{"report_id":"7dc00198-8a97-461a-aa4a-250cba202756","version":0,"status":"done","tags":[],"date":"2026-06-24T10:33:37Z","url":{"schema":"http","addr":"erudite.consulting/daycoconcrete","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/download.html","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"title":"Background Image Page","dom":{"size":3279,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"ac085a8f3adc619b0d890cfc3dffcd40","sha1":"6479931ab998dbf1fd3921136c77799a9af53b88","sha256":"2fdfd40c97738279b42e8fc00f650f24489cad868815ff5a7d7adc9986738570","sha512":"18d282e355934f4ac14606579bcd9f2bb06ee9681735ab51c48984e2a6ff9c68ea3d93431b74478778b95db697175bdbf679617c1a3330d92e6fbe1bdecce0d0","ssdeep":"","tlshash":"d661515ba9f3045b390790716bf36b062675c003d20aca593fbd62e8cf85a9594b73cd","dom_hash":"domhashf0beb57d2b4a3816e43aeb33d370eb26","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"erudite.consulting/daycoconcrete","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-29T10:33:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":2,"received_data":17256,"sent_data":1118,"comment":"","tags":null,"fingerprints":null},{"fqdn":"erudite.consulting","ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"domain_registered":"2018-07-01","domain_rank":0,"first_seen":"2025-11-25T19:42:33.459015Z","last_seen":"2026-06-23T13:43:37.973718Z","alert_count":8,"request_count":8,"received_data":172951,"sent_data":4330,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":5476,"sent_data":536,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9ccf3b316eee02eb4fedd533e127d9cd","sha1":"b4071bc96e7ba397263609de470773c28c84d612","sha256":"2d7e2ae2ea9c8731364660a8d85ad63c1d410ba60d2dd9826eb4d43a613dbea8","sha512":"9cab779d4e2ecd8ee8c23dea6370d0ce6e6f0cb39e8a3462bf38d9b9d589a11b5311622ca4a3032bd6aef70df3c02900546314009cce66fc5874ffe2407f6db1","ssdeep":"","tlshash":"9221e21d309a30262693b968cb5fb0073133405b584adb80f99e9788af17239527bfde","size":1340,"data":"","first_seen":"2026-06-09T08:58:54.367821Z","last_seen":"2026-06-28T17:04:45.085423Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/download.html","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"4b364ec6ffb15307bbf38c7316e0ce77","sha1":"8c75549a9dc238c8c4ca08d19b289fbb7ce163e7","sha256":"eb990b78a6158d4ad3a61d550b4dae6c9e0e5f21e9d9840d051e5671451076b8","sha512":"e9c3e9f811ef75f37cc5448ff9122a09939a2d99a5c2eff7c4f9ba5d29f084c041f0a5771aaecd0e345849b24cc04262f6b7ad7b7d7f7fdce3d15e8c9dd8cac0","ssdeep":"","tlshash":"ade0d85b74a70ab81f9b54764aa75a84707290571408d204397e86900f75e5d343e7de","size":379,"data":"","first_seen":"2026-06-09T08:58:54.373482Z","last_seen":"2026-06-28T17:04:45.085926Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://erudite.consulting/daycoconcrete/","date":"2026-06-24T10:33:15.599Z","timestamp":1782297195599,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://erudite.consulting\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 02:57:02 GMT\r\nexpires: Fri, 18 Jun 2027 02:57:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 545773\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":7884,"size_decoded":8696,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-06-29T11:28:01.157996Z","times_seen":366041,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":6,"connect":30,"send":0,"wait":17,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://erudite.consulting/daycoconcrete/","date":"2026-06-24T10:33:15.611Z","timestamp":1782297195611,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://erudite.consulting\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7748\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 03:05:23 GMT\r\nexpires: Fri, 18 Jun 2027 03:05:23 GMT\r\ncache-control: public, max-age=31536000\r\nage: 545272\r\nlast-modified: Mon, 15 Sep 2025 16:36:26 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":7748,"size_decoded":8560,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7748, version 1.0","md5":"a09f2fccfee35b7247b08a1a266f0328","sha1":"0da2d17e738f46d2a09e6fb7969da451719a9820","sha256":"cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446","sha512":"5e3f9a298003b84250ec6801e08ad2a4ff8845d4c3e13ea61bec37da24d26ede13b436257882124cc0c27e9a323ba92e7d23c6ad3f48a7b75535f5ed98813a0e","ssdeep":"96:0g6vAF/FXh6MmoI56TEwosGU/DbVF/QBT1gaHEYT6u/w3hXLbJPAS772+6haAftj:zp6x6TYpoDYBJg8TRkbJPAS/2+CzQa7","tlshash":"f3f19de65d1e5e8980f0102f6f6efce767950d88141dadf9a9e72f884c6ba1b04c90cd","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-06-29T11:28:01.157286Z","times_seen":253848,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":18,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/download.html","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:20.797Z","timestamp":1782297200797,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete/download.html HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Tue, 23 Jun 2026 06:35:18 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1338\r\ncontent-type: text/html\r\ndate: Wed, 24 Jun 2026 10:33:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3427,"size_decoded":1588,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"9919af679ea8da19f9650a06033270c1","sha1":"aaeab073a9edfb3f273ca726406fb29257e8752e","sha256":"738e52ecb913e71a33f54f085b0677bc4c7b142ec603e6e95c2fa9aa821e738a","sha512":"d0b3a3bfccfe578a999fcd0e4c8bd72e92548a692ceae377293f79ef16ee910b2a063672ef478b588ebff37aab884af905913d4c02af2d5949016f5f83223b72","ssdeep":"","tlshash":"3d61332ad5c6045b253792b5bff35709eb66c0438302465a3bbd72938fb495480b77cd","first_seen":"2026-06-24T01:57:13.194679Z","last_seen":"2026-06-24T10:33:41.194677Z","times_seen":3,"resource_available":true,"data":null}},"time_used":440,"timings":{"blocked":77,"dns":0,"connect":93,"send":269,"wait":94,"receive":0,"ssl":96},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/Screenshot%202025-04-25%20161700.png","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://erudite.consulting/daycoconcrete/download.html","date":"2026-06-24T10:33:21.197Z","timestamp":1782297201197,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete/Screenshot%202025-04-25%20161700.png HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/download.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Fri, 25 Apr 2025 13:46:15 GMT\r\naccept-ranges: bytes\r\ncontent-length: 50730\r\ncontent-type: image/png\r\ndate: Wed, 24 Jun 2026 10:33:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":50730,"size_decoded":50934,"mime_type":"image/png","magic":"PNG image data, 1919 x 905, 8-bit/color RGBA, non-interlaced","md5":"969fd557eba0534f7bbbc9568f3352eb","sha1":"c6efbbfd283cf69aa142355d77b67fbf83abdbe9","sha256":"b77fa58e6433a52e56d0d4ccc8656c630fe7ebb7a83ce698863651722a5f5e07","sha512":"2acc31e681ad0d5a113434a4b80ba7a5c4f068d282ebf372ef2d5e7f87f19a677d047486d0a2408097568ea2287dcef3fe5f0cb20c68df2c3d1d0e96f3ffe339","ssdeep":"1536:++rBcFGSBUpuaDEAxe18fYEYgwaU+W4NVYiwAg:++rBWhB4ueEAI/EYdai48p","tlshash":"6833af560d26c50aeca799397e72aff537010eec233883589bfcd0c157991f5ae409b8","first_seen":"2025-10-24T02:40:46.131091Z","last_seen":"2026-06-28T17:04:45.084906Z","times_seen":497,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":186,"receive":92,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/adobe-logo.png","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://erudite.consulting/daycoconcrete/","date":"2026-06-24T10:33:15.492Z","timestamp":1782297195492,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete/adobe-logo.png HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Fri, 25 Apr 2025 14:52:26 GMT\r\naccept-ranges: bytes\r\ncontent-length: 70680\r\ncontent-type: image/png\r\ndate: Wed, 24 Jun 2026 10:33:15 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":70680,"size_decoded":70884,"mime_type":"image/png","magic":"PNG image data, 2560 x 1388, 8-bit/color RGBA, non-interlaced","md5":"551cebb68623d1956a018b01f6326fcc","sha1":"dd070fd3307692b09b9f32c36b4e35954213d011","sha256":"d6abcfa2c801a96cede081943aac15b67f6478be14d38d556d63545d6cba03a0","sha512":"01569b594b684064daafe639f1fb8fbfdfa6632ba6962d4aec078dde122026aafdee2619ba64aff9961f9c2bd5ea7ba06a90c3d200325bc86ee5bc28ab151ac4","ssdeep":"1536:eAnf1GggwOj0bLFohp4vfoM3Qln25nCGkh8SrVOYOkqzkKrDR:J8ZKoLCfx5CNVOYOXzkK/R","tlshash":"b063f158569feb9ececc1532a83f881a2ec4b7a9831152cc43a4ff79acd18925dc40d3","first_seen":"2025-04-28T21:29:56.842472Z","last_seen":"2026-06-28T17:04:45.080445Z","times_seen":610,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":93,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/favicon.ico","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://erudite.consulting/daycoconcrete/","date":"2026-06-24T10:33:15.777Z","timestamp":1782297195777,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Fri, 14 Nov 2025 23:25:36 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4677\r\ncontent-type: text/html\r\ndate: Wed, 24 Jun 2026 10:33:15 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}],"data":{"size":11816,"size_decoded":4927,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (358)","md5":"a8063bd37d3c8fb3176a6bf140558a4d","sha1":"e32cf4b407db3d3773ded13ff64b70fdbad7735f","sha256":"bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482","sha512":"82d749f6b17b21587fb345ca196a2aa83eca80ad66ed9c1ab88b36709bed14175d53afefe9acc0dafc4fad78ffb8df155193a6829bc857ad6d68b1c84af7b854","ssdeep":"192:bpvXn2H25Zx48DNYGu6C9tdDOxktft1zQOPtaUrzvHlPuPQXGuV27BHplXtAUU/s:FvX2H25v4CYn6etFTBvhtv4IcpRtlU/s","tlshash":"bd32940bab4c063b1312459a7458639a370fc87fe2661bb474bfc06867d16a649f23dc","first_seen":"2023-04-05T03:58:47Z","last_seen":"2026-06-29T10:50:24.562955Z","times_seen":15754,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/adobe-logo-2017.png","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://erudite.consulting/daycoconcrete/download.html","date":"2026-06-24T10:33:21.195Z","timestamp":1782297201195,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete/adobe-logo-2017.png HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/download.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Fri, 25 Apr 2025 14:12:59 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19877\r\ncontent-type: image/png\r\ndate: Wed, 24 Jun 2026 10:33:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":19877,"size_decoded":20081,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"e67a678815f9017921a8155d736e8e2c","sha1":"96c665f9538353db9871cff1a0544770518f5f1b","sha256":"dfb997ee526ce42483b1c190c2118821e931835f503fee6abe1bb8e4bef69dcc","sha512":"7ba4c7004ee981a8a26acc9d7017706b5979293440df161247caee88cd84fa6885493605842b3f6b4b4ffe7d4a4d97febcdbe30eb2188448fb41c33e8848928f","ssdeep":"384:bCIWq3zyX0NSh/iRerDruNPtuzyZkznD9MoZjUHMDH26jBUlNb:bCe3zyreSk13kznD9Majdj26jm/","tlshash":"1f92c067363346a2c19c1f3256daca672763d633185b4f2126e2b458ccfb702b317b02","first_seen":"2025-04-28T21:29:56.840393Z","last_seen":"2026-06-28T17:04:45.083406Z","times_seen":541,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/favicon.ico","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://erudite.consulting/daycoconcrete/download.html","date":"2026-06-24T10:33:21.481Z","timestamp":1782297201481,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/daycoconcrete/download.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Fri, 14 Nov 2025 23:25:36 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4677\r\ncontent-type: text/html\r\ndate: Wed, 24 Jun 2026 10:33:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":11816,"size_decoded":4927,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (358)","md5":"a8063bd37d3c8fb3176a6bf140558a4d","sha1":"e32cf4b407db3d3773ded13ff64b70fdbad7735f","sha256":"bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482","sha512":"82d749f6b17b21587fb345ca196a2aa83eca80ad66ed9c1ab88b36709bed14175d53afefe9acc0dafc4fad78ffb8df155193a6829bc857ad6d68b1c84af7b854","ssdeep":"192:bpvXn2H25Zx48DNYGu6C9tdDOxktft1zQOPtaUrzvHlPuPQXGuV27BHplXtAUU/s:FvX2H25v4CYn6etFTBvhtv4IcpRtlU/s","tlshash":"bd32940bab4c063b1312459a7458639a370fc87fe2661bb474bfc06867d16a649f23dc","first_seen":"2023-04-05T03:58:47Z","last_seen":"2026-06-29T10:50:24.562955Z","times_seen":15754,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:14.100Z","timestamp":1782297194100,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 \r\nlocation: https://erudite.consulting/daycoconcrete/\r\ncontent-length: 289\r\ncontent-type: text/html; charset=iso-8859-1\r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T11:32:17.69364Z","times_seen":16824218,"resource_available":true,"data":null}},"time_used":737,"timings":{"blocked":-1,"dns":360,"connect":92,"send":0,"wait":95,"receive":0,"ssl":189},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"erudite.consulting/daycoconcrete/","fqdn":"erudite.consulting","domain":"erudite.consulting","tld":"consulting"},"ip":{"addr":"192.185.93.79","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:14.849Z","timestamp":1782297194849,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"erudite.consulting","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 01:44:27 GMT","end":"Fri, 18 Sep 2026 01:44:26 GMT"},"fingerprint":{"sha1":"77:DE:C0:A8:7A:08:22:EF:EA:A1:0F:87:B0:C0:F5:8C:58:7D:A8:0C","sha256":"A9:52:45:9B:5C:52:11:B8:C4:B1:B5:18:94:48:0D:4F:DE:92:B2:17:48:6F:58:A2:F0:81:E5:19:9B:CF:AF:78"}}},"request":{"raw":"GET /daycoconcrete/ HTTP/1.1\r\nHost: erudite.consulting\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Fri, 25 Apr 2025 21:10:26 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1289\r\ncontent-type: text/html\r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2786,"size_decoded":1539,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"da134be21960758a659f4f0ce0ba86c3","sha1":"ac25e67b07289650b5b9e5f7f77e981169ed8811","sha256":"9cc0dfa491f5eebdca6a351e699886946b0b96fdbcb7d454ea15af2fffdf6b93","sha512":"25adefa89dcba27495fc9b039395fb14232ecc110bd2ae118cf579e1e9ea0987404c3910faf6494f1ff9e3c537e234f18ed6e7079ccdd3aa1ce8d147a2e62247","ssdeep":"","tlshash":"dd51501a708460175133f7b49f67a109faa380279747c691baed938a9f72218c563fce","first_seen":"2025-10-24T02:40:46.132367Z","last_seen":"2026-06-28T17:04:45.07986Z","times_seen":563,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"erudite.consulting","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@200;300;400;500\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://erudite.consulting/daycoconcrete/","date":"2026-06-24T10:33:15.485Z","timestamp":1782297195485,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Poppins:wght@200;300;400;500\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://erudite.consulting/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 24 Jun 2026 10:33:15 GMT\r\ndate: Wed, 24 Jun 2026 10:33:15 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4792,"size_decoded":1228,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"9c04b1c3bad01ee0643591b8168c92c6","sha1":"4e0ac3442c265e0441943ec104165b3cf45bc98a","sha256":"f00e3b44e7e737f2378b812e15467d71a5d4907350082c7089894e5bf0b3150c","sha512":"dd8c420a800322c5b7d035d87eac72f5cc217cf6cabc06f440c8ab969f617415307db7c2f0aae1c6b2345a3a64ece811c17b8674bdad34c361e54d2665c02a02","ssdeep":"96:SO6aKO6ayJc+ukO6aVN3O1arO1aTJc+ukO1aaN3OEanOEaCJc+ukOEauN3OXa3Oc:/HaedhHdPgKQcXr3B","tlshash":"67a19bd1087be114ab831cc123ce6d36ee1ea155b810e5786bfd0c98adabc654372b2d","first_seen":"2025-10-24T02:40:46.13371Z","last_seen":"2026-06-28T17:04:45.084439Z","times_seen":631,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":2,"connect":15,"send":0,"wait":34,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}