{"report_id":"7a8ede41-88ba-47fe-ac0c-93ed222b3823","version":6,"status":"done","tags":["dropbox","phishing"],"date":"2023-12-04T21:28:26Z","url":{"schema":"http","addr":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","domain":"pigiabdulrr4602.workers.dev","tld":"workers.dev"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"final":{"url":{"schema":"https","addr":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/f79fccc3-e45e-4c01-b1ec-db0983f03470","fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","domain":"pigiabdulrr4602.workers.dev","tld":"workers.dev"},"title":"Share Point Online"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:07:30Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":12905,"first_seen":"2013-08-16 11:51:31","last_seen":"2023-12-04 08:14:01","alert_count":0,"request_count":1,"received_data":31010,"sent_data":407,"comment":"","tags":null,"fingerprints":null},{"fqdn":"1.bp.blogspot.com","ip":{"addr":"142.250.74.161","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2000-07-31","domain_rank":8403,"first_seen":"2012-05-21 15:44:19","last_seen":"2023-12-04 05:22:49","alert_count":0,"request_count":1,"received_data":78147,"sent_data":507,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-12-04 06:42:16","alert_count":0,"request_count":1,"received_data":1925,"sent_data":426,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.iconscout.com","ip":{"addr":"104.18.29.243","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-06-01","domain_rank":43939,"first_seen":"2017-01-06 18:08:07","last_seen":"2023-12-04 15:08:44","alert_count":0,"request_count":1,"received_data":6908,"sent_data":433,"comment":"","tags":null,"fingerprints":null},{"fqdn":"codesandbox.io","ip":{"addr":"172.64.154.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2016-11-23","domain_rank":95492,"first_seen":"2017-04-04 08:52:33","last_seen":"2023-12-04 02:18:41","alert_count":0,"request_count":4,"received_data":87857,"sent_data":2009,"comment":"","tags":null,"fingerprints":null},{"fqdn":"contractso.web.app","ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2019-01-08","domain_rank":0,"first_seen":"2022-07-30 00:35:46","last_seen":"2023-12-04 15:08:44","alert_count":7,"request_count":8,"received_data":101942,"sent_data":3329,"comment":"","tags":null,"fingerprints":null},{"fqdn":"maxcdn.bootstrapcdn.com","ip":{"addr":"104.18.10.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-25","domain_rank":724,"first_seen":"2014-06-18 02:37:31","last_seen":"2023-12-04 06:43:52","alert_count":0,"request_count":1,"received_data":145801,"sent_data":485,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ka-f.fontawesome.com","ip":{"addr":"172.64.204.20","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":3598,"first_seen":"2019-12-17 07:36:13","last_seen":"2023-12-04 05:28:09","alert_count":0,"request_count":2,"received_data":89109,"sent_data":1093,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2019-02-08","domain_rank":0,"first_seen":"2023-05-11 20:41:50","last_seen":"2023-11-18 15:36:04","alert_count":4,"request_count":2,"received_data":1545185,"sent_data":1002,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kit.fontawesome.com","ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":1868,"first_seen":"2019-12-16 20:51:31","last_seen":"2023-12-04 05:23:47","alert_count":0,"request_count":1,"received_data":12501,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.66.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":634,"first_seen":"2012-05-21 19:28:02","last_seen":"2023-12-04 08:46:32","alert_count":0,"request_count":2,"received_data":118521,"sent_data":836,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-20","alert":"Office365","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Office365","link":"https://openphish.com/","meta":null},{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-20","alert":"Office365","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Office365","link":"https://openphish.com","meta":null}]},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":[{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-11","alert":"Other","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/favicon.ico","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null},{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-11","alert":"Other","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}]},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"8824c1ed3c9394c2a202c05912e06ce0","sha1":"181047bcbb78e9fc4f2b03ce727b77b553748a14","sha256":"cc5ddac992d130be12a60f84e7ac19c51c3a6a196872ea35739d7d8aff7f9fb1","sha512":"4c664c6149b322cbea5fdf6fb82d5ab328a4331e7479101c326978091117fdb44eb2cb258c70f45b88511fa217ae16c150e7e79f5db99fb7783993c190cb3f3b","ssdeep":"6144:gAlOPUhJSsGadSgdtcoHf/smcd5KcGHf8rHm6JTfrrGhg9dLBUZsctD1oa0pgLTp:OhAyHYKTwmbzwcK3wdafof0uDcCBNJW5","tlshash":"423572fa91888855b662b2fb971bf0e04b2ab1a45157b19f56ce3f1006dc2b40b3f1f5","size":1118397,"data":"","first_seen":"2023-05-12T13:19:48Z","last_seen":"2024-08-21T08:55:33.432882Z","times_seen":230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"d25ae6e182075d06aec6f25e8efa4596","sha1":"5a3c61593a9fbe8af8f042b9ec816da7e641fbd0","sha256":"d5d57cf7ddfcd2cd93a384257f241f717f260fd8aa28369a757058126ee19ccb","sha512":"eabbacd188b79b71f6b25513651bb1e1ac7fe0e7213800098e27671f2368fa51c6b67a1ff10dbafe03a19aa979df1add9b96c89e8dc0491d1bba0a7eb0152fea","ssdeep":"6144:CWBICzVRH0de7JQQluMeQwMmR6jVkadiqO2c92JhbVyQsMBc8ks+XHVLXgU4qEqa:CE527k2LtJI","tlshash":"ca3532f39fca477bde1b3596c63360b69752304f3728819b04fb88cb354c49652b6a29","size":1117273,"data":"","first_seen":"2023-05-12T13:19:48Z","last_seen":"2024-08-21T08:55:33.43157Z","times_seen":229,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"c0cad952c79b940a2755676164ae4676","sha1":"c9ffb8a5257b7a830104a6d4d8b26ae1c29c1251","sha256":"977ac1f8201efc0b843e4aa853d93df4be987eecb7c1c15ca961d864c887e4fb","sha512":"fad2e78ab7b9ed24172ac9391a8882a31f94630a07d8ab40b5d53f3c8820e173667fa8c0fdda387d19cff0d5788f2c121f80dd58450c22cbd301026c7623ad80","ssdeep":"96:NwC4Uc/7lpjGlFznNzjoetLj2MOhFRQ52CmAT7xrUKlEZTJrrldRGlhk:iCdc/xRQFznNzjoe9iNhTK2ITtHlIBrv","tlshash":"e2c1a8903be03890076b4bd2af39a5d0dd2c6c9a28e44c87d301ecd865d0fdada96e71","size":5914,"data":"","first_seen":"2023-05-12T13:19:49Z","last_seen":"2024-08-21T08:55:33.432155Z","times_seen":229,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"422b4e8d8a64b6de3640d6b6379eb64f","sha1":"7cb9becd001d76d31c2d80f426eff21e64d80502","sha256":"0fc7a5d5509027c155a3abb9b6227cb428ae485c5806f6242e0c9bbd45159c6a","sha512":"c99e6a8e2d40ec4f0058cdb8edf486217aa6a1c5ce4040d6c007c22b752f93642d9631b72653158a28471f5ffa11deff6b395247605e36c0f2e012c0b3f1a015","ssdeep":"1536:K0qt+nEd7mfPeCPExoFDzsrRqUF9+SgE4/CPnsy:K0o+LnpVy0K3gOsy","tlshash":"2dc3bd770d4de222a651bc9fb639e05ce13afd89c2454f16f375a88bd3cc500a79ea84","size":128324,"data":"","first_seen":"2023-05-12T13:19:48Z","last_seen":"2024-08-21T08:55:33.429278Z","times_seen":229,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit.fontawesome.com/585b051251.js","fqdn":"kit.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"55d343a40c7166a79fd314f13cbb2e93","sha1":"96904a849c32ca220e0aaa2ae3e81cf2b5cdf764","sha256":"a1f75d6278713a84a8f28a392c77ca8a6a7c32bf14314d4a34a6ce2f06cfdf7a","sha512":"518ac396e7f82899cab4a6e3cb68116f2b599d680d015a1a8024926bc39e9a5d3ed68935b2150da33ad41a9103e4cfd5031a7e89036901c972eee257546bb1c5","ssdeep":"192:GO3pHufQPTACpF4Pvhzz6E/ra/sb4nZIPWfz3JBGvh3e1Q5l8h6LDeFTjC0:GdRCchzzYfnqejah3e1Q5l8h6vb0","tlshash":"d732c2997694f1b646ab7160c03f620bf276352a3006d020e25dd9e4ac7dd6e9233f2e","size":11893,"data":"","first_seen":"2023-11-29T01:32:53Z","last_seen":"2025-11-14T14:58:52.675593Z","times_seen":7510,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"572cb94037fffc2a0a53b465972e15f1","sha1":"0d679b041a7c1ca45cc99e2d229fc2b86762838d","sha256":"6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35","sha512":"f7c4db7986d362b58ff4b4646cdeb71992c0ce28949773c4471915f2cc8828329445777e228ef248f508f721a33dfea3d5694bc7ec18dc6c00134ee23155ff32","ssdeep":"","tlshash":"8290045c31005004c1773cd0501754d55030443330401d411d45d4444d7151c033d45c","size":34,"data":"","first_seen":"2023-04-11T21:16:40Z","last_seen":"2026-05-10T12:28:43.770389Z","times_seen":83449,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/f79fccc3-e45e-4c01-b1ec-db0983f03470","fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","domain":"pigiabdulrr4602.workers.dev","tld":"workers.dev"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"bb59afc4110a33ae9328c41682cbaef9","sha1":"b97f9c169824c90c818ad156297724e3f26e9b22","sha256":"32c4c4d6855b3302a2c5b49067cc656be24f2831817cd389e91bc2836364f968","sha512":"88221ede82731945f2e9e62df84ba7a8b82bf3f3c5f324716d56a638e88f8fcbff529c4c0994bf250dc279b067386cce788d450e0ae5ba28b80db6ae1d46af84","ssdeep":"6144:lfiDmTFIKpWmZ6/QdMfKg8NI2d4xeUPhouxtf:lfiUIKpWmZ6/QdMfKgII/zPhosJ","tlshash":"7a357210cab0d9db322a6480bdf999929a053c5e0d1811c2fa384f3e78dd5f7975eaf1","size":1157243,"data":"","first_seen":"2023-05-12T13:19:49Z","last_seen":"2024-08-21T08:55:33.430187Z","times_seen":230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","size":85578,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-10T12:30:52.046937Z","times_seen":277814,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.1.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.66.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e071abda8fe61194711cfc2ab99fe104","sha1":"f647a6d37dc4ca055ced3cf64bbc1f490070acba","sha256":"85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf","sha512":"53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65","ssdeep":"1536:9NhEyjjTikEJO4edXXe9J578go6MWXqcVhrLyB4Lw13sh2bzrl1+iuH7U3gBORDT:jxcq0hrLZwpsYbmzORDU8Cu5","tlshash":"3183d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f058c5d57eb8a8e507bf2c","size":86709,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-05-10T12:32:05.117956Z","times_seen":141116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-05-10T12:28:41.45176Z","times_seen":701674,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"511c78adf5d0c2d786d7f5833739e701","sha1":"25024d5970d6cb43482cad24305b7a97a146be9a","sha256":"df2d77bd563959a6f891eed312790f3ece0684037aa89f770633d711d7964d6a","sha512":"544ce62b393698235704967f3766ba3ea939243d8995bc8b5b7d64169e741fb1d04f76a79e0574d1b86b859b0971b50489213719a47911c89fcac5a577d46b2c","ssdeep":"6144:lAlOPUhJSsGadSgdtcoHf/smcd5KcGHf8rHm6JTfrrGhg9dLBUZsctD1oa0pgLT3:FhAyHYKTwmbzwcK3wdafof0uDcCBNJWn","tlshash":"313572fa91888855b662b2fb971bf0e04b2ab1a45157b19f56ce3f1006dc2b40b3f1f5","size":1118464,"data":"","first_seen":"2023-05-12T13:19:49Z","last_seen":"2024-08-21T08:55:33.434371Z","times_seen":227,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"3d1442ff895a8a845609aaedd021450c","sha1":"471b665438c88bc441879da3c8d18288f1a6f81e","sha256":"be56e6f1d262accfe103c0dcbeabb60ac9d5c661e6822b85a6cf6d8db8108165","sha512":"4ba8120d443b0d8d69c300f2e616fa88aa96300653749e7e6941655aeca195a4c5e4aae212ea9ed593698d58d5ed1ffbbbcd2824ca322d5c4ef2bad63468bb26","ssdeep":"6144:pWBICzVRH0de7JQQluMeQwMmR6jVkadiqO2c92JhbVyQsMBc8ks+XHVLXgU4qEql:pE527k2LtJn","tlshash":"0e3532f39fca477bde1b3596c63360b69752304f3728819b04fb88cb354c49652b6a29","size":1117419,"data":"","first_seen":"2023-05-12T13:19:49Z","last_seen":"2024-08-21T08:55:33.437094Z","times_seen":229,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"f565368f6c09aacc3cdd501799d970fb","sha1":"54c8e7b6be850f6e5ec5b638b538a0f6f46a2393","sha256":"77d5b876be6e414673aa476c24e614c1330750bd97dfe9f2257020d2a031d7c5","sha512":"fd1ba950e15b6d7b9402b57d121718005c83276bddbb381d65b00379a8bde870bdb7e05a0b24f05c2c7e6a1588ea692eb5a5d7b3e9746cc300facb6ec51b71d7","ssdeep":"","tlshash":"8ce02b972e68c05f113249cbb1f0787e6821ba0b3584c9ce847a82751ff13dd693b428","size":421,"data":"","first_seen":"2023-05-12T13:19:49Z","last_seen":"2024-08-21T08:55:33.437804Z","times_seen":232,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2c5f45e8b9a983f2c0c93ecbd0ac3990","sha1":"4dcab27bbd2c74381a275e7f509b6c1ad0ca8c9f","sha256":"01fddc0e51a6b50df2b75799092f0ce662b09d17ec49ec9e11f5bcc90c9915fd","sha512":"ccdfbecf694f9690571d3a642f0190248011c6424444a2b556d43b851a53998b5158c15a1b215ac826dbbb4094966e92507d86371aefb4a8b66cfb73ef73d32d","ssdeep":"","tlshash":"8a01fea37550900941618789b9f5b01efcc2680b6ac82954bdeb623b1fb126f883bc48","size":694,"data":"","first_seen":"2023-04-20T08:02:09Z","last_seen":"2024-10-06T09:22:23.874765Z","times_seen":1791,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.4.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.66.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:13.933Z","timestamp":1701725293933,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-3.4.1.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15851\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:08 GMT\r\nage: 6923088\r\nx-served-by: cache-lga21965-LGA, cache-bma1680-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 9, 89994\r\nx-timer: S1701725288.304113,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30638\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30638,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65451)","md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-05-10T12:22:03.672383Z","times_seen":127784,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":57,"dns":1,"connect":8,"send":0,"wait":19,"receive":3,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"codesandbox.io/api/v1/sandboxes/tiny-boat-b1f3/phishing","fqdn":"codesandbox.io","domain":"codesandbox.io","tld":"io"},"ip":{"addr":"172.64.154.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:14.223Z","timestamp":1701725294223,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"codesandbox.io","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Nov 2023 01:55:41 GMT","end":"Mon, 26 Feb 2024 01:55:40 GMT"},"fingerprint":{"sha1":"F3:3C:CA:76:9C:14:99:FF:F4:B8:72:70:4A:03:7A:D0:A8:4E:F0:72","sha256":"05:FC:59:E3:7C:B1:3B:C0:79:01:09:34:D0:8F:36:B9:03:ED:7A:F1:F4:29:B8:35:D9:36:BD:6F:96:26:DB:C6"}}},"request":{"raw":"GET /api/v1/sandboxes/tiny-boat-b1f3/phishing HTTP/1.1\r\nHost: codesandbox.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 04 Dec 2023 21:28:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 29\r\ncache-control: private, max-age=0, no-cache, no-store\r\nx-request-id: F52-IkH97zt4vDAh3Kgh\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: DYNAMIC\r\nset-cookie: signedIn=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; HttpOnly\n_cfuvid=a_6hAu2BiIe80brWbuvN0X3aj8CZ8DCfYBbp3SoXtHM-1701725288584-0-604800000; path=/; domain=.codesandbox.io; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8307232d5b8a7128-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":29,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text, with no line terminators","md5":"384767cd5a81a003ca8a2898225a103e","sha1":"16e1d1cfb46b1c3b5f0338ffa56477b7cc9abb63","sha256":"d720d4ece47c46e46bad250f5c9b7e7a975ed843ab8186065a95bd4cde14f44b","sha512":"a30a494e530abc676e00f83523828512ae89397da919db6a376198dafe9ce26ba6e9f6bd0b034b60c37ab7838e0175f9f8afa5002ea869d21578498a3e42c323","ssdeep":"","tlshash":"0c8000ac008202be0083a0220aaa283020ac03c00c20ce300200c208200008a8e2208c","first_seen":"2023-04-05T06:16:47Z","last_seen":"2026-04-27T01:52:53.005134Z","times_seen":2450,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":51,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"codesandbox.io/public/sse-hooks/sse-hooks.ff25139602578cfc3b2826c5983e731d.js","fqdn":"codesandbox.io","domain":"codesandbox.io","tld":"io"},"ip":{"addr":"172.64.154.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:13.929Z","timestamp":1701725293929,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"codesandbox.io","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Nov 2023 01:55:41 GMT","end":"Mon, 26 Feb 2024 01:55:40 GMT"},"fingerprint":{"sha1":"F3:3C:CA:76:9C:14:99:FF:F4:B8:72:70:4A:03:7A:D0:A8:4E:F0:72","sha256":"05:FC:59:E3:7C:B1:3B:C0:79:01:09:34:D0:8F:36:B9:03:ED:7A:F1:F4:29:B8:35:D9:36:BD:6F:96:26:DB:C6"}}},"request":{"raw":"GET /public/sse-hooks/sse-hooks.ff25139602578cfc3b2826c5983e731d.js HTTP/1.1\r\nHost: codesandbox.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 04 Dec 2023 13:33:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"656dd50f-2b0de\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 28238\r\nset-cookie: _cfuvid=IrHxwObax.8yIy11yEGTTNQcz7C9qeARvn3lQdhWTNg-1701725288350-0-604800000; path=/; domain=.codesandbox.io; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8307232c29ee0b41-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":75444,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"eee4ccce4a8fde374b38ca8d44a195c7","sha1":"00b46e1cffac7c39be17766bc01b2859389bb60b","sha256":"c2f2cd878b1380786ff926b6b83489bcebf0e297a2acee37829ea3c835aa0577","sha512":"d779de3b2c9eece8b966a99e23b99efd5a9f4a03f39741ff8b445cb58d7853ed3a045a63f2e9c866a0e32529be355e2eedb9543bf7117dc87825a05f87422845","ssdeep":"1536:IjiHA15MAL0OPstIiBpECGL/c5FeV6Svon8HQ8eBhoi/F7RkbYqn5FU:Ij1QAL5st5Ehg2VBDQ9hoidRp","tlshash":"1a0475b42a6718de49bdf5db10222c8281981a67517fd0e4f35e6cb22e70b07eef1674","first_seen":"2023-12-04T15:32:17Z","last_seen":"2023-12-08T05:22:52Z","times_seen":22,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":102,"dns":28,"connect":3,"send":0,"wait":14,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/storages/other1.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.156Z","timestamp":1701725295156,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/other1.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"702685aceaca9ed1ba709d4a1508fb913b5a4b2001c7c96548651d10b57446be-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.478888,VS0,VE1\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 7679\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":7679,"size_decoded":0,"mime_type":"","magic":"PNG image data, 190 x 187, 8-bit/color RGBA, non-interlaced\\012- data","md5":"6843a244e12fab158aa189680b5e7049","sha1":"0e1c691f87cc4fa35c88344974f2829c40176b70","sha256":"3a9b144d6482b78afc4e0a940a1d3c22240f14fa535b808cf4dab9635339569f","sha512":"145010c45b6b83ea4005eb367c0507959ff0817e482f19e9973504081acae1b7827cbd1172cec7732b13f4e0cec058271bd6700444fbcf61fb6a3c068a3744c4","ssdeep":"192:ESCkiDw7e9Mg/wio0EYm9FWyo2XdJfXoOZdEDfmiIJQdiRVi/WTanY:DBiDw7eAdq+FWyo2/fXoZbDIJ0ci/BnY","tlshash":"d6a26d36fd727d60d68da6311cd82989ac3b8f43a9104d417ade08297f05fb99d1f542","first_seen":"2023-04-11T09:03:30Z","last_seen":"2026-05-09T03:54:55.338938Z","times_seen":3859,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"contractso.web.app/storages/box.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.136Z","timestamp":1701725295136,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/box.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"280c381de202e3f1a64c9dea771f491d2e7ce777c60b74e664d09c804d95e655-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.478909,VS0,VE1\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 9042\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":9042,"size_decoded":0,"mime_type":"","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\\012- data","md5":"1bc69aa63f9cab6a06f547fa69fddbc5","sha1":"a3f5e6d1480763884bef1b8d250a2d8b27a5be38","sha256":"5efe924f8689e6afc5438dfe5499e09c4726e03bee7ce6e6614f3867f9761dc7","sha512":"3e4335d378cde0360bb6ab25d353225b27a1bd05f4958044926019065a0d24d507deb8dc36f935b460819d0484eef6e41854148a6873eaa17774ad0e7bb9131c","ssdeep":"192:sSDS0tKg9E05Tvkidu5Kz+q7f0XAL6H7uSSxsaCPYylBX:rJXE05oidu5Kz+ICAL8RSFCTlp","tlshash":"74b28d13ee70b675a46964300ecd350a5f321243ca453e41be9d0d9ddf21be9af4b0a3","first_seen":"2023-04-11T09:03:30Z","last_seen":"2025-09-23T17:19:37.386173Z","times_seen":1845,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":26,"dns":1,"connect":8,"send":0,"wait":14,"receive":1,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"contractso.web.app/storages/gmail.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.157Z","timestamp":1701725295157,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/gmail.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"cf7fbbb1613832a431b620911a0c86395c0414fe4a81ffcb6073ed75b15c9710-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.478877,VS0,VE2\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 57443\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":57443,"size_decoded":0,"mime_type":"","magic":"PNG image data, 1280 x 1280, 8-bit/color RGBA, non-interlaced\\012- data","md5":"dce2f2b0e50cb1dbb0246d152791cb46","sha1":"d0a69c159304edc08db005163e7a0daf5a1e98a6","sha256":"acf087c1757f08b0cfd53d59066544d7ef0bfcc50999e77c5813739cd9dc1479","sha512":"91054b36ef1673b24e4fe3dc324cbe339f4e9eb72785a6a4c355c7b2a11a9a7c6e188ff9bf5b34ffdd2805d4bbed71ef6ca4975ee3e330fd8d8e383ed64b28ee","ssdeep":"1536:FxqKcVqezl0vLoYxEuKoYk5LHjGkT3b1mQOEj0+R+EH:FsK2qezl0zoYxEuKo7CYrOb+Rb","tlshash":"a063f1d3246210eef3a535f0aefdb4433a102ade0605465b2a9f982dfc335a726c5689","first_seen":"2023-04-11T09:03:30Z","last_seen":"2026-05-09T03:54:55.347341Z","times_seen":2775,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":13,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"codesandbox.io/static/js/watermark-button.eeb14a97b.js","fqdn":"codesandbox.io","domain":"codesandbox.io","tld":"io"},"ip":{"addr":"172.64.154.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:13.939Z","timestamp":1701725293939,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"codesandbox.io","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Nov 2023 01:55:41 GMT","end":"Mon, 26 Feb 2024 01:55:40 GMT"},"fingerprint":{"sha1":"F3:3C:CA:76:9C:14:99:FF:F4:B8:72:70:4A:03:7A:D0:A8:4E:F0:72","sha256":"05:FC:59:E3:7C:B1:3B:C0:79:01:09:34:D0:8F:36:B9:03:ED:7A:F1:F4:29:B8:35:D9:36:BD:6F:96:26:DB:C6"}}},"request":{"raw":"GET /static/js/watermark-button.eeb14a97b.js HTTP/1.1\r\nHost: codesandbox.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 27 Nov 2023 09:17:01 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65645e8d-ac1\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 505926\r\nset-cookie: _cfuvid=NeOOrnk9Xj2zQ_OMRSnMoId3Y4IOxS_CMffU8KF76ds-1701725288357-0-604800000; path=/; domain=.codesandbox.io; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8307232c2a8b7128-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2006,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2698)","md5":"3ab764f875a5ba9354a64f0b85f5fd5e","sha1":"a97c255ad6f248356c56cf03bc9be907843887eb","sha256":"1c9937bb6f9d154f49699393da35aaa6d5fb9218daa1ec4cba7b4ee097d0d65b","sha512":"4a102814e60ff25f669aee204eed0fe53d5d2dd5b17f007dfaece80f563070ce25a9d9c8ee9ecbdf94144cab11ff7a0cbbf86c9e6a7833e9be158e1ee1ce9aaa","ssdeep":"","tlshash":"5d5175bf32827a7113554f8527fb9205727518621232a090b38dc9b7bb6dd8642b5fc9","first_seen":"2023-10-24T16:34:39Z","last_seen":"2026-04-27T01:52:52.988577Z","times_seen":587,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":91,"dns":10,"connect":2,"send":0,"wait":21,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/storages/aol1.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.151Z","timestamp":1701725295151,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/aol1.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"dd7f7f55e783563d8fc532b4e4126d742794a7683b9653e7f9b91ada85bb925d-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.483633,VS0,VE2\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 12234\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":12234,"size_decoded":0,"mime_type":"","magic":"PNG image data, 253 x 218, 8-bit/color RGBA, non-interlaced\\012- data","md5":"ec9cbc1048239b3927ad0276fc983019","sha1":"17c27c038644bdb141381b606c7c94a177c07326","sha256":"f8a8cf4f1928938c796e2f35f8c21b0d510d4e3f16e016ee83d1f206f8ebde14","sha512":"72b033c7062df73b0ccb14921f580888c09faa7d753450a06d2c4127bb05404395e120569037c674245a35fb18c90193d580607ca0665bb3697f70ec4304e473","ssdeep":"384:yBiKaPw7bGJTBF15Er1AO4AHHA8ygKNNqKY7+:miQGtEtHAggNqK4+","tlshash":"fec2ad09bcb8b183494a9d7a2eca3d496c33174798556cd0bede9c564f01bb64d4b2c3","first_seen":"2023-04-11T09:03:30Z","last_seen":"2026-05-09T03:54:55.332749Z","times_seen":3024,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":19,"dns":2,"connect":8,"send":0,"wait":21,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"codesandbox.io/static/js/banner.d9cb10a38.js","fqdn":"codesandbox.io","domain":"codesandbox.io","tld":"io"},"ip":{"addr":"172.64.154.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:13.931Z","timestamp":1701725293931,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"codesandbox.io","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Nov 2023 01:55:41 GMT","end":"Mon, 26 Feb 2024 01:55:40 GMT"},"fingerprint":{"sha1":"F3:3C:CA:76:9C:14:99:FF:F4:B8:72:70:4A:03:7A:D0:A8:4E:F0:72","sha256":"05:FC:59:E3:7C:B1:3B:C0:79:01:09:34:D0:8F:36:B9:03:ED:7A:F1:F4:29:B8:35:D9:36:BD:6F:96:26:DB:C6"}}},"request":{"raw":"GET /static/js/banner.d9cb10a38.js HTTP/1.1\r\nHost: codesandbox.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 08 Nov 2023 14:15:31 GMT\r\nvary: Accept-Encoding\r\netag: W/\"654b9803-efa\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 1014746\r\nset-cookie: _cfuvid=4uI71QWFIiQ2irmpNRV4IumN6FZs6j_nQXZQUagPQiE-1701725288336-0-604800000; path=/; domain=.codesandbox.io; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8307232c09e40b41-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7820,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (3789)","md5":"7276e5de19625bde798fd48cbcc7c5ad","sha1":"107dba2e074af92f069ef603620112baa87e93b5","sha256":"74850bad3411bc2540a6928159967088a555cb990e9569065a878e9e8a864830","sha512":"1ac04ace6d0e67bf8e0f569b22f03a54e9d476a5cff75118d38b0cc37784047fbe8538700b06e8be3250e816120d178b2846124be8c5f2b6183003663277399f","ssdeep":"","tlshash":"2b81e99b7ac07c7542514c895b77a20a353631a112ade1e4735c9ab2bf1c88ed1b3bdc","first_seen":"2023-10-22T15:04:39Z","last_seen":"2026-04-27T14:44:30.85345Z","times_seen":808,"resource_available":true,"data":null}},"time_used":189,"timings":{"blocked":84,"dns":29,"connect":3,"send":0,"wait":12,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/storages/office3651.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.153Z","timestamp":1701725295153,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/office3651.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"42fa0ba0204a61d1b8c3baf6f50fdd22c35a7becb928510effaf056fdc99c9d1-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.488691,VS0,VE1\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 3687\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":3687,"size_decoded":0,"mime_type":"","magic":"PNG image data, 187 x 188, 8-bit/color RGBA, non-interlaced\\012- data","md5":"a5cdadd60382e9ae6228121542eb1c2a","sha1":"cec15f6470d0237569e931d7d11752b41ac5d8a3","sha256":"71e729939e175f4ae9d3fcc645d6b7389ec341a47a84950e047197331fdc22f1","sha512":"d7cc71e07f00d47ecb7b0c74bc9bd3fceae72845415036dd2af6f4abf428d8c8246eabf73a8dd92c115a157dcd0888f533ac418b50c3fd04c4c630985945fb14","ssdeep":"96:OSTWvkiTJq6UqENG+GfNFrNnVhsc5l8vQ1BDTQ+OLb3iMXLGe8Q/e9cv5:OSCkiNq6UqEw7A41N0+OnLbbTe9E","tlshash":"0682f751fcb1b09490ae993325d43040bc7b8bc3da858c897d8d4d626f057ad5ebbde2","first_seen":"2023-04-11T09:03:30Z","last_seen":"2026-05-08T17:13:47.041361Z","times_seen":3901,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":22,"dns":1,"connect":9,"send":0,"wait":19,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.iconscout.com/icon/free/png-256/yahoo-2752017-2284834.png","fqdn":"cdn.iconscout.com","domain":"iconscout.com","tld":"com"},"ip":{"addr":"104.18.29.243","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.155Z","timestamp":1701725295155,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sun, 16 Apr 2023 00:00:00 GMT","end":"Mon, 15 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"93:0D:DD:B0:E7:BD:A9:D4:6E:BB:0D:78:78:44:C1:8E:20:2B:4F:E9","sha256":"6C:9E:D4:62:F8:26:AC:BB:81:9D:8A:D6:8E:43:79:B0:47:2B:2D:EA:9A:8E:DB:65:97:DB:25:0C:A0:3F:DF:C7"}}},"request":{"raw":"GET /icon/free/png-256/yahoo-2752017-2284834.png HTTP/1.1\r\nHost: cdn.iconscout.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5888\r\naccess-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept,X-CSRF-TOKEN,Authorization,Client-ID\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length,Content-Range\r\ncf-bgj: imgq:100,h2pri\r\ncf-polished: origFmt=png, origSize=9419\r\ncontent-disposition: inline; filename=\"yahoo-2752017-2284834.webp\"\r\nvary: Accept\r\netag: \"44d83ef016dbc382f3c1da2f736b035a\"\r\nlast-modified: Fri, 28 Aug 2020 05:06:06 GMT\r\nx-amz-replication-status: REPLICA\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: MWs1xHxgg6L8sR56AhPDsOrjRgXB0axw\r\ncf-cache-status: HIT\r\nage: 1100121\r\nexpires: Tue, 03 Dec 2024 21:28:09 GMT\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 830723337c570afa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5888,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image\\012- data","md5":"462937c010fe51f29e217145ac614c99","sha1":"90cb7f5542e4da877887fa5f675aeda8c41ff6f8","sha256":"37a14f4abecd152fc284270ca1a8af00674335182acd9f7ed1d5db103983ead7","sha512":"8f9bc647daec8dafacc3d2e49a151a464d038bbc4834c7da45ec18c6eb23f49e19bee3579e3a7d14ef54d33df85caef762dd040cb1d509ccf362f2e9b289713d","ssdeep":"96:aw3oUV77feeqqXTQcS06p/MFrsuO0s3Q0G/8UmnDj+2At0iD4xzkDCO7CHcGSU:aw3ow7jFq+TeJxMFIuO0CQUi2AtsOCO8","tlshash":"79c19ea4a5fc8d7a16bd10c9b3716fe0625014d8b218eebbd2f784600b1bab4d81b4f5","first_seen":"2023-05-09T20:45:19Z","last_seen":"2024-09-19T21:02:05.643296Z","times_seen":1830,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":45,"dns":30,"connect":1,"send":0,"wait":12,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.117Z","timestamp":1701725295117,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 04 Dec 2023 20:34:29 GMT\r\nexpires: Tue, 03 Dec 2024 20:34:29 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nlast-modified: Tue, 03 Mar 2020 19:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 3220\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30028,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (32065)","md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-10T12:30:52.046937Z","times_seen":277814,"resource_available":true,"data":null}},"time_used":482,"timings":{"blocked":232,"dns":1,"connect":8,"send":0,"wait":10,"receive":8,"ssl":220},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"1.bp.blogspot.com/-CYDSHib_wQY/X5G7l5LqTDI/AAAAAAAAklg/uJxZb4zeb0EXG_Rle2xUJGeVT7dzPUHDQCLcBGAsYHQ/s2048/Gmail%2Bnew%2BLogo%2B2020.webp","fqdn":"1.bp.blogspot.com","domain":"bp.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.74.161","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.143Z","timestamp":1701725295143,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.blogspot.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:23:28 GMT","end":"Mon, 15 Jan 2024 11:23:27 GMT"},"fingerprint":{"sha1":"07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B","sha256":"EA:70:51:EC:3A:D6:B1:37:97:90:B3:2A:F0:E8:6E:B9:0E:21:0B:ED:2C:E5:05:28:23:05:33:D0:BA:EB:CC:D5"}}},"request":{"raw":"GET /-CYDSHib_wQY/X5G7l5LqTDI/AAAAAAAAklg/uJxZb4zeb0EXG_Rle2xUJGeVT7dzPUHDQCLcBGAsYHQ/s2048/Gmail%2Bnew%2BLogo%2B2020.webp HTTP/1.1\r\nHost: 1.bp.blogspot.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\ncontent-disposition: inline;filename=\"Gmail new Logo 2020.jpg\"\r\nx-content-type-options: nosniff\r\nserver: fife\r\ncontent-length: 77605\r\nx-xss-protection: 0\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nexpires: Tue, 05 Dec 2023 21:28:09 GMT\r\ncache-control: public, max-age=86400, no-transform\r\netag: \"v9259\"\r\ncontent-type: image/jpeg\r\nvary: Origin\r\nage: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":77605,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 2048x1790, components 3\\012- data","md5":"3a83eb416a79a3fc30964bcedaa8af00","sha1":"abbe5c585ec8749379279a7c2aa4ee88780aae28","sha256":"b058764dadaa97342511495fc1119f662970a0d056614e69fc4ec98753235969","sha512":"568260434c5b65c882c3889db54b44b8889002f3dad4c42575934bc5a754b4bd0b5f495cfdb241f3f1090d5fa80e493c9715338280e2cf7cceb5104db66a87ba","ssdeep":"768:5BDqU0sH/mvCajBdurC8/nQzrLLIAa04wr6fqpjnR+OcflEe8fg/4ENdx+tg:b2UdOvFjTgC8/nQrfa04wGfqVRKu+VTh","tlshash":"9273d01a7cb9cfe9c46652353af75a3e258307a2b11b852460fb1b6e09227d0cd3de85","first_seen":"2023-05-09T12:23:07Z","last_seen":"2024-10-06T09:22:23.77719Z","times_seen":1849,"resource_available":false,"data":null}},"time_used":517,"timings":{"blocked":236,"dns":19,"connect":8,"send":0,"wait":23,"receive":15,"ssl":212},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/reglastefarg/hover.css","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.575Z","timestamp":1701725295575,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /reglastefarg/hover.css HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 6272\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\netag: \"e4c7b38ebf0c1bb7f7bc9193113d305dfd11817279517afe7904b1a9cf19a91f-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1673-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725290.884453,VS0,VE1\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6272,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"fac4178c15e5a86139c662dafc809501","sha1":"ef1481841399156a880ec31b07dda9cfaa1ace39","sha256":"bb88454962767eb6f2ddb1aabaaf844d8a57de7e8f848d7f6928f81b54998452","sha512":"0902219b6e236fbf9d8173d1d452c8733c1bf67b0eb906cc9866ea0c27c2d08f6da556d01475e9b54e2c6ce797b230bfbd5f39055ce0c71ea4d3e36872c378d9","ssdeep":"1536:67O7EesvXIPRX4PT8aZv8qoXIoqbTFaFeTxvyAZ+D7M71D:qXIPRX4PT3","tlshash":"bcb38bf56591210432278a0cc3cf5f79a73cd0a3aa61dcb9b746584bcf52a5c63cab27","first_seen":"2023-04-05T06:16:47Z","last_seen":"2026-05-09T03:54:55.350091Z","times_seen":5965,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css","fqdn":"maxcdn.bootstrapcdn.com","domain":"bootstrapcdn.com","tld":"com"},"ip":{"addr":"104.18.10.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.566Z","timestamp":1701725295566,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bootstrapcdn.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 30 Nov 2023 00:15:17 GMT","end":"Wed, 28 Feb 2024 00:15:16 GMT"},"fingerprint":{"sha1":"34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04","sha256":"43:DF:F0:50:19:18:94:64:CA:28:1D:82:84:B3:9A:EC:06:DB:BE:07:DE:82:E2:0D:5C:52:19:05:67:1E:BF:A6"}}},"request":{"raw":"GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1\r\nHost: maxcdn.bootstrapcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncdn-pullzone: 252412\r\ncdn-uid: b1941f61-b576-4f40-80de-5677acb38f74\r\ncdn-requestcountrycode: DE\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31919000\r\netag: W/\"450fc463b8b1a349df717056fbb3e078\"\r\nlast-modified: Mon, 25 Jan 2021 22:04:04 GMT\r\ncdn-cachedat: 10/31/2023 18:48:44\r\ncdn-proxyver: 1.04\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 752\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncdn-status: 200\r\ncdn-requestid: a366a21493306c07acc360aac5750c50\r\ncdn-cache: HIT\r\ncf-cache-status: HIT\r\nage: 758306\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\ncf-ray: 83072335e810b518-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":144877,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65325)","md5":"450fc463b8b1a349df717056fbb3e078","sha1":"895125a4522a3b10ee7ada06ee6503587cbf95c5","sha256":"2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d","sha512":"93bf1ed5f6d8b34f53413a86efd4a925d578c97abc757ea871f3f46f340745e4126c48219d2e8040713605b64a9ecf7ad986aa8102f5ea5ecf9228801d962f5d","ssdeep":"1536:GcoqwrUPyDHU7c7TcDEBi82NcuSELL4d/+oENM6HN26Q:VoPgPard2oENM6HN26Q","tlshash":"f6e37667f591322da097ca1851c0bbfa466f8156d6221ffbf4273b604b8a6c70a73d0d","first_seen":"2023-04-05T03:09:34Z","last_seen":"2026-05-10T12:29:40.857809Z","times_seen":55590,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":29,"dns":2,"connect":1,"send":0,"wait":12,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.204.20","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.766Z","timestamp":1701725295766,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 08 Nov 2023 07:11:36 GMT","end":"Tue, 06 Feb 2024 07:11:35 GMT"},"fingerprint":{"sha1":"BC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81","sha256":"95:DB:E6:BD:0B:8B:40:88:04:6D:9A:E7:2D:72:2B:65:28:9E:D8:5F:A3:7A:9D:8A:55:13:EE:FB:3C:93:E7:10"}}},"request":{"raw":"GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:10 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Wed, 04 Aug 2021 18:53:09 GMT\r\netag: W/\"76f34b71fc9fb641507ff6a822cc07f5\"\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f73d71dfa047571774d2c0460e5108ec.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: LHR50-P1\r\nx-amz-cf-id: lVYcdz_m21h53ptESYKzRG7pPMuh1KLWJ_6MP1lO6FMrOlgtmDMShQ==\r\nage: 322202\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=vb5Al5LmMocvmKPwleyoONlXm7w5nQ%2BD4ZwbWfRpZ2wWWUylLj5mXM71hlbOwFXTi8%2FDAI%2FuJxKu4oC8m0jdQ2Dg3uPbt3u1N%2BJX%2B3xbaUvMo1ksmHoIjIMdITB%2FjzTfbywh4EV9Jw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830723378f4a891e-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26682,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (26500)","md5":"76f34b71fc9fb641507ff6a822cc07f5","sha1":"73ed2f8f21cd40fb496e61306acbb5849d4dbff4","sha256":"6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8","sha512":"6c4002ce78247b50bfa835a098980af340e4e9f05f7097c1e83301289051ce1282e647abab87db28a32fbfe0263c7318d2444b7d57875873908d6d5ed2af882f","ssdeep":"192:kP6hT1bIl4w0QUmQ10PwKLaAu5CwWavpHo4O6wgLPhJVR8XD7mycP:Phal4w0QK+PwK05eavpmgP1eXD7mycP","tlshash":"bec20665930c60d3a3eef847ba0172a8277577999a864c54f30b7c9c8dc3a5772e8f18","first_seen":"2023-04-05T03:17:09Z","last_seen":"2026-05-10T10:35:33.483194Z","times_seen":21732,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":71,"dns":2,"connect":30,"send":0,"wait":46,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/favicon.ico","fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","domain":"pigiabdulrr4602.workers.dev","tld":"workers.dev"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:14.321Z","timestamp":1701725294321,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pigiabdulrr4602.workers.dev","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 03 Nov 2023 00:17:50 GMT","end":"Thu, 01 Feb 2024 00:17:49 GMT"},"fingerprint":{"sha1":"A0:7D:DC:CA:1B:95:09:52:D3:1F:59:5C:3A:DD:29:72:14:3A:8D:AB","sha256":"3C:26:3F:DC:40:FC:57:77:09:0A:5F:E4:C7:64:9A:D6:DF:32:32:3D:63:10:66:51:93:D8:F4:AE:33:48:6B:1B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-10T12:28:23.400111Z","times_seen":14952978,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-20","alert":"Office365","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Office365","link":"https://openphish.com/","meta":null},{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-11","alert":"Other","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/favicon.ico","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.1.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.66.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.128Z","timestamp":1701725295128,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-3.1.1.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-152b5\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nage: 6924687\r\nx-served-by: cache-lga21947-LGA, cache-bma1680-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 119, 17268\r\nx-timer: S1701725289.437552,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30070\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86709,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (32030)","md5":"e071abda8fe61194711cfc2ab99fe104","sha1":"f647a6d37dc4ca055ced3cf64bbc1f490070acba","sha256":"85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf","sha512":"53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65","ssdeep":"1536:9NhEyjjTikEJO4edXXe9J578go6MWXqcVhrLyB4Lw13sh2bzrl1+iuH7U3gBORDT:jxcq0hrLZwpsYbmzORDU8Cu5","tlshash":"3183d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f058c5d57eb8a8e507bf2c","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-05-10T12:32:05.117956Z","times_seen":141116,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/storages/outlook1.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"199.36.158.100","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.150Z","timestamp":1701725295150,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/outlook1.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-type: image/png\r\netag: \"181232938be6b7bd118aacdee7c09fedfe42c183843baa23a645f0262b8fb326\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.482654,VS0,VE1\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 771\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":771,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\\012- data","md5":"c3fc46c5799c76f9107504028f39190f","sha1":"519096ad3f03410cf9ce3c9b9fcca6b439d97b23","sha256":"57898461712a639d119bdf88b7145919dcc8956c7a271d2e4a1084b29eae6785","sha512":"df4a0a2f78b2013035fb738bf405119b275d4cfec31a23071eb9af499d5f31fdc4be22754ce791c975d7d417e908b5cad16f962b0add3dfdcde19844d74f6678","ssdeep":"","tlshash":"7b01ba6112735f3abfc72613591562350df2c51dd4439781167f14cd650b3eca014751","first_seen":"2023-04-30T20:33:19Z","last_seen":"2026-05-09T03:54:55.35802Z","times_seen":3818,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":19,"dns":0,"connect":11,"send":0,"wait":21,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Dropbox","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Dropbox phishing","tags":["dropbox","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"kit.fontawesome.com/585b051251.js","fqdn":"kit.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.147.188","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.573Z","timestamp":1701725295573,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.fontawesome.com","organization":"FONTICONS, INC."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 04 Dec 2023 00:00:00 GMT","end":"Fri, 03 Jan 2025 23:59:59 GMT"},"fingerprint":{"sha1":"93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D","sha256":"F4:02:B3:09:35:60:93:92:CF:86:5A:5C:4B:BF:30:F7:3A:12:6B:A7:0A:0F:9E:C6:0A:EC:4F:33:E1:DA:DA:54"}}},"request":{"raw":"GET /585b051251.js HTTP/1.1\r\nHost: kit.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:10 GMT\r\ncontent-type: text/javascript\r\naccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: max-age=60, public, stale-while-revalidate=30\r\nvary: origin, accept-encoding, access-control-request-headers, access-control-request-method\r\nx-request-id: F5vx_62xsunfxxcREG3i\r\ncf-cache-status: REVALIDATED\r\nserver: cloudflare\r\ncf-ray: 83072335e9f21c02-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11893,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (11461)","md5":"55d343a40c7166a79fd314f13cbb2e93","sha1":"96904a849c32ca220e0aaa2ae3e81cf2b5cdf764","sha256":"a1f75d6278713a84a8f28a392c77ca8a6a7c32bf14314d4a34a6ce2f06cfdf7a","sha512":"518ac396e7f82899cab4a6e3cb68116f2b599d680d015a1a8024926bc39e9a5d3ed68935b2150da33ad41a9103e4cfd5031a7e89036901c972eee257546bb1c5","ssdeep":"192:GO3pHufQPTACpF4Pvhzz6E/ra/sb4nZIPWfz3JBGvh3e1Q5l8h6LDeFTjC0:GdRCchzzYfnqejah3e1Q5l8h6vb0","tlshash":"d732c2997694f1b646ab7160c03f620bf276352a3006d020e25dd9e4ac7dd6e9233f2e","first_seen":"2023-11-29T01:32:53Z","last_seen":"2025-11-14T14:58:52.675593Z","times_seen":7510,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":23,"dns":4,"connect":2,"send":0,"wait":136,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Archivo+Narrow\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.571Z","timestamp":1701725295571,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /css?family=Archivo+Narrow\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 04 Dec 2023 21:28:09 GMT\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1293,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1320), with no line terminators","md5":"d2dc9e6ce6319f62a7fc6e4f736b5985","sha1":"5a3a070c02d12b29592414c8bad9fcead7545200","sha256":"52f85c1c70023b87eaf4d6bdf4ff5c4c315b046b0832e2218dd7c884e30de975","sha512":"ad91bf8e1ae1ee083ccc23f6eeb1bcef68c710d1425d03051437f951d40fac2d0b5ac7f31b36f914fa6911753ff5ad637d9cfd4628f7482e4559ed3c0972db3a","ssdeep":"","tlshash":"d0216e80241b2a04a6834fd627db7b31ad0e7791b86191366ffd14db8cced36231971d","first_seen":"2023-09-15T01:57:36Z","last_seen":"2024-08-21T06:51:49.144161Z","times_seen":14316,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"contractso.web.app/storages/dropbox-white.png","fqdn":"contractso.web.app","domain":"contractso.web.app","tld":"web.app"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.135Z","timestamp":1701725295135,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.app","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 13 Nov 2023 20:32:12 GMT","end":"Sun, 11 Feb 2024 20:32:11 GMT"},"fingerprint":{"sha1":"91:91:14:02:FC:83:4D:86:C4:39:E9:2F:0A:4D:72:FC:05:07:86:F3","sha256":"4D:98:CC:7A:B3:F3:71:FE:FF:06:3D:22:A7:13:70:46:6A:4C:0F:E2:91:50:07:75:20:6D:08:52:90:7F:BC:18"}}},"request":{"raw":"GET /storages/dropbox-white.png HTTP/1.1\r\nHost: contractso.web.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: image/png\r\netag: \"83b1a0250e9cda3994de60934d33f5c9d740a6512ecb810681105776b9ee833b-br\"\r\nlast-modified: Tue, 10 May 2022 10:26:43 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 04 Dec 2023 21:28:09 GMT\r\nx-served-by: cache-bma1645-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1701725289.484177,VS0,VE2\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 6144\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-10T12:28:23.400111Z","times_seen":14952978,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":36,"dns":11,"connect":8,"send":0,"wait":22,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.204.20","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","date":"2023-12-04T21:28:15.764Z","timestamp":1701725295764,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 08 Nov 2023 07:11:36 GMT","end":"Tue, 06 Feb 2024 07:11:35 GMT"},"fingerprint":{"sha1":"BC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81","sha256":"95:DB:E6:BD:0B:8B:40:88:04:6D:9A:E7:2D:72:2B:65:28:9E:D8:5F:A3:7A:9D:8A:55:13:EE:FB:3C:93:E7:10"}}},"request":{"raw":"GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev/\r\nOrigin: https://tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:10 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Wed, 04 Aug 2021 18:53:09 GMT\r\netag: W/\"a12ec7ebe75a4d59a5dd6b79e2ba2e16\"\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 17a77a72dc1e9981253a822e540e37c2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: LHR50-P1\r\nx-amz-cf-id: sRB1TO314gzhA1mPPwDenLp-WCk_6NW0VIt7ZYpR-OVHOcaB184Nrg==\r\nage: 2278808\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=ssddobWTGN8N%2FXKArp3NSVpN%2B8WEjD1U3DkWJ3myn3xVMfgqhmes%2B68M2bXL4cML4XlzdcDLcZb6j%2F53trc42YPPUorajVGltKosx8iAmPc6uANAt6bZnEJWjApjwqpsUqydP9rKHQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830723378f4e891e-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":60312,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (60130)","md5":"a12ec7ebe75a4d59a5dd6b79e2ba2e16","sha1":"28f5dcc595ee6d4163481ef64170180502c8629b","sha256":"fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda","sha512":"28b9ea5f3f95807259c2745162424aceecac2556bc1ab9a3b33e4e15b54c6970a4df4a5892fe83c1155c82ca8d93aebb173be32f1a7f8b9d3ce038b2dd1e6ffe","ssdeep":"768:PUh31IPiyXNq4YxBowbgJlkwF//zMQyYJYX9Bf7VSz8:PU0PxXE4YXJgndFTfy9lQQ","tlshash":"5b430bb8e54d01c9b732c44bbf81b2bc61baf73de5910d95f00e691c2ad26a811c5f7a","first_seen":"2023-04-05T03:17:09Z","last_seen":"2026-05-10T10:35:33.45186Z","times_seen":22935,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":75,"dns":3,"connect":31,"send":0,"wait":49,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","fqdn":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev","domain":"pigiabdulrr4602.workers.dev","tld":"workers.dev"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-04T21:28:13.370Z","timestamp":1701725293370,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pigiabdulrr4602.workers.dev","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 03 Nov 2023 00:17:50 GMT","end":"Thu, 01 Feb 2024 00:17:49 GMT"},"fingerprint":{"sha1":"A0:7D:DC:CA:1B:95:09:52:D3:1F:59:5C:3A:DD:29:72:14:3A:8D:AB","sha256":"3C:26:3F:DC:40:FC:57:77:09:0A:5F:E4:C7:64:9A:D6:DF:32:32:3D:63:10:66:51:93:D8:F4:AE:33:48:6B:1B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tiny-boat-b1f3.pigiabdulrr4602.workers.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 21:28:07 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=05FO2uOzv8esEeCK8O%2BLRqBu1Euk0q4Kjd66ANMkeaf991n5sy6gZoXb%2BLeLOqWAJXIvxU66LQL%2FF39HnpY%2FLfOXeHeX4dLphIYlKRMLex1MBlmvNzoLBWo81rnAsE4nZVUOQe7xn3zf92imPcS%2BySJ0hhPIDaSwDK1a56Q%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 830723280adf7127-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1544582,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-10T12:28:23.400111Z","times_seen":14952978,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":8,"dns":0,"connect":1,"send":0,"wait":181,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-20","alert":"Office365","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Office365","link":"https://openphish.com","meta":null},{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-11","alert":"Other","trigger":"tiny-boat-b1f3.pigiabdulrr4602.workers.dev/","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}],"urlquery":null}}]}