac7521cf8e582f66fe0","ssdeep":"384:Kiy2xOAG2UFjFGFmF3FJ8y3pj9MXrL9cMgzYxH:KiyYOAG2UFjFGFmF3FJv3hMgzYxH","tlshash":"7082879294820017241384cc37676b4a3593a2134e2bc8a47fdd539aefce6e49cfa3dd","dom_hash":"domhashb022845976fd88c95dce4c53b22b23b9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"104.21.18.167","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-08T13:54:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"blogger.googleusercontent.com","ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-11-17","domain_rank":4332,"first_seen":"2012-05-25T17:41:01Z","last_seen":"2026-03-02T05:04:59.283634Z","alert_count":0,"request_count":1,"received_data":79584,"sent_data":700,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-01T22:18:12.522658Z","alert_count":0,"request_count":1,"received_data":6879,"sent_data":487,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"upload.wikimedia.org","ip":{"addr":"185.15.59.240","port":443,"asn":14907,"as":"WIKIMEDIA","country":"United States","country_code":"US"},"domain_registered":"2003-03-16","domain_rank":4329,"first_seen":"2012-05-21T09:39:45Z","last_seen":"2026-03-02T06:49:07.571675Z","alert_count":0,"request_count":1,"received_data":127844,"sent_data":486,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache Traffic Server:9.2.11","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}]},{"fqdn":"encrypted-tbn0.gstatic.com","ip":{"addr":"142.251.143.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2013-05-31T02:32:18Z","last_seen":"2026-02-25T15:26:32.879886Z","alert_count":0,"request_count":1,"received_data":11561,"sent_data":525,"comment":"","tags":null,"fingerprints":null},{"fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-29","domain_rank":0,"first_seen":"2026-03-04T04:56:27.017682Z","last_seen":"2026-03-04T04:56:27.017682Z","alert_count":10,"request_count":10,"received_data":1024668,"sent_data":4842,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap:3.3.5","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-01T22:28:03.022415Z","alert_count":0,"request_count":1,"received_data":90497,"sent_data":466,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.195","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-01T22:15:00.771016Z","alert_count":0,"request_count":1,"received_data":19563,"sent_data":594,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.ionicframework.com","ip":{"addr":"172.67.69.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2013-09-02","domain_rank":164865,"first_seen":"2014-02-05T17:09:16Z","last_seen":"2026-02-26T22:42:14.723232Z","alert_count":0,"request_count":1,"received_data":52617,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"maxcdn.bootstrapcdn.com","ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-25","domain_rank":6807,"first_seen":"2014-06-18T00:37:31Z","last_seen":"2026-03-02T00:52:11.008293Z","alert_count":0,"request_count":1,"received_data":123436,"sent_data":484,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-03-01T22:32:56.293355Z","alert_count":0,"request_count":6,"received_data":251433,"sent_data":3054,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"infobanknews.com","ip":{"addr":"34.36.71.3","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2004-11-29","domain_rank":492025,"first_seen":"2014-02-27T15:31:02Z","last_seen":"2026-03-01T05:09:18.518616Z","alert_count":0,"request_count":1,"received_data":16581,"sent_data":486,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f76c7c88562290b7001a2bbd91255f42","sha1":"d8cae5fdf8ca14b223b466bb99d30aa697a8d225","sha256":"1a2cf38fbcc0a3f36f1cc2c28cd43cf711f729d2dfa56cda76df0038adb3d1e1","sha512":"3a3ce43b70e97731afcaf021bc6f68639a8c757e1553523cf5f17d4cf0ab1961335c494afebdc9b7cff9a02db9ce29f0dc32fabbedaeb7df6a284a73108d5a37","ssdeep":"","tlshash":"a2d09b1b70ad61310d3774045fbfb4045f677807140ef9e47a8c17d44f1d319a023544","size":236,"data":"","first_seen":"2023-03-11T22:27:21Z","last_seen":"2026-06-07T02:09:44.168089Z","times_seen":1706,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","size":42863,"data":"","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-06-08T21:01:57.25514Z","times_seen":99566,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-08T21:13:36.009615Z","times_seen":249822,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/slick-carousel@1.8.1/slick/slick.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 1.8.1\r\nx-jsd-version-type: version\r\netag: W/\"6f0-qUoFmzF4tK3sCeMoGs4oGaMAlaQ\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nage: 2726801\r\nx-served-by: cache-fra-etou8220026-FRA, cache-hel1410025-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 533\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1776,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"f38b2db10e01b1572732a3191d538707","sha1":"a94a059b3178b4adec09e3281ace2819a30095a4","sha256":"de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5","sha512":"c11e283612c11dfeec9a3cb42b8a2acdd5ae99dfabe7ffba40efef0dd6bbe8c5b98ae8383d3eeff3a168124c922097eddd703401ee9ac6122f1ebab09bbf7737","ssdeep":"","tlshash":"c931294845b389468416808d5fd7ca6d2bfff0130829e199ba8d1306cfce7d8a9c26b2","first_seen":"2023-04-05T08:37:21Z","last_seen":"2026-06-08T21:00:07.390224Z","times_seen":66144,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":148,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/assets/img/dana_3.jpg","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /assets/img/dana_3.jpg HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 14428\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3137\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=793Og00rjsZ3zYSLj5jjBR3H58xlWi4yEruxcQJB1iEodz6Mw9gi42WPzVWhq%2BPpOgBSu1jYD1E%2F07je04ADhUsC5U4mM9ZS5vXYehIqQNRZprrIWQ638eqUxGWOQbJhl4gK9A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bbe0f9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14428,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, height=0, orientation=[*0*], datetime=2023:12:22 07:32:47, GPS-Data, width=0], baseline, precision 8, 720x111, components 3","md5":"df7b6eb65a56866170d68d1601b3ab56","sha1":"3ebd7589cedda0a6c3419676d649727a3436e81c","sha256":"ece91b9580d120e8ac3be5bd9641f6d14c03bce53790db14261c2efd78aafcb7","sha512":"bfddfc1535e4efc39af1e9f62fccd59fcfb98c084ed29e5ad457f5f43352524753ccd9382bec77d375ca2c4a5694108285d915c4cea08655cdbea0e2fc63eeb7","ssdeep":"384:GYrKaseDUp8VOABe/o5BB0RGGRdO2FQ/S:GSseuABAQG3RFQ/S","tlshash":"12527cb1c6702fe4ee400d3a5c47ab12e7327b24a657318cd2e9cdbaddb58827e44235","first_seen":"2024-05-23T18:54:54Z","last_seen":"2026-06-02T08:09:32.517652Z","times_seen":128,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/6.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/6.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 106628\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3136\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fTy0VTguvnDUIJ2zSyvpkdR0RfqMeAu2ah6aooI7K%2Fp6LOkiJJOGRtIwWjHhQb%2F%2FQLBicJH9jUCzIZXgIiOueb4%2BJKPGdEoZn3SIFJiFWQnlExe1u7iLPuGLiXLIJ%2BNJL6tJ8A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bce3f9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":106628,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 656 x 287, 8-bit/color RGB, non-interlaced","md5":"06bd8b3a4c77c5482e3b515fb373c965","sha1":"6c1bed37f989ec3e089b8bd507cf8f9a55dfb078","sha256":"07831313dcac16733b39b35c33f1eea4dc9c1b8265f4577efa336b8a84cb9d66","sha512":"534ad5a1b0315a6f6cc5539927b4b2036cad518cc259721458ded980fb3fa2596cfcf2ee5b36593ff10ba0952439b9352e6f0018649b923bf061cf72507ccdc8","ssdeep":"3072:8Qi/RxU9X2GmN/RMd1Qyaxt59uLSJsATLJ:iOmGe/RM/UMe+AB","tlshash":"a0a301fe7471e0e435a3915e617c9cfd8bd085862a69182ec91cfab00f381879f75a1d","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.520356Z","times_seen":186,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"infobanknews.com/wp-content/uploads/2019/04/logo-lps.png","fqdn":"infobanknews.com","domain":"infobanknews.com","tld":"com"},"ip":{"addr":"34.36.71.3","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.310Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"infobanknews.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 21 Jan 2026 00:00:00 GMT","end":"Sat, 23 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"AB:1B:22:54:C6:46:CA:21:10:C5:CF:3D:9F:B4:84:CD:06:62:72:59","sha256":"70:0B:45:B3:AB:2E:E2:97:61:D6:47:9E:9A:37:C4:51:39:24:86:57:31:94:6E:35:BD:F8:B5:4F:11:CB:7E:69"}}},"request":{"raw":"GET /wp-content/uploads/2019/04/logo-lps.png HTTP/1.1\r\nHost: infobanknews.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AGQBYWxR4XwL79Qlkb3cqo6-hWZUI9cA5quJhNjxoN9C_lpj9dC7zmaaC7ghGzxuE5dLZAb_uezmjTc\r\nx-goog-generation: 1689182117807797\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 15795\r\nx-goog-meta-goog-reserved-file-mtime: 1554801036\r\nx-goog-hash: crc32c=RqkKKw==, md5=5pj00kb6swKihtHo63BJ5A==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\ncontent-length: 15795\r\nserver: UploadServer\r\ndate: Wed, 04 Mar 2026 13:01:26 GMT\r\nexpires: Wed, 04 Mar 2026 14:01:26 GMT\r\ncache-control: public, max-age=3600\r\nage: 3138\r\nlast-modified: Wed, 12 Jul 2023 17:15:17 GMT\r\netag: \"e698f4d246fab302a286d1e8eb7049e4\"\r\ncontent-type: image/png\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":15795,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 203, 8-bit colormap, non-interlaced","md5":"e698f4d246fab302a286d1e8eb7049e4","sha1":"0737bae7c61e87ed547e4408ff1e7432edb43f48","sha256":"de9a7b06966c704cc5e8da25eba02339e2842a40285e768a99f43d0318740e2a","sha512":"5a584d5279d1179473b88adbee250bb8ad5094186dc57b20b799d442d46f565f369192dfba863216efadbdc4370729e38e37278ecbf4f06c44eb01ef56126596","ssdeep":"192:oRQ1IFHmyqC+3QT6UYf8caxA7RlOgeFWoAOoW9efTuPoSgdznUkHAIhJuz:x1yHmyqryAGxMRMge5v8faPoJr0","tlshash":"2a62affc7026b4888a3c3cee06be06fdd5ab1561bdd45e2f0d7167e9092d14b91f640a","first_seen":"2023-05-23T04:54:26Z","last_seen":"2026-06-04T14:44:41.086205Z","times_seen":1219,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":326,"dns":0,"connect":12,"send":0,"wait":15,"receive":1,"ssl":114},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.315Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/slick-carousel@1.8.1/slick/slick.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 1.8.1\r\nx-jsd-version-type: version\r\netag: W/\"a76f-O0GzvJVmhQFaNHoiOOcdsp36Dbs\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nage: 4110474\r\nx-served-by: cache-fra-etou8220084-FRA, cache-hel1410025-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 10910\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42863,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (42862)","md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-06-08T21:01:57.25514Z","times_seen":99566,"resource_available":true,"data":null}},"time_used":123,"timings":{"blocked":-1,"dns":21,"connect":45,"send":0,"wait":15,"receive":1,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.312Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 27958\r\ncf-ray: 9d715e6c7db16e70-ARN\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb09ed3-15d84\"\r\nlast-modified: Mon, 04 May 2020 23:01:39 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1015086\r\nexpires: Mon, 22 Feb 2027 13:53:44 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=AevROG3RCye%2FsufhcUOuA2dl84jWrwtMuxE8DvfFe4yxaLH%2B355SqrAKNT9mbZd3sxY%2BK%2F9iGhHhDUwiWKvtVLgsV9qOfYvBoXEmRq4tX6zQH3hCA9JF6fzU1YNK9kxbt2jL2fnd\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89476,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-08T21:13:36.009615Z","times_seen":249822,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":4,"connect":15,"send":0,"wait":27,"receive":2,"ssl":75},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.195","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/opensans/v44/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://aktifkaan-paylattersx.resmi-cxh4.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 18728\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 25 Feb 2026 17:00:21 GMT\r\nexpires: Thu, 25 Feb 2027 17:00:21 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:29:37 GMT\r\ncontent-type: font/woff2\r\nage: 593603\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18728,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18728, version 1.0","md5":"a6f0123a9439d11d2bd8f404f620bfca","sha1":"e50a2af45400cb2f6fd8c89711cb4b4ef481002c","sha256":"fcb3290e95d43c9427acb996e3c1243c44f003eae5104707b3f5ed65fba7d452","sha512":"3882dae2392e9d4347952072e52e86ee1f2136f29629eb19df2178b09b768c8b6ed638e4da57c46470515558075252ca550516dda5ebddd11e326a4f47c9e9a8","ssdeep":"384:6gLJuh+PG7AeiBHvp6MQ8jvy3xse1253sADWsMGGRQp2d:6nUB7HJtyueADWVGGRQp2d","tlshash":"4682d09788e9aa41e6c4f76232e92bf57ccf351b3065d2ee14505dc92892b63200bf2d","first_seen":"2025-09-20T15:52:41.695948Z","last_seen":"2026-06-08T21:32:47.727439Z","times_seen":1017,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":69,"dns":3,"connect":8,"send":0,"wait":14,"receive":2,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh7H3AZHRJ8VHqTtUQZVi0MP9fnWfj4q8PXBGeCY8H7TOzwmQBfZrRZ_mqq50lFLvTZTHCnzIR-stdV2Gg_CjT6XUCTdj0fZw4TGq8gC4AJn2kF9vk5O7Doxi0Ove7_b-eIh4dxbvhC0L3BkjGQSSSgtaD5TxImeKlEqfZlhlx2aI-kHD1R5_XSTCQl1k0/s1200/IMG_20230827_160252.jpg","fqdn":"blogger.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:37:55 GMT","end":"Mon, 27 Apr 2026 08:37:54 GMT"},"fingerprint":{"sha1":"B9:DF:12:A3:2D:70:3F:1F:E9:5B:7F:38:A7:B9:45:48:5A:A8:32:C3","sha256":"77:D6:59:9F:58:BA:B8:4A:E2:1E:9F:4A:6B:7E:FE:C5:73:13:ED:D8:3C:4D:B2:EA:4C:AC:25:97:AA:67:0D:C2"}}},"request":{"raw":"GET /img/b/R29vZ2xl/AVvXsEh7H3AZHRJ8VHqTtUQZVi0MP9fnWfj4q8PXBGeCY8H7TOzwmQBfZrRZ_mqq50lFLvTZTHCnzIR-stdV2Gg_CjT6XUCTdj0fZw4TGq8gC4AJn2kF9vk5O7Doxi0Ove7_b-eIh4dxbvhC0L3BkjGQSSSgtaD5TxImeKlEqfZlhlx2aI-kHD1R5_XSTCQl1k0/s1200/IMG_20230827_160252.jpg HTTP/1.1\r\nHost: blogger.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\nvary: Origin\r\naccess-control-expose-headers: Content-Length\r\netag: \"v15f6\"\r\nexpires: Thu, 05 Mar 2026 13:53:45 GMT\r\ncache-control: public, max-age=86400, no-transform\r\ncontent-disposition: inline;filename=\"IMG_20230827_160252.jpg\"\r\nx-content-type-options: nosniff\r\ndate: Wed, 04 Mar 2026 13:53:45 GMT\r\nserver: fife\r\ncontent-length: 79104\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":79104,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=[*0*], software=Google], baseline, precision 8, 1200x360, components 3","md5":"0987087a65bc44e8f980a41665e48d5d","sha1":"88f29a2ec24ef3bba48d09dc35e629adc9014733","sha256":"3f2b844b52c486f87e86863cfa137e75b7c123f7f9a9d47c7c5f7ec8256fed9a","sha512":"ca1c139f9c142d9c48c3bfcd942b252c8524f2af659401e65ada92a9de150bb3a59dcda6f6ea2b74a075e60f8830113a8fb16f50bb3910c626c10ee0395594b3","ssdeep":"1536:Tuxi8Rc7Ge1SYCERu7bE/BEm9+tyFzKY0cekOnGxtLTFPiha9THkold:Tuxi8RTe1SYCERu8P+tSqdnG4ha94Qd","tlshash":"d17301100fd3dd9ffe0fad7155557b162556aeb0a59125bc1bbb97cce23088c0a3c202","first_seen":"2024-05-10T15:57:35Z","last_seen":"2026-06-02T08:09:32.528481Z","times_seen":320,"resource_available":false,"data":null}},"time_used":697,"timings":{"blocked":67,"dns":23,"connect":8,"send":0,"wait":523,"receive":15,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css","fqdn":"code.ionicframework.com","domain":"ionicframework.com","tld":"com"},"ip":{"addr":"172.67.69.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.282Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ionicframework.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 17:29:35 GMT","end":"Sun, 24 May 2026 18:29:21 GMT"},"fingerprint":{"sha1":"9D:D0:EB:D9:87:16:78:79:EC:B5:AC:B4:E0:0A:B5:72:0F:7B:6E:BE","sha256":"CE:1D:80:EF:3F:90:01:02:3A:12:A1:17:91:15:2D:63:62:3D:7E:DE:97:DC:AB:9E:97:C1:53:DC:A7:05:1D:D6"}}},"request":{"raw":"GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1\r\nHost: code.ionicframework.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 8313\r\ncontent-security-policy: default-src 'self'; script-src 'self' *.ionicframework.com ionicframework.com; style-src 'self' *.ionicframework.com ionicframework.com;\r\nserver: cloudflare\r\nx-origin-cache: HIT\r\nlast-modified: Wed, 15 Oct 2025 14:38:53 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"68efb1fd-c854\"\r\nexpires: Thu, 29 Jan 2026 01:54:44 GMT\r\ncache-control: max-age=31536000\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 22A9:1ED56:7C0906:8DE5D0:695362BB\r\naccept-ranges: bytes\r\nvia: 1.1 varnish\r\nage: 1071665\r\nx-served-by: cache-bma-essb1270047-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1768319851.714480,VS0,VE2\r\nvary: Accept-Encoding\r\nx-fastly-request-id: fe920c7954c373eb0aa1f22a40ebba9f8a06bbc1\r\ncf-cache-status: HIT\r\nstrict-transport-security: max-age=15552000\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sOULHXdIc2EYNByq2avHDP13FtdZNUZSfnT1CyLQkOFAh6J3CC0P%2FBmmvoAyLEogjMLt%2BSamAkSwX%2B43bSHOZxA3oTeal4GKwLi%2FOz2gsVo13NegJnU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6c2fdf767a-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":51284,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (50802)","md5":"aed7997754b0bd942995126653dfc81d","sha1":"89568702c732f4c0b629e068f56bc3812cf5f5a2","sha256":"95d37d2b4f6dc57aca2141a52aafe6e34fb6cac97983f8205c7befd824c62d42","sha512":"e79677cd4bed1609de5ad33c5a6e09e223f33e0d1835e300416382bdcea7e984cfe0c28ac268d41cb311b2ed0717747e4e98740b98e0c21e5f409e3652238541","ssdeep":"384:R48wBhhJhjRqFdtYRjJIjsjaHnNfc2C4741mf5HRzL:R4jhhjQFduRjJ7uHFcu7Smf5xzL","tlshash":"ef33f8e4d20c0dd0ab35c447ab49674858b5f7fbe4584ca8e42fd4ac39cb224a3e5b6d","first_seen":"2025-04-07T10:41:49.428708Z","last_seen":"2026-06-08T19:01:18.21913Z","times_seen":5279,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":55,"dns":23,"connect":8,"send":0,"wait":25,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Open+Sans:wght@500\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css2?family=Open+Sans:wght@500\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 04 Mar 2026 13:53:44 GMT\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6193,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"ff25af4a310d8225bb745489c6fea2c9","sha1":"37d95e7efa18a621c062487bd04c66fa5fc667a9","sha256":"81855a9223fb532772ef58644e2f4930030d54863ee16f3482e4ea5f098432ef","sha512":"bbd062f72df8499a3b585b88687d17ed07e09d459a5f9cbcded7c93fa42a61b49947a6386d2fa758b232d57a27bae7940a1a4012b86560b4e0d3d5a7b5f5b211","ssdeep":"96:ZOXbalJOXbasFZ8OXba7kOXbadYOXba5OXbaly+aZjzBrWOXba7ubqGIFuV4UOXl:xlhrwd4RlqS6bqGIwV40Cd3Z","tlshash":"0bd131a000179450ab475ce327cebe34ee1fa2656040c07aabfd478aeedbd65637931d","first_seen":"2025-09-17T02:40:21.094619Z","last_seen":"2026-06-08T18:15:27.258946Z","times_seen":574,"resource_available":false,"data":null}},"time_used":669,"timings":{"blocked":303,"dns":1,"connect":21,"send":0,"wait":38,"receive":0,"ssl":301},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/fonts/slick.woff","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/slick-carousel@1.8.1/slick/fonts/slick.woff HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://aktifkaan-paylattersx.resmi-cxh4.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 1380\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: font/woff\r\nx-jsd-version: 1.8.1\r\nx-jsd-version-type: version\r\netag: W/\"564-r5HBLw9Aak+AGus7OYdo/kHY+GQ\"\r\naccept-ranges: bytes\r\nage: 3332923\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nx-served-by: cache-fra-etou8220197-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1380,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, CFF, length 1380, version 1.0","md5":"b7c9e1e479de3b53f1e4e30ebac2403a","sha1":"af91c12f0f406a4f801aeb3b398768fe41d8f864","sha256":"26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc","sha512":"976f6e9d65859b1a5e3bbd426441e6885d1912f5694f40e2897b10f46b3bd0c7d940f7917a6050d6bb8cdeaaa5e5f0332391d3d398f6c21ce27299dfc7036911","ssdeep":"","tlshash":"cb21a55dbda5eb19fe9ed376738497e1bb1e849db2a20246990e2e3db280040a880655","first_seen":"2023-04-05T04:33:55Z","last_seen":"2026-06-08T20:26:36.516515Z","times_seen":23620,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/1.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/1.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 70136\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3136\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VzUxcyYBpRlMYTjU8NmcQSuodRgoLz35ldCQM8qD02dunrefQDlhJF4q1xosmWiYwmXnzdVIHIlc77RMu1mmlcwW7gbZ0wXhS5wI9cDec2URFEWtBPc9MpZ5rIdIg%2Fel7ZcQNw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bbe149e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":70136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 643 x 259, 8-bit/color RGB, non-interlaced","md5":"a753dd0788e85e12d07313196aca46ec","sha1":"66ffb357da0e299b9afc9432e0e44acc8cc84051","sha256":"704293dd34f1bfe5c59c15db889472b5572ee6c098a9befa54e3139b2ee8c5f2","sha512":"d6b4e71b457415b5eafad197f8895193cc8b15b7a1f215bc997a0e716ba32d0a52c4c2f6c593cdaddddfe7e8a23d5efeb0892557ab0b6ead0fcea292e9aca4da","ssdeep":"1536:171jfo2FT8u18IqDaBYySmFtnJMDBeFpphGuxQ4juhMccxCv:t1jfo2KW8hmB57nMBeFhJWMcjv","tlshash":"23630217b89e1b1e9ef0041768f0e7e8f4c1c66d242bf6f491cae6d5a81f2b83587584","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.527529Z","times_seen":401,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/2.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/2.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 120081\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3137\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AwRNgru%2FQg2LLWCseKd%2FuR1%2F3uqCQtFqA7qeL50z%2FlwBeLC8wQlw9AHLFA6G%2F0ZzSQPYUKJrQ8iGKxMHLB%2FNndFPbHi16%2FCLssrI0t57ZMBnmTkVTLEKX2UybT%2B%2B6258ewQOlg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bbe169e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":120081,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 644 x 257, 8-bit/color RGB, non-interlaced","md5":"88ca0274aaa32b9f6e7f85d5b2f83874","sha1":"6fdedbcbb25e45f713f95d0208cbcfd53cff8f81","sha256":"1500b41137304a182b67b27217adbd5cba31837c4ddbc9d2a1bee86a08f2106a","sha512":"4954c1447e327990b02d3f7f38f0ec25b49609beaf97a75b9a0f6be4cc1d953dcb82d9e7ee4d45169c2ef529355e6cfcbf839a5afb608bf399df52fbb13540e6","ssdeep":"3072:VHR00L4h5uLBVZHzqCZdPiM5m1upO24tXq15UpEFBjwhDY6fR:VHXXsCHiORxO6UEFBjwf","tlshash":"f0c31217c5ada8bbf97ac2c23930ad16ecdf1bd59764e11e79029cfb1c8929c6062d04","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.527981Z","times_seen":237,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/5.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/5.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 114519\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3136\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2HPrs9VAgia2yvpvGG6lbxUgqK%2F0UL17fMLZ5De0BfeXmDy5m6kOTDBlISVeQjWwq%2FV3SXNAKw1U%2B3sho3EkmCITksdL86Fy%2FQzOvbibrbSL778GXE5H1wT81XyA5Un6SBrPGQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bce279e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":114519,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 649 x 295, 8-bit/color RGB, non-interlaced","md5":"464325f26b6f150c03c59c03e5e57d8e","sha1":"136332b9d04fdde4c9a23887544a04856441740a","sha256":"c82910321606c838b6607721c3945600cfc2adc893f8f904c6085672dcf0ff4d","sha512":"d36af6bd6e0e391bf0a2fc731d77ef9e0c090e13995a638adde2c8411b4b9dff2d42b8f383ab8b8e60a4969be72b0bbf9fd627943edfa68ce032d5ec17f66f7b","ssdeep":"3072:YwagApo/eU8njKFJxQ0LH1wKjeDBEjlTKdUhGW:2gAu/eLj825nB7Uh5","tlshash":"cdb31290d56baf617fc4028184e58712cf4fe3edce822544adeae947398962821947bb","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.519842Z","times_seen":184,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upload.wikimedia.org/wikipedia/commons/8/83/OJK_Logo.png","fqdn":"upload.wikimedia.org","domain":"wikimedia.org","tld":"org"},"ip":{"addr":"185.15.59.240","port":443,"asn":14907,"as":"WIKIMEDIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.wikimedia.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 06:44:51 GMT","end":"Wed, 13 May 2026 06:44:50 GMT"},"fingerprint":{"sha1":"88:E4:43:3F:CC:87:1D:73:6E:F1:49:80:44:76:A9:8C:17:D8:DC:40","sha256":"59:E3:D6:A8:2D:49:87:A7:F3:1E:35:0E:3A:0F:77:A1:0B:7D:32:09:4C:1F:9F:2D:5D:0F:42:89:16:CB:BF:08"}}},"request":{"raw":"GET /wikipedia/commons/8/83/OJK_Logo.png HTTP/1.1\r\nHost: upload.wikimedia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 18:34:38 GMT\r\netag: 379cb59b00cc8b5984009b4b46f5fb1d\r\nserver: ATS/9.2.11\r\ncontent-type: image/png\r\nx-object-meta-sha1base36: hor7y5l8cx1i8v2w5jb6g01wwh9ixmd\r\nlast-modified: Sat, 27 Feb 2021 04:16:22 GMT\r\ncontent-length: 126532\r\nage: 69545\r\naccept-ranges: bytes\r\nx-cache: cp3076 miss, cp3076 hit/105\r\nx-cache-status: hit-front\r\nserver-timing: cache;desc=\"hit-front\", host;desc=\"cp3076\"\r\nstrict-transport-security: max-age=106384710; includeSubDomains; preload\r\nreport-to: { \"group\": \"wm_nel\", \"max_age\": 604800, \"endpoints\": [{ \"url\": \"https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error\u0026schema_uri=/w3c/reportingapi/network_error/1.0.0\" }] }\r\nnel: { \"report_to\": \"wm_nel\", \"max_age\": 604800, \"failure_fraction\": 0.05, \"success_fraction\": 0.0}\r\nx-client-ip: 91.90.42.154\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache\r\ntiming-allow-origin: *\r\nset-cookie: WMF-Uniq=1GKvr06MO44OTYgdPQWt1QMZAAAAAFvd7tD-EwrQZPiNbPWpaMETkWxWck0vuzAk;Domain=upload.wikimedia.org;Path=/;HttpOnly;secure;SameSite=None;Expires=Thu, 04 Mar 2027 00:00:00 GMT\r\nx-request-id: c22b43c2-10e4-449f-9d51-cf480041b4c5\r\nx-analytics: \r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache Traffic Server:9.2.11","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}],"data":{"size":126532,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 522, 8-bit/color RGBA, non-interlaced","md5":"379cb59b00cc8b5984009b4b46f5fb1d","sha1":"976bcb699eee62365f73346a6cc9c54906a407b5","sha256":"ba69f363a76dfa12e593b5d42c0b4473153d635d88ee54aeef3bed7e3fefa72f","sha512":"77400b024632d8ba781324f1b38af8519d2848c3dc404d01cef26bb0af60f3fd816db7194107f9a32bb9c3d349743285d862034d04eb5f4b1f8a02dc9885dbec","ssdeep":"1536:jI6F3DtLi6y4K9sbcUSTlYXQACqwXC62F0xS4V92F+aYdYqJPWmbB/l0y67Cki:dF3M6M9dpYXnwyt0nn2dWGmbZECki","tlshash":"3fc3127952f2d4ba0d1f437329d76f9bc0a720456ad74af8e1b2c61de1a4f08c768892","first_seen":"2024-02-15T03:31:37Z","last_seen":"2026-06-02T08:09:32.521887Z","times_seen":462,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":93,"dns":1,"connect":24,"send":0,"wait":44,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-04T13:53:43.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Thu, 06 Nov 2025 16:38:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KZn01a5DoVDgJyjv%2FbDN4rWiR2mnCtuPMB6SVA1dsXv%2BGW%2FwV15KiLiXDPHx2kl3zBHpy9VjmTlX8i9u3th4lrBZsvOf0W9zVxErKI%2FDFb5iN4d%2FNPh%2FgOQGyf0tIm3i%2BpYhfQ%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d715e690863c3b8-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap:3.3.5","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}],"data":{"size":13324,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (538)","md5":"7e5975cf90cef7c908216158f60f8d42","sha1":"2a75492b9a205f25498580b390974aef7ae7444c","sha256":"50597cfc35dfcfd5e12f43f221607146ebc233fc4f3d1a8b27d40fa42b8d85be","sha512":"8f6af2d6d01f50c7c1a8884dc20d6b991b7c12a86db9b54f7325ca85a7b9f4d1a5afb5f699dedd2e83fec133bfd57e3be4e0f81739e601657caf8a23111a62f8","ssdeep":"192:G3N2BLOeLtSvFjFGFmF/49PaFg9qjkClvlkKN7JIbhHlvwVscMrzYVPS:G3N2xOeLtUFjFGFmF3FJu3cMrzYxS","tlshash":"0652b8d7648740067513d4ed3ba73a096266e217460accb4bfcea398df852f499b23cd","first_seen":"2025-12-08T04:11:01.201469Z","last_seen":"2026-06-02T08:09:32.517077Z","times_seen":35,"resource_available":true,"data":null}},"time_used":467,"timings":{"blocked":113,"dns":71,"connect":8,"send":0,"wait":242,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css","fqdn":"maxcdn.bootstrapcdn.com","domain":"bootstrapcdn.com","tld":"com"},"ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.285Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bootstrapcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 04:32:06 GMT","end":"Sun, 05 Apr 2026 05:31:55 GMT"},"fingerprint":{"sha1":"E4:3E:65:D3:05:EF:8F:3A:11:69:6A:52:FE:6B:BB:A4:DF:73:4E:E5","sha256":"B9:7B:F7:C7:4B:6E:66:E0:D7:DA:7A:8B:0D:2E:8F:2F:E9:28:B4:AB:91:95:86:14:DF:44:15:CB:39:DC:EA:41"}}},"request":{"raw":"GET /bootstrap/3.3.5/css/bootstrap.min.css HTTP/1.1\r\nHost: maxcdn.bootstrapcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncf-ray: 9d715e6be95a76ef-OSL\r\ncdn-pullzone: 252412\r\ncdn-requestcountrycode: DE\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31919000\r\ncontent-encoding: br\r\netag: \"5d5357cb3704e1f43a1f5bfed2aebf42\"\r\nlast-modified: Mon, 25 Jan 2021 22:03:59 GMT\r\ncdn-cachedat: 07/03/2025 14:49:11\r\ncdn-proxyver: 1.31\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 863\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: 93a677859cccc76a96b51ca410f5a0d4\r\ncdn-cache: HIT\r\nage: 1886577\r\ncf-cache-status: HIT\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":122540,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65371)","md5":"5d5357cb3704e1f43a1f5bfed2aebf42","sha1":"08df9a96752852f2cbd310c30facd934e348c2c5","sha256":"31fbd99641c212a6ad3681a2397bde13c148c0ccd98385bce6a7eb7c81417d87","sha512":"7537e07bfce0a0c6293fb41b1f2e2058c106b1bb1d65e097cfb8ab22d8dc0b7b0f505b5fd24b856c3cff8b11bb02b4f19838cb5c399ecc7b9b78d8a4c8a195c9","ssdeep":"768:ayPGxw/jc/QWlJxtQZIuiHlncmzI4I8OAduFKbv2ctm2Bm8JP+eckOvS1Fs:Uw/o1wIuiHlncm28lDbzzPux","tlshash":"d2c3d7a0f11031ea7323c55a71d0ed872259a153e56a4eb7f22f25d88f886cb1773f1a","first_seen":"2023-04-05T07:46:17Z","last_seen":"2026-06-08T18:28:41.673453Z","times_seen":13859,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":18,"dns":13,"connect":1,"send":0,"wait":62,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aktifkaan-paylattersx.resmi-cxh4.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 5.2.0-beta1\r\nx-jsd-version-type: version\r\netag: W/\"2f3f9-YnOsGiPXmhIvAi9qh8W3XCz6/Do\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nage: 1563289\r\nx-served-by: cache-fra-etou8220064-FRA, cache-hel1410030-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 28778\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":193529,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65300)","md5":"6d9c6fda1e7087224431cc8068bb998f","sha1":"6273ac1a23d79a122f022f6a87c5b75c2cfafc3a","sha256":"fb1763b59f9f5764294b5af9fa5250835ae608282fe6f2f2213a5952aacf1fbf","sha512":"a3f321a113d52c4c71663085541b26d7b3e4ced9339a1ec3a7c93bff726bb4d087874010e3cf64c297c0ddd3d21f32837bc602b848715eadd8ef579bfe8e9a9a","ssdeep":"1536:xtGMGH2K5wlP7WIgHf73Z6LsKkVkpz600I4lp:xtGMZvkVkpz600I4lp","tlshash":"be1482d6f190303d98a7c2499591fefd866fa585d7024aaaf0137b6847ca7c30963ecc","first_seen":"2023-04-06T08:38:45Z","last_seen":"2026-06-08T18:15:27.2584Z","times_seen":4599,"resource_available":false,"data":null}},"time_used":351,"timings":{"blocked":142,"dns":49,"connect":45,"send":0,"wait":29,"receive":15,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/3.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/3.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 63491\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3137\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NhfAaeKQCpqiwD2HlNFBAsbYCzmoiDo3cICKDr22pDpiVm04pDY0iJfEBzMqsqqHV02rWbWTq8ttchW8fCLUWYZwB5LgyHBKrWY8FCVlQ702nhQg9jBhdfjteXuw02I92P4%2BVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bbe199e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63491,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 670 x 266, 8-bit/color RGB, non-interlaced","md5":"a4b40c09672bcddd282a713852b15a4f","sha1":"a3af025fec8ce7937779929e07c734f0d78f3cc8","sha256":"13f28a4c0dba23ffd0f1415842b101b41efaf1bad950207d396424611481cbfa","sha512":"c61c8405d9a42d1768317bdb4c818c4c497b3b6713aa962846d45f828b07c3712e883785aabf8a8cbcaf8944fa6320a152fc88a0e43c22e9137d153c1b466c59","ssdeep":"1536:yxzp3yJDU98BMHoTktYnVm+dwaMRILMYq7QjCf2n1OQ:cdyJDU6MITtkwwaMfkjQm1B","tlshash":"255302f71495f015abaec438850d81724e7b90a3563c8f929110f890e81b666de3fe77","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.518735Z","times_seen":185,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":90,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/7.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.307Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/7.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 197915\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3135\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sTrL%2BPJe%2BkqtuN72Fm5u%2B931pV9L7Pjsp7gxdyhe0mZbYXi5hz463WodsgumTtGCkRAyQvaXGRHZtfn%2BgEmPzmAWtIM%2B%2Fz9OtqDyKjtvazhFLuNM6L8LXhMJXjIGVTVmp3Dq3w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bce439e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":197915,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 720 x 315, 8-bit/color RGB, non-interlaced","md5":"e94d07b94f07716a5d917a9cbba5268a","sha1":"c848c54c62d0ebd0a016caff6a3f9f59781cf047","sha256":"6e1d4c9719bab7d00ae3cb5b9d586b9fe40d24282a9c7df73ac74834ff5c06d7","sha512":"5b8c1a5892acfbd8e01aec5a6c187149149301d48e3843476da72a48b90705caa6928653cc13d1dc15f6fc67938df56fd8372288bc9623723c2a2e1f2529c9fd","ssdeep":"3072:veXbEPsjHKnEnGP8f7UvB+Obh+CipJUmW7K28E+rRjQ8kaeR/4IZSnfT:veqXP8/Obh+CGu7d8XjR7AwSSnb","tlshash":"c11423feeb0ebaf6b000691a942df66dda7db5c8d676427ccc641092b03cc4c06db569","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.516353Z","times_seen":336,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":76,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/ajax-loader.gif","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/slick-carousel@1.8.1/slick/ajax-loader.gif HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 4178\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: image/gif\r\nx-jsd-version: 1.8.1\r\nx-jsd-version-type: version\r\netag: W/\"1052-ehqkNhQ5Y4K7FeX95XTZzc0haY8\"\r\naccept-ranges: bytes\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nage: 1431091\r\nx-served-by: cache-fra-etou8220099-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4178,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 32 x 32","md5":"c5cd7f5300576ab4c88202b42f6ded62","sha1":"7a1aa43614396382bb15e5fde574d9cdcd21698f","sha256":"e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b","sha512":"f0d7ada22a3eb3b2758198a71472fb240c74ce4ca09028076e23690c70b2339c6b2a40f9158dd71c52d953ef27bbcc0105b061bdc74fbb0ad0b304c7c6a04a38","ssdeep":"48:32e4MxZKDtivGOFkoajWKOwD2s4UYX034Hk4zHdwt4zeoAF5oM4JTp3uVj4gBFyj:32e4ZtyiqsdWAXWwXPF5oMcdUjVsmuS","tlshash":"e2810b9ce8a0f631c59936b78dd92d1a9adc5796ac3ccf5215986808f91f223028735d","first_seen":"2023-04-05T22:52:05Z","last_seen":"2026-06-08T21:21:53.751292Z","times_seen":42005,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/slick-carousel@1.8.1/slick/slick-theme.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 1.8.1\r\nx-jsd-version-type: version\r\netag: W/\"c49-gaQ0+U8rESTzIyu4bylE+C+yOsA\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nage: 2942106\r\nx-served-by: cache-fra-etou8220086-FRA, cache-hel1410025-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 866\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3145,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"f9faba678c4d6dcfdde69e5b11b37a2e","sha1":"81a434f94f2b1124f3232bb86f2944f82fb23ac0","sha256":"7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a","sha512":"ea52d475e439ba178c15b5a6dc23f6ef5975e11b17d71b71f89e71db27880e49220697954cd853aa28cc13b1a044a2a2ea10aaa2fc02a014e5441102db433c32","ssdeep":"","tlshash":"cb51e19856b3a746101694903be7472477cb70131629d8acff95638dcfcd0d8ead934e","first_seen":"2023-04-05T09:38:24Z","last_seen":"2026-06-08T21:01:49.084092Z","times_seen":25757,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":127,"dns":51,"connect":19,"send":0,"wait":14,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/4.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/4.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 142366\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3137\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d%2FPx7TTzAKMTOlW1xGfne4o18vOO0CY0Q9vJLnNkcNM5vGc70vP%2Frl%2FvPTn2ABQOebjaBboqpZ%2Bw7LnjqiBNz7QoBjx1Ml6SjEt4BSkpvhA1PAhzcSZuU6h8lMx8E4KApjUI2w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bce239e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":142366,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 669 x 286, 8-bit/color RGB, non-interlaced","md5":"96d943404d66d0110c28a03fd1d0f309","sha1":"c154ed6475f8ec1d2081f3f9c608cc961ff6da1e","sha256":"1ebb6b11be3f4edfe27126ec991b172d388fab45d68d490975008d9682ff9928","sha512":"17aa11734ce741e6cd1fb224462e8d3126c7604fd3b1ae520c261cdad8163ae5275b707eedb1b96322225a777e502a3736e70fc70e380641bae6c5176bf2e6bc","ssdeep":"3072:I+PWxGNnUgw2/wwGaR9fhLUh7Q+LOLiEzicGCxhoAgl1DbrQnNcdvJs0hSG8U:jWEFUgAwzuv6LiEzigxy0CvJRhSK","tlshash":"61d312061bba88bc50d36b1ed16dd357b7e3df152e462c0c266d18db0c6eb20998f99c","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.5193Z","times_seen":338,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aktifkaan-paylattersx.resmi-cxh4.xyz/ast/img/8.png","fqdn":"aktifkaan-paylattersx.resmi-cxh4.xyz","domain":"resmi-cxh4.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resmi-cxh4.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 18 Feb 2026 20:31:21 GMT","end":"Tue, 19 May 2026 21:30:06 GMT"},"fingerprint":{"sha1":"B3:62:31:62:34:19:61:E9:03:9E:D1:BC:E6:38:B1:54:D9:36:31:A5","sha256":"2C:27:46:62:9C:56:12:05:0E:C3:7F:B3:70:1C:7F:E7:03:D5:EC:4B:B7:B9:BE:FE:B8:EF:B6:15:7D:94:23:50"}}},"request":{"raw":"GET /ast/img/8.png HTTP/1.1\r\nHost: aktifkaan-paylattersx.resmi-cxh4.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 174958\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jan 2025 19:41:40 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nage: 3137\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HTQn6P6eDjIuatq0jmx6AHtSQ7KpJ38WAnXk3aZnKWdpz%2FD4fUhbcqTWuTpuVLnK38LCoyWG9DITHyroD98Gtb9uYKLF%2BRXJQm9STFbYZYxdzDfo%2BrFsyRqQZg2HbPEmnw%2B%2F%2BQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d715e6bce479e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":174958,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 717 x 306, 8-bit/color RGB, non-interlaced","md5":"5e37c6c4d157f8c07c5bbbb01e08b87b","sha1":"4297ebea3f26da8d6e1e311bbbef04d370cff5fe","sha256":"0de749a246a0c48cb5e28348e0061e8f3dd68c3080e00adeb578fa40dfdacf13","sha512":"ab041461f8614bc63e7bd6e3e72bf67b72799a7e7c7c17c47118bd66f5e368598dafb7f94e8a80c328171e0b61c5888db46cc6732fa676626f3971c1a77ec89d","ssdeep":"3072:1Gws9DHcpIhSuHh+5PTFiFwHqAsIqEt8izdJgTk8Jq2C9OsD+oRIceDPdl4CDfDM:tQDHcpOSuHSR8wqAvqa8izdKlU9OsD+8","tlshash":"fa041270e9f86d177b89a5468c0ab160afe99420b681cbd7540d07b840ee0f6d87dfed","first_seen":"2023-07-24T08:49:31Z","last_seen":"2026-06-02T08:09:32.525508Z","times_seen":181,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":79,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-04","alert":"Sinkholed","trigger":"aktifkaan-paylattersx.resmi-cxh4.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTKNFg_0z0vGpgLCKth8T4U3fb-hw1sTAxhsiQOLdJLag\u0026s=10","fqdn":"encrypted-tbn0.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.143.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aktifkaan-paylattersx.resmi-cxh4.xyz/","date":"2026-03-04T13:53:44.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /images?q=tbn:ANd9GcTKNFg_0z0vGpgLCKth8T4U3fb-hw1sTAxhsiQOLdJLag\u0026s=10 HTTP/1.1\r\nHost: encrypted-tbn0.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aktifkaan-paylattersx.resmi-cxh4.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/png\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"images-tbn\"\r\nreport-to: {\"group\":\"images-tbn\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/images-tbn\"}]}\r\ncontent-length: 10756\r\ndate: Wed, 04 Mar 2026 13:53:44 GMT\r\nexpires: Thu, 04 Mar 2027 13:53:44 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Fri, 18 Feb 2022 08:10:19 GMT\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10756,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 576 x 303, 8-bit colormap, non-interlaced","md5":"21764eb2ac1f91f16aa47903acee9a68","sha1":"632734ff2accd41252f4004806dcc399cb81489b","sha256":"9ad97aa78c757b63fe0aa1a1e2bbf03bfc54694c6fbe813dc33549f361350046","sha512":"920162f257a816ac56f76a4711b02aa64fe71c2d7e922a412339d3c47a3048d94760ba549bbaad18c8ead91046428a9ea173548140bc0611033ff4c72df0fae1","ssdeep":"192:suwdc144moTyhJHZvDACq/iqlt+2OKrnpKciX:N44qh59Azv+2LOX","tlshash":"a122bfd8ee7db8fafb82a77c92418362706c7fb4f0d329224c95466768d0587c929990","first_seen":"2025-12-08T04:07:53.595819Z","last_seen":"2026-06-02T08:09:32.522407Z","times_seen":66,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":56,"dns":41,"connect":21,"send":0,"wait":32,"receive":3,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}