{"report_id":"77fd279e-9023-407d-a2ce-c2e86a4a38a0","version":0,"status":"done","tags":[],"date":"2026-06-28T11:50:29Z","url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":0,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"title":"Thrill trails","dom":{"size":111949,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (22937)","md5":"ca690e20df1010108226ace459caa350","sha1":"467ba8f275c90509b842d771a8637c0eb9f2a8bc","sha256":"cd63cd04f9240220e751db3096a5102c14f8876085b90e40f92e9b3fd2d4213b","sha512":"80d986ce76cf8d6c47593029dc7899ca78d19f171da26d513137f9fb78136c06c643ace6eab39854d593e2f4546106bd5a2cacf7fd43348e49175c0a6b7690bf","ssdeep":"1536:1ZvuapwYMIuqcd5Q2OZwD0MNlbCFVge3mLSDId9+Siobr7mdT:n5ZFId9+Siobr6dT","tlshash":"e2b3b71093b140b8f45b0b69a5457718ba40da178a094efbb0bee264e7cd97f25b370f","dom_hash":"domhashf5cc9274b449eb638a73dd0e4cbc5ce9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":0,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T11:50:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"dsfgfgf54sectechotokiralama45fgh.com","ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"domain_registered":"2026-06-24","domain_rank":0,"first_seen":"2026-06-28T11:50:29.830162Z","last_seen":"2026-06-28T11:50:29.830162Z","alert_count":12,"request_count":12,"received_data":1896500,"sent_data":7520,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress Site Editor","description":"Full Site Editing enables users to design and customize their entire WordPress website with a block-based editor.","website":"https://wordpress.org/documentation/article/site-editor/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"WordPress Block Editor","description":"Sites using the WordPress Block Editor, also known as Gutenberg.","website":"https://wordpress.org/gutenberg/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"WordPress:6.0","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-includes/blocks/navigation/view.min.js?ver=009e29110e016c14bac4ba0ecc809fcd","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"16ddac019d03f2eed6d4d199fd1d3158","sha1":"90bd318d0c2127579544c78c479508ae7652c2ac","sha256":"43605db4453aed3c966dda36f501cd25d35d7790e34f4c395c5259e69d89bc19","sha512":"a0e758f64094c01b2626c4754f7408a2836e77b42fd1b6b12e6a992a5c0653296a0551c312695683dc2d983799dbbb768d676229d558a7e1727ce6f79062031f","ssdeep":"192:TyiCpx/5byOYIMUuJu388nmnhYlYfdo/D9QBVrV:TxCf/nOUuQ23","tlshash":"3402c7d8b76c39b204efa2b7b41f970ca6361445b44a8864b436dcc41e3dec52267f3a","size":8334,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-06-28T11:50:34.661291Z","times_seen":45,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/uploads/2025/06/thumb14.avif","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.836Z","timestamp":1782647405836,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/uploads/2025/06/thumb14.avif HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: image/avif\r\nContent-Length: 301634\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: \"69f7b67b-49a42\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":301634,"size_decoded":301986,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"f2a243331c1576884642fbe343374080","sha1":"36284ecee35ef231b09631aaf0ce263dce6c1922","sha256":"4cb3745d925e382a01fa515e23c632032a12c5a1e263e1dc071933d33b8a47a6","sha512":"c746d2f888fc6926fc0831020a6c6b13107139aa76774ca7e6d6eb82149da0d01e07321e40433544fc1ab56e46fa547733e2437083b70cf63ef6e8ba59ddada4","ssdeep":"6144:Of2GS8SWWrZW+ZsAhJcXGrI+5by1VcUt6AqLNIx+ggsMiRm:1f8FqW+Z/hi4IWubcC6VIogZm","tlshash":"355423d9ba90f02eddba52b86c104e9f3d538a3d8654d6e702bddf2a512bf22d742140","first_seen":"2026-06-28T11:50:34.656407Z","last_seen":"2026-06-28T11:50:34.656407Z","times_seen":1,"resource_available":false,"data":null}},"time_used":209,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":70,"receive":139,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/favicon.ico","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:06.091Z","timestamp":1782647406091,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:06 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":153,"size_decoded":315,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"4c7bd54a3dd9a0c70768e64bc094f643","sha1":"7f21221c9dd3b3b0d46e8866c751874a477ea534","sha256":"acd1cc09b595be3da94dfcc1c158f7c283706dd20e59205432fc56c46c61c45b","sha512":"fcb73220d154debe445c5459b11adaf6ac9f7b724f50b3a49fb195bb8be519ce0046db15280c528b2477c1640c591d27b03b3f071395c4818540c825f13b3395","ssdeep":"","tlshash":"b2c02b2d35137c4cc563317422c37090d0c78337a4ba45228400801731cf2998ac339b","first_seen":"2026-04-11T11:47:43.441095Z","last_seen":"2026-06-29T09:19:11.720806Z","times_seen":190,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T11:50:04.891Z","timestamp":1782647404891,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nVary: Accept-Encoding\r\nSet-Cookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE; expires=Tue, 28 Jul 2026 11:50:05 GMT; Max-Age=2592000; path=/; HttpOnly; SameSite=Lax\r\nETag: W/\"69f7b67b-1b1af\"\r\nX-Debug-Internal-Path: /internal-variant/wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE/index.html\r\nX-Debug-Document-Root: /var/www/html/variants/\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WordPress Site Editor","description":"Full Site Editing enables users to design and customize their entire WordPress website with a block-based editor.","website":"https://wordpress.org/documentation/article/site-editor/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"WordPress Block Editor","description":"Sites using the WordPress Block Editor, also known as Gutenberg.","website":"https://wordpress.org/gutenberg/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"WordPress:6.0","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]}],"data":{"size":111023,"size_decoded":16198,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (22937)","md5":"d8f840f905344a7e5da8f6b91c8fdfbd","sha1":"3cd814fd1878837d2ddb4cec3800b12e025e1568","sha256":"54c2e317b13892e7122c7feb23538ae2c25fd25c8bd86a43b0d4c33b6c5eb57e","sha512":"d5444bb83a787b40a8ed0907842811e8d0b7a609b79ce538dd328590eea0a03a718dc48179cc85645485754b96597fcd8eeedf68c2542516f621bf7360ad5c21","ssdeep":"1536:sZk4apwYMIuqcd5Q2OZwD0MNlbCFVge3QLa2TmENz1VSGpid3:UgZaTmENz1VSG0d3","tlshash":"d3b3a71093b150b8e45b0b7995456718fb40de138a094efbb0bee264e7cd97b26b370e","first_seen":"2026-06-28T11:50:34.65945Z","last_seen":"2026-06-28T11:50:34.65945Z","times_seen":1,"resource_available":true,"data":null}},"time_used":505,"timings":{"blocked":-1,"dns":227,"connect":29,"send":0,"wait":84,"receive":30,"ssl":135},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/themes/extendable/style.css?ver=2.0.17","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.581Z","timestamp":1782647405581,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/themes/extendable/style.css?ver=2.0.17 HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: W/\"69f7b67b-1d2c\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding, Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7468,"size_decoded":2933,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"b9c89ee0c8b690fd76da9d664eb810be","sha1":"91e61eae19ccd6001c586f57157c1a172bc9ca1e","sha256":"c9e40979d998980cc8fde56e68b80dadacc3d44e80d25368474f2cc8da82e577","sha512":"5772e583cfde28f198ba0d5b2cad5b1f69f7bf8c4f3e68871509c624fb3c69d789558a0751d3bf426060277550a8e7d18a7ea1f413afebb4fa8e0831dfb75dac","ssdeep":"192:EGxjwEe042hSeHGzCzYzSz+w9X4ry3lwCzOz9znszTqOWkZizc:0PgyQ+wXbkFnu1WMmc","tlshash":"0af1d541af30aaf525fac7360a5da188f66bc3160f1539c4e1e6c16461cce7801bef8e","first_seen":"2025-02-19T13:35:18.581468Z","last_seen":"2026-06-28T11:50:34.660624Z","times_seen":36,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":-1,"dns":0,"connect":29,"send":0,"wait":59,"receive":0,"ssl":108},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-includes/blocks/navigation/view.min.js?ver=009e29110e016c14bac4ba0ecc809fcd","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.584Z","timestamp":1782647405584,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-includes/blocks/navigation/view.min.js?ver=009e29110e016c14bac4ba0ecc809fcd HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: W/\"69f7b67b-208e\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding, Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8334,"size_decoded":3203,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8330), with no line terminators","md5":"16ddac019d03f2eed6d4d199fd1d3158","sha1":"90bd318d0c2127579544c78c479508ae7652c2ac","sha256":"43605db4453aed3c966dda36f501cd25d35d7790e34f4c395c5259e69d89bc19","sha512":"a0e758f64094c01b2626c4754f7408a2836e77b42fd1b6b12e6a992a5c0653296a0551c312695683dc2d983799dbbb768d676229d558a7e1727ce6f79062031f","ssdeep":"192:TyiCpx/5byOYIMUuJu388nmnhYlYfdo/D9QBVrV:TxCf/nOUuQ23","tlshash":"3402c7d8b76c39b204efa2b7b41f970ca6361445b44a8864b436dcc41e3dec52267f3a","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-06-28T11:50:34.661291Z","times_seen":45,"resource_available":true,"data":null}},"time_used":140,"timings":{"blocked":-1,"dns":0,"connect":29,"send":0,"wait":57,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.595Z","timestamp":1782647405595,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0 HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":153,"size_decoded":315,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"4c7bd54a3dd9a0c70768e64bc094f643","sha1":"7f21221c9dd3b3b0d46e8866c751874a477ea534","sha256":"acd1cc09b595be3da94dfcc1c158f7c283706dd20e59205432fc56c46c61c45b","sha512":"fcb73220d154debe445c5459b11adaf6ac9f7b724f50b3a49fb195bb8be519ce0046db15280c528b2477c1640c591d27b03b3f071395c4818540c825f13b3395","ssdeep":"","tlshash":"b2c02b2d35137c4cc563317422c37090d0c78337a4ba45228400801731cf2998ac339b","first_seen":"2026-04-11T11:47:43.441095Z","last_seen":"2026-06-29T09:19:11.720806Z","times_seen":190,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":33,"send":0,"wait":62,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/uploads/2025/06/thumb12.avif","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.835Z","timestamp":1782647405835,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/uploads/2025/06/thumb12.avif HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: image/avif\r\nContent-Length: 160429\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: \"69f7b67b-272ad\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":160429,"size_decoded":160781,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"f0aa5afb48a80e375321b841fb1464ae","sha1":"f335854275ca04a8f9fbe05fda9a7bfcb4e6d2c8","sha256":"7ce3ec8789c8bf020f01701452cc1bf077c953774f37c31441ef62bfbefadd23","sha512":"41b07078408b19087ec4a0b8839f69246578195738b9eb9220fe563d37b011cbab57e52549b38528fc9973b45eaca7a6f5546ac76efdb87628362f68fdca61d0","ssdeep":"3072:Q4yBL1wlTA0xU4u9/DQW1lXqiKZB04IS1fS1OjM+zqpGmacCEN+s2JoeI+SSh125:6Lwxxxu9/DPeLZB04jfoyMBpZaJEN+sH","tlshash":"78f312ed9d25361ee8d7a23aa919481e3e730bf097d1b134a675733a0b853d54b002ef","first_seen":"2026-06-28T11:50:34.662448Z","last_seen":"2026-06-28T11:50:34.662448Z","times_seen":1,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":97,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/uploads/2025/06/thumb16.avif","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.838Z","timestamp":1782647405838,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/uploads/2025/06/thumb16.avif HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: image/avif\r\nContent-Length: 610516\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: \"69f7b67b-950d4\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":610516,"size_decoded":610868,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"c0c84e1f3c3f0d69bb8b61a45c07f542","sha1":"3fefb123d1457f3986cf41b4b384c485198b91de","sha256":"a306b6248737c817f7cfdb0b2e49f24693e051b13b569e0df2c4973b6f2ce9a7","sha512":"01ade5357a4e8abcb3460ddbf4198151e1864035293b80d67ec994d05a3d564775fa09c9c9da70012b0151897604ad63d39f0d889580b4eb5c6032c15371162f","ssdeep":"12288:PpkxldJDivylpaIzQvc/JNYW6CjzPSysL6gH26:xcDivylTzQv3V+PSysL6gP","tlshash":"08d423c8611e72e0ff99097c25c1ffd79212993f6606b6aea29536bc1d8f4c650270b2","first_seen":"2026-06-28T11:50:34.663497Z","last_seen":"2026-06-28T11:50:34.663497Z","times_seen":1,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":174,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-includes/blocks/navigation/style.min.css?ver=6.0","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.579Z","timestamp":1782647405579,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-includes/blocks/navigation/style.min.css?ver=6.0 HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: W/\"69f7b67b-385f\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding, Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14431,"size_decoded":2362,"mime_type":"text/css","magic":"ASCII text, with very long lines (14431), with no line terminators","md5":"82f10bc2801c388e86cf81665f92161c","sha1":"8e2701510469be2398f742bfa1005679c3574b52","sha256":"475f6c9f1587fe3445028d5a1c75c6cbcecba0962ffa9d7e047c3ef24ce02540","sha512":"e441865d4cbc0a3e896076ae2df69f7eba391c8db9c62a5e0583b13c7af631fdd055bc6367f252b1aaff62c2d47730b843e42c5d15be13d3d24eb6f306d350d4","ssdeep":"192:qx7iRMFeyaiYLKuUxuOY731gmyfbglnK61cONLsT7jT7sAA8cKlIQPRWEeNm:CsMFeyZ09Fgmyfbglnf1rNAbaSd","tlshash":"5a529dc04bb49cf4a9bb933b6e5490184637e902c5497bd5a0f3e294b68cb545be3f0b","first_seen":"2023-04-15T21:42:23Z","last_seen":"2026-06-28T11:50:34.664615Z","times_seen":14,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/themes/extendable/assets/css/deprecate-style.css?ver=2.0.17","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.583Z","timestamp":1782647405583,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/themes/extendable/assets/css/deprecate-style.css?ver=2.0.17 HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: W/\"69f7b67b-d54\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding, Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3412,"size_decoded":1471,"mime_type":"text/css","magic":"ASCII text","md5":"7d1dbbef43c231e103b076b32e91e85b","sha1":"d6e83c8f1dc94cc290e1b4e5eebefb3a3db0a7e6","sha256":"327a017e5c3f05fcf4314f5305aa7f72db643b2101f889f9fdc1222de42c910b","sha512":"a6788caa32464197943e9becb8d4f922c77f7ea8b2f678370338161cdb6be60a015fe84427f53a60f60fee60b79051c86e08df3ed14bcab249c49b300fa57324","ssdeep":"","tlshash":"5361439a3f718ef00aefd7a68ddd5654d69d2404c798aec9f042c019b10c9a50aedf0f","first_seen":"2026-06-28T11:50:34.666246Z","last_seen":"2026-06-28T11:50:34.666246Z","times_seen":1,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":32,"send":0,"wait":60,"receive":0,"ssl":103},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/themes/extendable/assets/fonts/inter/inter-variable.woff2","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.808Z","timestamp":1782647405808,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/themes/extendable/assets/fonts/inter/inter-variable.woff2 HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 326108\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: \"69f7b67b-4f9dc\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":326108,"size_decoded":326460,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 326108, version 4.0","md5":"aed59f2e3de6dd2e59a887b0289222c9","sha1":"02112da6fe1133b81cc961dc35e5c8981acad376","sha256":"50cc74d8bfddf89e9f707548c1a95c8b8ea0f630afecb2c016ea3434f0eaa409","sha512":"894f206dd9918f48a5672f1b89c8fae6e68c7a05b0abe98c3e5dac24da7ea538c6dcd3903b5699014cf37a85199b40c66521dbec802b342cb7f8e1db076ee0ba","ssdeep":"6144:EkYW1MhKxiFuvYRL0P+oF42Wr5i5g6zQwRxeCQ+PWO4WA01Ctqt6Xe:EkYWehKxiFyYM+oF42Wr5i5g6zQwRxpj","tlshash":"ae642395aaf4e69bd97d053c1c05be2fc4c701103b52de8b8e495a1fd22d8c1eace1a7","first_seen":"2023-12-03T21:17:24Z","last_seen":"2026-06-29T05:34:12.49291Z","times_seen":947,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":56,"receive":103,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dsfgfgf54sectechotokiralama45fgh.com/wp-content/uploads/2025/07/thumb10.avif","fqdn":"dsfgfgf54sectechotokiralama45fgh.com","domain":"dsfgfgf54sectechotokiralama45fgh.com","tld":"com"},"ip":{"addr":"107.189.21.1","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://dsfgfgf54sectechotokiralama45fgh.com/","date":"2026-06-28T11:50:05.832Z","timestamp":1782647405832,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dsfgfgf54sectechotokiralama45fgh.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:17:36 GMT","end":"Tue, 22 Sep 2026 11:17:35 GMT"},"fingerprint":{"sha1":"9F:64:6A:74:FA:5F:B0:F1:86:87:22:1E:B2:51:B5:C9:9E:1E:59:F4","sha256":"A1:9B:49:98:3D:94:EE:0B:1D:58:A4:4F:53:FC:EF:F2:33:9B:D7:58:E9:98:D4:F9:CB:35:60:20:74:CF:D5:19"}}},"request":{"raw":"GET /wp-content/uploads/2025/07/thumb10.avif HTTP/1.1\r\nHost: dsfgfgf54sectechotokiralama45fgh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://dsfgfgf54sectechotokiralama45fgh.com/\r\nCookie: campaign_variant=wp_v2_en_US_activities_pKHOLaZTLxHG0wMXD7twsVaBbQJC5DcE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 28 Jun 2026 11:50:05 GMT\r\nContent-Type: image/avif\r\nContent-Length: 348553\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 20:56:27 GMT\r\nETag: \"69f7b67b-55189\"\r\nExpires: Mon, 28 Jun 2027 11:50:05 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nVary: Accept-Encoding\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":348553,"size_decoded":348905,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"94935560d95e0c16322cc89aa2ef44c0","sha1":"f15ae31c3c38270bd1e8ed3bb93c3524a16b6e22","sha256":"05903f7845316bfe49c22b9005cd696c87b075eb5ef86b5ce4f97d6b61c1b1a3","sha512":"e7cb93cd5fc3de8a5d862df65d45750e55f8c5d36f84404eebefe33e7c97908017a9d859e2452274e3fcaefd43dae3b663936817cfb9075a8705411768117620","ssdeep":"6144:upL4ZvX/xlN2L4V4i6WEaGRpHSGHuPg/x5ABLog0FloLVu/+NXlMoAjAqpvf7:wLclN2L4V4hWhKy8uPg/xOTo/A89z","tlshash":"607423f6c5b68444d2dea07d88bf58448bf34a5d394ab915203f92760e856c43eafccd","first_seen":"2026-06-28T11:50:34.668126Z","last_seen":"2026-06-28T11:50:34.668126Z","times_seen":1,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":124,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"dsfgfgf54sectechotokiralama45fgh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}