{"report_id":"7f3a0719-bcdd-4efa-a174-358268284cab","version":6,"status":"done","tags":[],"date":"2026-03-24T02:56:22Z","url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"title":"Ethereum Token Airdrop","dom":{"size":344,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (344), with no line terminators","md5":"cb25a26265dabf0a4fb863f604221cb9","sha1":"fd55879111dfc3cd5156f39a8f24f8ff23e3a733","sha256":"8e3c089d4ac6c5844ad10e2080c76e7c2c263598343494ad85f269d23edbd940","sha512":"792c53b4453131451c1cc4ff7fe15e5699ab06d3c4af998c52a2694f327d23a099e7945dbd0107e0d4568a8f6c3d036fe3dfd353f7e8fa9bec95cfccf7d6ea9c","ssdeep":"","tlshash":"b5e026e91d76c83464b4028a60f1f3dc1a6071a4b651eb0842d8dc3b9f20fd38c92948","dom_hash":"domhashfa92bf49a0529f3ae8099507699ba65b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T02:56:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"lite-api.jup.ag","ip":{"addr":"52.84.50.2","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2021-09-15","domain_rank":1536175,"first_seen":"2025-06-01T22:48:15.859785Z","last_seen":"2026-03-23T22:34:15.954115Z","alert_count":0,"request_count":1,"received_data":3119,"sent_data":491,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"1drop.click","ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-20","domain_rank":0,"first_seen":"2026-03-24T02:56:23.27716Z","last_seen":"2026-03-24T02:56:23.27716Z","alert_count":10,"request_count":5,"received_data":84747,"sent_data":2383,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}]},{"fqdn":"dallying-reveler.fontmaxplugin.cc","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-02","domain_rank":0,"first_seen":"2026-02-24T21:05:37.722165Z","last_seen":"2026-03-20T20:37:20.128759Z","alert_count":16,"request_count":4,"received_data":1002589,"sent_data":1899,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-22T22:20:05.651051Z","alert_count":0,"request_count":2,"received_data":15512,"sent_data":962,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-22T22:16:16.728956Z","alert_count":0,"request_count":2,"received_data":30146,"sent_data":1080,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"18086525a6ec4c1bf7a858098be55eda","sha1":"e6c3080f330dd83682cf4cfd9b6979ae51ded482","sha256":"717b23bc752ce6e5504bd7e6accda7321653b922f85c886fc0da77ac7a44c837","sha512":"bdcb0a37817b510bc8bc5a23e8b6c9bc6373b99818a6180e232a6f6870e0b2cc9c6ab557056efb3dab92b7c647e37b2fb1f651b762cbef7daa557e5496e8ea08","ssdeep":"","tlshash":"2bd023951976843051ad014a50b5f3d4256131e47751b70481dccc3baf21dd344f1959","size":217,"data":"","first_seen":"2026-03-24T02:56:27.622945Z","last_seen":"2026-03-24T02:56:27.622945Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e2e7e98fbf00ec0007484018e8c0786","sha1":"8c082c1ec44d0b17ce996f115612067d59dc6feb","sha256":"9d53e86d61c5d81b6042630b288ca473d30c9fa8674cfed36af7826dd7162655","sha512":"4f7eb9999b319ce1fd571ce75ab1e698c594ddd5abbc5f380656473bee1d88afb5d8f96c181976f416ecec76965064a56286f2daa5e89cff6fd2b09874192565","ssdeep":"768:FbSki7AfimgaQhh3dTH6QitadqilLJ7Sn:dSki7AfdRQ73dTH6zivGn","tlshash":"03c2b2debacb7914933a647914a332c62ff9fc84210c5e54d614c8b8b8b536cd196fa8","size":26265,"data":"","first_seen":"2026-03-24T02:51:15.491372Z","last_seen":"2026-03-24T03:51:02.704238Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d4b214e79e21de6487b6b5965e2c386b","sha1":"cc24c80af1a1a87c4f68d5e635b5a1cfcda082be","sha256":"71178d150a24694180f6e729448ccd6ff46211a14b15bfaafb45a045147864fa","sha512":"e2eb62c9ec2833ae401fae81e3b5100d48916ea6d15cca0b172158344ac3c8583a7290abb6c3d6a09958ca5774c66b71a9acd97660a73cbd960ece0d53abc061","ssdeep":"192:fansMwJj9i1T6vAaTy2c81Qvae5ZBA3nFvcEnR9XLJZr5Axd9c+JWFJ3M:CnsRJjaTDjd8Wae5ZS3nlXtJZr5A5c+9","tlshash":"5bf153b1327728363262d1be4bab620d6b6db40635c9c49035ac75d41fdef11a4b78f8","size":7738,"data":"","first_seen":"2026-03-15T15:01:11.247113Z","last_seen":"2026-04-25T12:38:29.264066Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"14e0b47ffe5089266a1460cf8e671bd4","sha1":"1a8007d689037af1066f4011cbac294be23f3855","sha256":"b1e408308670910788bcd4bb974665fecadd46069095a850b47eea2b905e0ff1","sha512":"cf252e36f1eaf7e0201a68cd7aba9bd5deb5ce0d4226e53564d8acd4cbb76ce39e16febee84d29f122975c44876981b054df2713ac9476cd3b73fb0459296349","ssdeep":"","tlshash":"141100753b2a1534c5d5408b317ef7a93d3260757a02a144c26ccc299d18e8314efcbe","size":902,"data":"","first_seen":"2026-03-24T02:56:27.624374Z","last_seen":"2026-03-24T02:56:27.624374Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"1drop.click/favicon.ico","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1drop.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Mar 2026 16:38:11 GMT","end":"Thu, 18 Jun 2026 16:38:10 GMT"},"fingerprint":{"sha1":"CC:AE:2C:E2:85:B2:86:16:B8:B8:DD:97:E2:29:7E:11:0F:49:FA:BA","sha256":"28:AE:8F:B0:24:BC:2B:56:65:95:2E:8D:6D:6B:BC:8A:E7:46:FC:D9:AD:2D:49:9A:82:53:DB:4B:66:A5:7F:04"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 1drop.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://1drop.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncontent-type: text/html\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I2ywXDmUxLAMJn3AaMwneGytl7G8%2Fj7qHWBnz5KuSXbrmw0tLA25cCxjzDmX9bkhZMy8K1uBjsMvk2oZ3g0a9aG%2FXgPA%2Bkc92xj6\"}]}\r\ncf-ray: 9e1266839e57120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":153,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"998368d7c95ea4293237f2320546e440","sha1":"30dfd2d3bb8a7e3241bd7792e90a98ebb70be3a4","sha256":"533a1ca5d6595793725bca7641d9461a0f00dd1732dded3e4281196f5dd21736","sha512":"648c4720a85dbf834be1ba00f0e1b4167cc670fe15896efb00a77fb6e0c225a13aae3da10d85fa6e7f726420d9bb3c20c43466e02296d44153c127b7160e0b97","ssdeep":"","tlshash":"4fc02b2d7513bc4cc563317832c37080c0c6833769bb4112c440800331cf2998bc3397","first_seen":"2023-04-06T02:01:38Z","last_seen":"2026-06-07T20:02:59.51485Z","times_seen":4919,"resource_available":true,"data":null}},"time_used":69,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1drop.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Mar 2026 16:38:11 GMT","end":"Thu, 18 Jun 2026 16:38:10 GMT"},"fingerprint":{"sha1":"CC:AE:2C:E2:85:B2:86:16:B8:B8:DD:97:E2:29:7E:11:0F:49:FA:BA","sha256":"28:AE:8F:B0:24:BC:2B:56:65:95:2E:8D:6D:6B:BC:8A:E7:46:FC:D9:AD:2D:49:9A:82:53:DB:4B:66:A5:7F:04"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1\r\nHost: 1drop.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\nlocation: /cdn-cgi/challenge-platform/h/g/scripts/jsd/ea2d291c0fdc/main.js?\r\ncache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public\r\naccess-control-allow-origin: *\r\ncontent-length: 0\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: 9e1266839e58120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26265,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dallying-reveler.fontmaxplugin.cc/api/config","fqdn":"dallying-reveler.fontmaxplugin.cc","domain":"fontmaxplugin.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontmaxplugin.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 28 Feb 2026 12:28:07 GMT","end":"Fri, 29 May 2026 13:25:31 GMT"},"fingerprint":{"sha1":"FF:C9:44:AB:1D:80:02:3E:4A:9D:9D:16:1E:F9:2D:B9:CE:66:09:5E","sha256":"D9:44:FF:7F:09:14:1A:62:5B:82:92:B7:7A:13:81:95:94:8D:9B:8A:52:C0:EC:FB:45:F7:AD:03:48:F0:A7:67"}}},"request":{"raw":"GET /api/config HTTP/1.1\r\nHost: dallying-reveler.fontmaxplugin.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://1drop.click/\r\ncontent-language: en-US,q=0.8;en\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qGBs2OdIlS97g4Fcyuo4JL4TgK3I6ZVukYJwRU3oGuAqAwvnkTvlC4auRSuo8%2BfbFq2L1dFUg%2Fb7x%2BvCjoqbGiWqIw7WRv4S4zAQXCm%2BDOffEuaIWc%2FjVY08qNWAbA5mDQ%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9e126683a9783181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":177,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"3684ce7b9e19f703af0450a4f3f35cfc","sha1":"a0871613487c7160f4775dc8e8c290dc44dcdd04","sha256":"6cfff34535b05d5f174fa0a062ef0a1bb0af1dbdc73457919631515da1562a7d","sha512":"055dc039a96130c3fd82ff32459ae6ce8b74414aa3a494675ce8128d1f02cf50987ac93c7e2222b0ab09fe6798d9fbd95b30ad6bef2e324ad533f1321190457b","ssdeep":"","tlshash":"b3d0eb0005693fc70b8af203bcb6dd51dac91910e22988c70807081600225e20a481c1","first_seen":"2026-03-24T02:56:26.431898Z","last_seen":"2026-03-24T02:56:27.613443Z","times_seen":2,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/cdn-cgi/challenge-platform/h/g/scripts/jsd/ea2d291c0fdc/main.js?","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1drop.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Mar 2026 16:38:11 GMT","end":"Thu, 18 Jun 2026 16:38:10 GMT"},"fingerprint":{"sha1":"CC:AE:2C:E2:85:B2:86:16:B8:B8:DD:97:E2:29:7E:11:0F:49:FA:BA","sha256":"28:AE:8F:B0:24:BC:2B:56:65:95:2E:8D:6D:6B:BC:8A:E7:46:FC:D9:AD:2D:49:9A:82:53:DB:4B:66:A5:7F:04"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/ea2d291c0fdc/main.js? HTTP/1.1\r\nHost: 1drop.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: 9e1266848e67120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26265,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (26265), with no line terminators","md5":"7e2e7e98fbf00ec0007484018e8c0786","sha1":"8c082c1ec44d0b17ce996f115612067d59dc6feb","sha256":"9d53e86d61c5d81b6042630b288ca473d30c9fa8674cfed36af7826dd7162655","sha512":"4f7eb9999b319ce1fd571ce75ab1e698c594ddd5abbc5f380656473bee1d88afb5d8f96c181976f416ecec76965064a56286f2daa5e89cff6fd2b09874192565","ssdeep":"768:FbSki7AfimgaQhh3dTH6QitadqilLJ7Sn:dSki7AfdRQ73dTH6zivGn","tlshash":"03c2b2debacb7914933a647914a332c62ff9fc84210c5e54d614c8b8b8b536cd196fa8","first_seen":"2026-03-24T02:51:15.491372Z","last_seen":"2026-03-24T03:51:02.704238Z","times_seen":3,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T02:56:01.391Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1drop.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Mar 2026 16:38:11 GMT","end":"Thu, 18 Jun 2026 16:38:10 GMT"},"fingerprint":{"sha1":"CC:AE:2C:E2:85:B2:86:16:B8:B8:DD:97:E2:29:7E:11:0F:49:FA:BA","sha256":"28:AE:8F:B0:24:BC:2B:56:65:95:2E:8D:6D:6B:BC:8A:E7:46:FC:D9:AD:2D:49:9A:82:53:DB:4B:66:A5:7F:04"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 1drop.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 24 Mar 2026 02:56:01 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2H98BcnidSF4wxjFT%2Bt2IX18%2Bm3VlU6cBOLOwdhvXjBlxos%2F7P%2Fa3iuCVaTKPZLgf8syRfZRHYHSWAKpmyYJ0Vv12bgJKifqFcY5\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9e1266791c9935a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":29351,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (926)","md5":"2b27f3b3aeae08a9f98ef62012316cfa","sha1":"0b8b435eec19982c4bd5fa385d4d4ffce4a780e1","sha256":"3f268141a084fd29dbb91be12e90cf182db89d00b3b5277c1f911a25bccfaf91","sha512":"4648d371d48bed7e0cddab2ed160300b8f2b22a4627336fa31fd4b6c50f7c52975b116c325582ab2c987cc146776e8fa586fbe66481e489236299496349c745a","ssdeep":"384:zgyG/n784RewQmnsRJjaTDjd8Wae5ZS3nlXtJZr5A5c+MFg5Vnx/k:zgt/n784fnsiuLVs2g5Nx/k","tlshash":"0cd2b875727710317533d6a93bbb971a3255f003e40ac5253afc62888fcaee5d893a9c","first_seen":"2026-03-24T02:56:27.616466Z","last_seen":"2026-03-24T02:56:27.616466Z","times_seen":1,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":65,"dns":57,"connect":1,"send":0,"wait":66,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Share+Tech+Mono\u0026family=Rajdhani:wght@400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:01.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:09 GMT","end":"Mon, 18 May 2026 18:21:08 GMT"},"fingerprint":{"sha1":"63:D1:AE:99:1E:49:D7:6C:71:F3:BA:F5:BA:47:74:1E:EB:90:E7:D6","sha256":"69:90:BB:9D:82:60:82:88:FF:CE:F6:B3:3D:DD:B5:B5:FB:F0:56:17:FD:FA:0D:BC:9C:5B:83:51:98:0D:2F:CF"}}},"request":{"raw":"GET /css2?family=Share+Tech+Mono\u0026family=Rajdhani:wght@400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://1drop.click/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 24 Mar 2026 02:56:01 GMT\r\ndate: Tue, 24 Mar 2026 02:56:01 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4052,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"9dad1dc43dd6b73280752a1396b74a9d","sha1":"be98e292ba4b65e50edb1a1dc0103c9b0b127a16","sha256":"f2849e27d8e537bbd1dad56f971d67d4d9028864bd8e87e754875c06bdbf3169","sha512":"9015cb50681c4038d14f323c35e2ac9019e2084df204f1d5773af25b98c9a97ee3026d0dfd17ee6379e4d67873aeac238125dda6aaac091d78cb21238df51ef4","ssdeep":"","tlshash":"9a810291082ba940eb932cc113ce7e36ef0e63515814e9356ffe1cdcac9ac665351b4e","first_seen":"2026-02-12T00:34:56.37781Z","last_seen":"2026-04-25T12:38:29.236162Z","times_seen":28,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":85,"dns":1,"connect":21,"send":0,"wait":35,"receive":0,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/sharetechmono/v16/J7aHnp1uDWRBEqV98dVQztYldFcLowEF.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:01.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:15 GMT","end":"Mon, 18 May 2026 18:21:14 GMT"},"fingerprint":{"sha1":"B5:88:52:35:18:CA:4C:5C:D9:FD:F5:56:AC:C0:2B:59:E5:7B:5E:F1","sha256":"74:A3:48:9C:ED:BC:84:9B:F3:4E:EF:E2:A0:CD:6B:BA:0F:CC:E2:3A:7A:AD:F3:94:2C:CB:EE:5D:F8:D7:CA:AA"}}},"request":{"raw":"GET /s/sharetechmono/v16/J7aHnp1uDWRBEqV98dVQztYldFcLowEF.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13500\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 22 Mar 2026 10:08:46 GMT\r\nexpires: Mon, 22 Mar 2027 10:08:46 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:38:52 GMT\r\ncontent-type: font/woff2\r\nage: 146835\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13500,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13500, version 1.0","md5":"65d3eea7a186c2ff5f3ed8bf89642ea6","sha1":"ea30f8dd250111e82e53180de8ad09b6f23320c6","sha256":"41e6b9f297f7d9a2df2aaa274092f76d2f72711a15ca455f7f4f4f92caf16b72","sha512":"19ce13e7d94cfd2e9a56e128c29761d853adef646954014f2dea54bf6b8518143ed4404a9cdbd4c25d3fc04fec98520adc42d3bd357840db0b6cb2fa3c031c94","ssdeep":"384:JTOTPyx11kthS/no9Xuf8F+0pxVTS385wlKEC5FU:JTdxHchYo5uf0oM5wYp5FU","tlshash":"8b52c081d7ce258bf9b505dc14a1187c4ab3642864b75fe49881c540b1fbf2da9cec55","first_seen":"2023-05-08T12:42:22Z","last_seen":"2026-06-07T20:29:24.698842Z","times_seen":1965,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":109,"dns":1,"connect":15,"send":0,"wait":16,"receive":4,"ssl":90},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:09 GMT","end":"Mon, 18 May 2026 18:21:08 GMT"},"fingerprint":{"sha1":"63:D1:AE:99:1E:49:D7:6C:71:F3:BA:F5:BA:47:74:1E:EB:90:E7:D6","sha256":"69:90:BB:9D:82:60:82:88:FF:CE:F6:B3:3D:DD:B5:B5:FB:F0:56:17:FD:FA:0D:BC:9C:5B:83:51:98:0D:2F:CF"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://1drop.click/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 24 Mar 2026 02:56:03 GMT\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-07T20:19:32.695628Z","times_seen":29532,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dallying-reveler.fontmaxplugin.cc/api/is-banned","fqdn":"dallying-reveler.fontmaxplugin.cc","domain":"fontmaxplugin.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontmaxplugin.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 28 Feb 2026 12:28:07 GMT","end":"Fri, 29 May 2026 13:25:31 GMT"},"fingerprint":{"sha1":"FF:C9:44:AB:1D:80:02:3E:4A:9D:9D:16:1E:F9:2D:B9:CE:66:09:5E","sha256":"D9:44:FF:7F:09:14:1A:62:5B:82:92:B7:7A:13:81:95:94:8D:9B:8A:52:C0:EC:FB:45:F7:AD:03:48:F0:A7:67"}}},"request":{"raw":"GET /api/is-banned HTTP/1.1\r\nHost: dallying-reveler.fontmaxplugin.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://1drop.click/\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncontent-type: text/plain;charset=utf-8\r\ncontent-length: 1\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncache-control: private, max-age=300\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JUxZg5V93cPWyRphUja9W1ZTfSraYyIDuvmBFlku2Abyo2E%2BNaYxGNu8vl5DubGarVzDMw5qWqLZY5TVTjCbsveJGjeh%2Bz9IElODy%2FSoRcWwveOKIOm1fttaHrXynw81LQ%3D%3D\"}]}\r\ncf-ray: 9e126683a9703181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-06-07T20:12:56.300031Z","times_seen":114361,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dallying-reveler.fontmaxplugin.cc/api/visit?origin=1drop.click","fqdn":"dallying-reveler.fontmaxplugin.cc","domain":"fontmaxplugin.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontmaxplugin.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 28 Feb 2026 12:28:07 GMT","end":"Fri, 29 May 2026 13:25:31 GMT"},"fingerprint":{"sha1":"FF:C9:44:AB:1D:80:02:3E:4A:9D:9D:16:1E:F9:2D:B9:CE:66:09:5E","sha256":"D9:44:FF:7F:09:14:1A:62:5B:82:92:B7:7A:13:81:95:94:8D:9B:8A:52:C0:EC:FB:45:F7:AD:03:48:F0:A7:67"}}},"request":{"raw":"POST /api/visit?origin=1drop.click HTTP/1.1\r\nHost: dallying-reveler.fontmaxplugin.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://1drop.click/\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncontent-type: text/plain;charset=utf-8\r\ncontent-length: 2\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PMSh7ETtl3jBUBDyXiTmknTapjCkwhKxyrp4OqAOW7UsRssFENpSj1iOrAPIwsh4bSRmW0GooLFTlXZ8ci5mxhj%2BgwuBIfDBMBIBNgppKIX1zk%2BmrzAVXiOce74pFZMi6w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e12668479220daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-07T20:32:34.464754Z","times_seen":423281,"resource_available":true,"data":null}},"time_used":233,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"1drop.click/cdn-cgi/challenge-platform/h/g/jsd/oneshot/ea2d291c0fdc/0.5886361365593988:1774319955:c1QBrPyC72ZB5l4tyzs0KvGG14sbwr5ZWJrIkBAdHz4/9e1266791c9935a6","fqdn":"1drop.click","domain":"1drop.click","tld":"click"},"ip":{"addr":"172.67.196.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:03.397Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1drop.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Mar 2026 16:38:11 GMT","end":"Thu, 18 Jun 2026 16:38:10 GMT"},"fingerprint":{"sha1":"CC:AE:2C:E2:85:B2:86:16:B8:B8:DD:97:E2:29:7E:11:0F:49:FA:BA","sha256":"28:AE:8F:B0:24:BC:2B:56:65:95:2E:8D:6D:6B:BC:8A:E7:46:FC:D9:AD:2D:49:9A:82:53:DB:4B:66:A5:7F:04"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/jsd/oneshot/ea2d291c0fdc/0.5886361365593988:1774319955:c1QBrPyC72ZB5l4tyzs0KvGG14sbwr5ZWJrIkBAdHz4/9e1266791c9935a6 HTTP/1.1\r\nHost: 1drop.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 12124\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://1drop.click/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":12124,"data":"Ay-QBIxaLMuUUxruM$c$u$SQsf8u8QxU$B$JCK$GM$n$X6ham-iLD$V$omw6E$axBD$uMDx$MyxS7$sMK-I7KyH$vQlEH$JehxEE$jHBnb$afxGR-Oi3jIW$pSVzS5Ckq-$Ja4CAG-NHZJ-o$Q-$u4Ah-dG8Qwex88e7Gwk$y-xAa-T-3Any1HSY1HM$s4hx7-uL3Q$ZsK5f$UM606zupO6$bmE$B6xJDmU$qljbJTx9d02W-qJDgiW$E--$b8E$u3wYmq4ZRpr$9vo3czET-Q$hsYU6Hl$$44mEOlx3a8$dOIemMV5Z18-$J8EruyAwM2ntTfyxwH$hGL9JtEr6$xKXIUlBQchhshBsG$9Wi$w+1pG$L-6UhVHvlqG$ZZmxMJqtI$m2Zl2+SmKAJO8sCM5XJKCDiMAJpd6DLXy-$QeHi01XQ$KbYIyeYIvyawHRYMEvM3vUfeMF5L+HkOG$a4h-L8Hzt-TLlJJ59gLugCAJUReK-s8UA49psRXZJTkOmXTqj-54-$rgGIYZEzqfZjVI$$Dmt1AU3DGY+mcGc0w-chie3TzxqQY5UUHg9693v7y+cGuZcb6vcQjCtvL2932+$uvp+WbREwcTu90uSMnFUJF-J+iV3E6pgrAxXZWHOwGe93raqQXg+x+Yw+bguy2iiS9TXOoXQndO6rOy5nFteh0wuyXYT7y-YeHUzkzN-u8Jb$hSEXGrs0tIV$XoEiGEi2lTiQpT0n9NTlYoOlBsatD2IxlEuwXC-kusOS-i26y00Ul$HL82Q$95MX-iDUh-p$YuM4hDLXo$Es2BV+s$AQXhyOQvIQQ5v0ErYtOrnKcscXJOh-iQWOHrL39rQQ+AmAfyM6OwcBHKncL-AIJh-ALU--7$Y9+yWx9+OLJu6Jx49GALIs$WfID-EIqwR+I1s$OwIuLzm-Uq-$fOLh$Wuha4cJGr$uw1yKWMLkvT4YiBR86yni$Mr$ishrm$iaQ4iw6hucJ+UH3G3ALmri$vyuMEK1h+yIgp38ZkX-v43$U6SnWYxLu7M+3n7QsbYiHhx+$8D-+MZyeelZ1JSrUvZhJr84VaGvZvDh1bk73AWaXJ2Bcw8OuiGLwsjrazuiOhnc7bLpuR7HXSFMA4SHwg8+$-5+Ghr$k9E1B-I-xxHx8HIa9h4hFwuLA-CnoOcuMHM6kDzx1-aXbUusJ$H-I5KWs6v6GLSqA$ILeOHVS8+1u8JxQuL0G1NrZL2r3dL2Z8QAQhHqOIsJpAJW8+R-vB7K5w+yYYD1-nCN-SwifrbUG9rlO8+UwCxs$C4EC$hW0S+KCl-i7xQ-aplNs$J$vJhMfiMIinbOTXWvhq2I6zh2Jw75KQt$SLBgphypQJwk+m5i7LI-ErLvDeudy-iAxxBzzucDWzdcwIF3HDv-uep5mncMulQ6iUjUQOfQlYOQNUYD6-ngyBNuWYrlQfGrzdk5djXsmOupUJGMFyMuQQt-rv6Bf4WnEcU2FjzR2N+Qi2FWzmCIDv8aSZNzQVwkS4HQBWZf4C7pFimxAFD9ruFEcFfFc9ziu0f0eFM$$u7VyxnDE-GEujVc$QbEM$b$GL$MFEFOtAApfis84vB62gGhrJ$GV-66L1hQ--SQd9-$fIxhbw7b6Rgt$zhjeel-TpBr$uHNuIxrRr$rWKtI+LA0Q9KhxtuMOMh8fo2aiEmYUL-OizAVDAdSKVbKkLeV9hGwILQ2e1uTmYoSaWs8W$WuQHL-mGK3jcLL0S4an3zuNhyhZhypY4Qwm2hrzIc5mxRBxueBmjIIzatUx83XFIhWxOUYIa6jQiKBLDsyhtx$y8-II7QsJaSWSJtWrILKpHszzdWHH$rIKbuqAWW$8TXWDxe-E8MAKhExQUbpgvXG9SGIhDi9-Zrrxn22mirYw-xxnzWnEOZsQQSy8HmfEYG-aWGeQxyMu-cFeEcmDDDWJC9Zp-YLHO+16ZlioUhG$qqCgpprR46sas6Vl+2k4U0haieHxKGGDGvqliCMe1hXwUgJoCr61dou1Y$C-tCEnE9I8rR3muFubeZDT$xTa8WKyihMZMeoDzSCYK$RirqR4YQTd9BTac6JCOi7sIh8L8cgi2hBaLoShhL2hH$gGH924WNoJdMMfacjATvcsluVJGuHmxd8EMpWXpWse5LxS+HYIEDH$LUgvel5eZbqlWjuLTsTOGhjrE4OAX8d-D8SgDFBIlpuc8DuyoiriaL3AAyzHQ-YmDeFBVcbdl$MXQJxOKyI1S6NTdB4EVSzYr$AuWOobLMMvu52fKH+LjQCm-YzQo5WxHzoha1Siu3sWLO3Bm6+l9LZB85mCj$mvxje4eWoRZQ$kR-UZ2-ev8mb7QL+AAmLDwHs79gNZ1$iRTTGaAh6zQmzAXU0-rimx$iqWC2HZjrTk$MeCdAAxj$1drJMFAZZp4FOlxpWqyYtGIxjSL1s-xFKZ$ks$M8xCt$qm5UcNTMVmuMiDs6cC4S$sDitXsI+UgG8iDxqX5GZCjLabUhb0gAa2uL6lnUnCEJBc3wDROSeFj$tYdJR-JrA$TY306BRNCr$rC2tkR-rkxxSt60MBrLQUZvc9J-ARFeVG6$4h2KSaA0uNhxLx4RYniMiiWU2p+nnfUtqlixZHQ$Iguwqr28$COKB6i9QB+8VBFpSXiW-QZuxXXEbhY1l+8T-wCnuhELfhB6+pj67MLAns2LxzD6HtjBbWw6uCjAkeb6shy4RQIoV3-B-hGQYlg3$0ZoW8CF3CvgUlhtnnZZF3xGMQE3QycROy$lHI3uYZlLMOB0lz68-xV$zjxpW-q2iTRsHSf9NWmqHk$RBfbAZM9dMMIfIEQ6AlxzbSaMwKtf8zcq$G2cEVxIn09C2Zxi4iXD7hE2Neeq1ByW0iZHrTj$kM5lyUVJ8h6KeWLHx6E-24lRhB+5Kect312hfrL4HaforjKTbD-pQXvBj$IY-Lr6Ab3YX$+hJKfmSLIvhyXIh50HHZzJFbcKfUzhS-Kyi-wckKSLHXKEkTrio6u$6+AGZQx$V549azagcXb2$O9L2iFfaOVMTAi7Hdwt95MouF0ua8C+Axu-uKqQUGS9MrUqyYWnuKkg5qdrm7ExxIeuBzSrhnKwdzeMe8blH1JOECEpUJnjVDQHnBsbCVTJpAy+6ND-8JOZH7M7kScUqkiBcHJJ8LKcyQUzHUZcSDAyIdJW9xYiiuTS+MZBbq+kCBxmJ4XFGmWjqcw9ZMMw8hkjVlOY7MLe38kMDoqp58BWXZSNcs5xOAv3yQeaQxC+EZSyetnfUNMhalZsnLbw6ZH3AOM4Kc7f2AVpIveORNlj4t6deBjMwG$OU5AA63xRtvXE5TBNk8cGVxc5wBCeN+1V8JIcK1x9gzesmSTOWZRyReaJbO01xTV0bnqwyKh9-3rhzH86AOioRMMjU$D$mSnRIh5N5i-68bCdcXNMbjWR1+ICNAXL-Wtj2acAQp1wWrM+DA$BG+X+UA26RjW5QBGz2V$fU3iFDjr3bIc1Nvs0D-XeWcy+cUth$IMIQZ$H-Gc8HW2Ws5b$63bJaj6w69sXshx5WnbO-Gs6xkYEt0b-+hDZDUHH6-+5a4IO8sUTbY1-sO8v6nNkHB+KIyLHx8NL-jQj$v9yooXjD2-MiaizL3$2DyIBRfYjRD6J$3U+8FQH-YXOMhXRiIDWQQQwM8Hvxy2acXsbx$KMUGxjXgx1xLcCIEtYNRKV8sCM6RHkbNKv+52cXobhMi-vXUIyYM9aWQHeU+Xxrho4GhE+Xa-8CO$DHuc3N3MgNb9y2OoRYTWL9aiw2mIjMC-+R11-XZWHNSRvKhtrXCx8DhKqxC1J$LKL-IcKW1rHlLXrXglwt1m5iSGc83MO$l$-mcCIlccKsjrvKdKwo7K-$jLaEWI+sYig-Zl-R3KdYcyw6psUHOLdiv6itym719RSUBU0$zN4XHovNNCVDC+BIYDM6+NhcUNTHM-z$Ub3MbbEXaWIEkDAmy2$6iQu9txtbu$2bwXfGD2uRimV8KbGJbs6ohaFLAQuNbYLaiR6bM-kU-tucD6TQaW8DWxyNbH8XjJ7CvL+-vbucU2l8D$0mVNlQ$JMtkHh$vKQH6H-t-XUNjMq6B$WQXMwt-XRivGkHhMmmRinC1-mmKWTXo1$TCtlWc1MQExdGyxMU09ZHQT-TJ$Z$51VmF9M-mlHQ+E8DwL7b-QwL4LdMzbGTuHNlsQ8-EU8becEE2aO$B$v6jWnL8D$i9yRYlxdrToGc+scNO$tNfGEtYiYJdJaW+E68Qx1-8XOLRy9Hl$G9TQ6+EQjLe6It8qh$7lmXA$Vc6-0ahMhXKWwLB6A$XcBmE+fTeJ+tGqrm$DiqLT+s78O$u$Xq3tODEK$Ts23aTs8-HHKtw6Jt--YXjM6M$qr$Na2Qp1jq22uKYCMNTJyYG5fY+XDiO$DXBD$62L1-2tYqsCa8Z9kNHYvqIoDJLJl8d6RHHHk5HDFs9Koc1lbCkbN94XiqVXAs8IBC76EtoDGQjqyTQhsx1--mrxW-VblQcJeL8-l$dNUoZ8CxkxNs$holtX-xQhg-w$syBGfl$hnNfN3hHH0lwU5Chqr93qc1gq+9L5hEJMlQ52Yil+3QSGhEtcvLTK3lZUp+++o5YhgX+h9mRCscp1SiB9Xm$6aek$F$mQxToCuJ11-9G+SMrJrKRUB+yNvHyY7lDeI63ayKFHYKxU3a+5lD-$+Eg$0Mze8x9ij$fNae895WMmu$a5sJ5WmNzRcM+ChNkaI1keCx7liqbII-sa8cmmeb$+2qHCexoCLquc-sC-AY7$nYtXZHI978B6i65QZXBcKDjiSN88+KOqU9wYleS+8D1bvoV9I1Z2zZjc3IdYFN7exCK8psx$aXUL2eL-$N+JDI5QxmOKM-h1RHUohKbWuc0esogTyoxrT-Q8O$ns2Qix2oMUEtQ34o+Ei62aRsUHQmaWl83$ih-9I56oNUY8Y1SikUMq-R2bQJJRN$tZTHt2mJk1F6l8+WCHl$vlboEt98u8z$whCHfZxDEHBbI8OhrJV8ANoTHZoC+eWm$hKWjq6s2ZwJ0hAMiG+8WJke3a-NfUsZkAalD+FbjAsUNCToTD7lC+6QFb6Zj5J3H-sU-mEyxNmQMAYi+6vcaZRWSbMT-Hdl5WIET8iiShYLra5WmAEefJdYSZKsiMBC$2EHrA$HX8dYHQ1HftzofRJ$JNcM4evRi3YlSgvK9qNghLQ-rC7Xr5QTe33aYi9DsUjhmhYiGZsmhR+XKtWQlQC5eA8myNQx+ck$GQ+6I6j3l8eGc3d3hEJcS2hE5JZaY1KTyhucl82luhAliMV$+moCm5RCucy6-srsJ$6K5qXNrqrmAQYmSRSifav6H3OLnGOU55L3hcfiRDSJgx7lEtFWda$bRll8so6sZ2hKCAMRtAYTRJ1htbSb+8MZu$zsT6RRYq+URhJTj2GI-1yJfgzgv6DZro4aai7NKQaingVWTZSGlM8lhLC+CThXZX21QRsq6X1Zg8S+sRKYYt7gI8wE4EvJ1JrD2-1xp$Hogaz+lQp1Mloc$NClKKzTQxOMmgO6KljTeoCJmhQTVbI-STotUouk3R+cSbkXxDR3rq8DgpoMD60aF3J3Au4GIELpTh+XYJ2QZL8Hde+EsabCQ-XHuaZ2F6LCbHjNY1TmZ2kljaOXOltJhMVg+K5QtDYnKUp$WKfZSbU5u$MA$iTH8itUiJtH19$hoX+J-JY1O8O8F6CcsUhXupNMtLHMsQ$SIRpRQhM-hJU-ucRiw3WQYDz+jWmm-sT-UWMrcnlk-$-pnG4XUnHQ2ajMFCgKI8q6UsltvKnnB62-6i3g6J4IY1jqjmQ685ru9AsghLKWNpAAEqpAKAnAfACCTpJ8mQTQIche49rq-naL3x5ZE34tBNvon2sXwo4oXqeqy98eH92aG1EtI9C9mIqbRi8An2mmNq35THrfJQqQxeXT499HB$aJuhKWg-N3$h5HD1A$h+Y6VKYkiMsUhKUL$DhKXpUnKql8$cxRi2wqtljMhXwpZ2iKwGxKuQqafqkx3$Sx6-toxLiQGUQ1QZcHFcBnGqvTlpZcRydGffgcOQ69$hQKw-qk$H0$lK$g$DfpaW7NAhmhLZgKcMQHCHHHin6EImEe-bOMsmibNuHnZf2QAfGfr5cAEQGpAQ7eahwAKA6gi+2+ahVeZ24pOphMDBEt0lxDuhI9MrQBkb5Q1uZ$CkIalTpTTTSh3ZvBpp+sOBuhSieuTgFei2Ca+afSi2GIuX0HmQEtSiJpgsENbz5C9zEgmsieep$9keZiO8Et2i1CICyQ-fCZSGsHD2gqpStXOM0bJiYxNTBAxXgxC+V6v6zx-nZ8OGSTcRmTipaWTSV86ZeRje0pGqTllp+n5pzATTg5V8TsTHiTdsf2Bl6fBoCobfQeY9pqg-LRKCSqGq+e8uNApjdxuXgmBk5Xmbr1hMjkli3+yQJnAQvgIxqAyQY8bRucWTp$BX7eoRM-VoZ90Hj$sROG3uvGz6vZ9s8-JgbkC-2nRjv64CrppJJppBCg5Sj$zQOqAjuC66+8dYW-EAFo$8WgrjxDjKHSSekNKQgfbu9uwUXup1-cVDdbIq+R3QC6AQF3hXjuxDXpnuRVliFSDcvAIj2+rgawqpeaE5SgYi6gEQIqZ9RYQDWoWIFYRmrtFp$gOeu$BCTjWK+ELRFY9JmikCZkIzpfQhTq-K7eqNSoXjIVIcVoeQhXoDJ$GIzaW6lnFxnDTTuTFmmsVD-nsCXvGa05IqjrRs48+bZTW-mmSBpnBLxV3Vtwb1mZ5WHf4mzU3g4nSScZxeEiyioSonLCqxMwTnhcIpgT+g99bCIc0A1jSkehVtZL--ENWQRk4SI8SD4ioMX8Z5AtTHNeWcEBMf-3wEcSA83QB4AJhLRTS+K5BNWhrtEy7zahK9m9Ez9kSwih1T350Dt3MCaCpoRj-fg-MqoQRNTvrZCH+XHf8DFBqD+H9eUoJMT6OMYBeh2p76WWlp$p6iGZ9cIe$h$ZWvQB0t82FoNSixF6xaI8FClYEe+nye52jq5QFu3UC9FYc+qz-l9ypZaiqxQBuhegY8QnEHOnTcGQ8XAVijXlX8gVpk1DfURi7z8tSCDh5SAKgdbIV6qVNOkW-qcK3WlpVcHQ3uoA+ieB9-zwOw4aTO5vhOpV-B2-3zv6fLgpsQEeC-SYcYY0eXbpGdI8k3sQNK4cwT-h3nXNEyJpWdl9T5$bCDYSxotK1-IcKX4GLst+Gz8Ec+8WW-$k1XVhjrD$fvZZXBq3c8Et7qUUWTCQiTj91Rp1IEQ8sQkMFYRkfwmjcvdttv6HZZIIxvlC92z0A$vK62OH1nInRHCn--lVIZv60b85hV8Is2e5fqzqi2fzhXjqNcTHUDqHVSHSt2GS-jrCzSY1QC6Ci2bh6OZHAxYT7lmAw707k0-$oA66Dz4vwNOvdW5hy2M4qKIEvKYFyo7ToxCml80WFOnBIkvAmAiq$cI0+DadZWgv2fsQnlEKJZaWIgwYAxUTY8D776KohlxnQ5e05LrmGxelJnrwQqEmnI-8$rx0H-Vx8CUem$mx$4IQ-L-tlQOEGTCkny1ds1Jp+0L4TmbJur5Q$gchI25LJB$Z3jKxuWIjKprUdSAqO89-zS-Ms36qicCtJ8R3iNHFGOOUwXxH$yWZH7r$ivEfZJXyyNHV0U$Cn210E5Q7r-SG4qMURsnX7$OUwsuFE6$Zms6hHvYhV$J$v+BbinsQ6Duz9MMhizGlHwmlTxX8GqBTxnBD$gCmtO8oOsH8t$JGRY9C$8x-jI+3xX6WthasKB-hSRy-uDO+eGLplDDlQWsTWuLhJE-KWQD-quSm$uxrKE0G4$YB8Sx8rKYy9-WBY2K6mD8gUDO$5vxuhuptD8EEbL4GnMLLDQ2rIcH9iGultHhXlEblnXng$sKG-JEXQDnlrLOr9$2u9LuJIwebKX6u8BHu$xnuCKEtAEok$O2SKCKt2WrvLSDmfLjCM6a8wAlvzxKCKDurLsQ6rzzum$9vWAG2W+DVLcKT6VC9aOBCTuaK28gT$YJCwxQB-7eMEpWHT$Ull1SIOrA19pKFxdKX6lID-sK5H5D84WwDGZ$NQKLkQlMwqAL-MJxuJxe-XGa3dXQsGsi3OqCDIOYfEn9KxKW4BI-8D-nOE$6ojENeDnGIGls-f2JneNsJlprGQBInMGTunxcGZdHElL$ZKhL-EEhl9OhwxLMn+H+C8H4UL2S96D+68pscC92LO5srHEt4-AYv$WntMe6HfMn6KGWuN9fOZ5DLJ5KQupKjs4OOqLTIj8rtYyAGZeuBBjJil3XO$SfsBDxq8KX8o+Xq+T$QILXJ6i89s+TLDLrr4Ei6lLDSlcntQhEyMAeLXsKn6mBEvThgdRlTLnCA$ZrsfnYsBuV-+KM$DcAuwSLMmAY4wucDIqeL1m0MGREbM4VQK1HRy42J9hyuZnrlM6x6bEW-x8K3$7GDEX+BmSbynKd8kEWYAzyGxIRGrCmKItu$q8-XXsMrWLM2Dgng+rEC6hWIOBo3blgrvQObJvw8QFlvobMKmxjsjnJ6M6qiBRAjsHQA6gK-qO3LDwNmC1lr0r9vx7D-QmKXfMJQ8hfwRlt-g8Fpw5LQqhuIMnoMHoExEuU$vEUnlCO2dxL$SQJO$WszeHN$NJJ62a8SeM-VW6S7KsQJxYs3axjInm+CSLp4wxu3laibaSrTCnSLQQ46GQ$Q--wM$gI+XCv-CwJdLwc$U12bhsJOxCW6rc-y8s6DnQLmUSSECMh3uT$dDIxNJN$4WGGuGYQxuI9Z-m9HKYeokXyvOHdnjLsl-KbLqSxIRCvZqYUqlLQAvcVvMu0$7Wx$-FEXSTQhk2QCVsUzUdIQUSqa6tGwKru7CFx3$ai9c9jSmjN$uMlc8sD5vUKXIaLZ$3$cLw6EH-bJ1JX6Xe$JrI$iQgG16$$LYxQv-uQHyLeydEnHQQs+jbYYSt3rLLnL8O6KbysH2rkC8RO-BC$9JjG7QdasSv1ew-kxAClGDQB+GmYdtLymij8WmoMh5avLo68awdrAU1bN6LEBHtxxC$kxcYB7sEumJNuG8MFL3IrBtxq5t$FHRIZjHv$lWXm-6TABKtux4H-R7dBEj8xO-XnVDe-hcJGuhG-QiyoryMs3O7r$SB$i+CYDWnhGXrO-rEeyLB4bKwkD8uM-Qufuhh3nJYV+FZLftrS0SzDuBBEaLGluwZomL2B4RLw1I2nDTz+ynsDMKu8KtmYylCMrI8yjnrlB$7CO+IJehLkm2Q9aokDanJkDqe-GcWIwTeTQr6sYoYip6bux8U94QW6u+hlClyil7Qd$e8ujs6pJyy-88sguGuDnQ6y6lHpMGi$XIw$gSo+w8LXx0xCYyDj2apG+xTQciEYoUp4wUQ0$KTv8XGUjBIy16hD4txIKjDsebCa9hMoQOfJDnc8Jxif7$OqhMISmV-xY-CsVAbIz$TT-SG$hV94sXxb$UZAt7SGnvDeE5j$x6HEhMLx$dtJvXCDaLfSlCnU3Up9q1MkcX--HdWuIpwAixdm+5+Mu94kcnvv3152QqQMwJfc7lx+jUgUohxzsKCc5ja0cz4MwlJ8vIOaf-OwxkcpCn$Xv8MKdBjh2lo5OGpBJ4DaclJd-RBHVTGn7fBCw-$DOvcVMUxlf15eQ8t$yupcSre$3$0C0qLOvyTZxwaENHkupe23j5JdHiJ0Ofe23WEQsHMTjw0Yo$m5I8XCJ+sF-vCdq71I8GILAcU$QhtHXnhZhFY21nmQLv4Iz$VvQDK5aLV1n7OfYU8HDQbXC-ELnKRfh$d5Ox4wOfcJfB1wazC$ccgmRCKxa1ixo6xByFC2h-MbKqUGcn5CbhcRAXbSft6ZlRrltJ891u9fcC1NyQlxcV9$4yhHiwaCIjNnr4EYohrICtG$Hybz5vrrIivObBpe6fm$S+S8z8R$5HqG81IkxbDnFJID1xd1UmSoBqKsD95RYrX9Xc64iIArMamcwQiaHt$$hmLkmqVhjI9DzQ3CX9sy01HTCshdMrJaQi14xD8h61UJoqnVc+BY2LCjmSrvSfOCF-WWyJWYThj5fmQYU2HaMxU48DRQXW2bqUAa$p6$51rzIsVI6bk6ieKQAXb6xRCWqhL8ITTHRW9Wbmm5CjXkh$ma4Fk153w-5h$6oboDIijMStD7-+CkDDrhIkx4Q4qz3Bt5kYrb7Q8kSABV-$-e5gxKbHBB3ewWRqldAb496Ke5xhXb0JU$ZB15h$MEurL1QNl15ZaG5JtnzQMDveiiahw7OfYQII$KWEvwOLUol$Fe9Zpbz8TxbKlBeqbXCu8uI$-C95kY9hpQgLQgnhNWDi2ruJEhYBoQXvLy7qxcLxyDr+RSvJ6Uac+B6HlDNGstOG$GzjqMJ-vLpfpen6GUI7XCJxctIMzvNEap9wqw2L5lxqN+6Cu6gNhyzVD8NZ2ur0xxKfvew+1WB1syQ4uJZ0ab5arv6yXl-l1idypmhyK-KONs-aro6gXG98Tq2ALZ4UhkvszKQYD1bboUnvXDZTTi0m4GE8qbzD8sryTn3OtCczsquf$3D2-EwxK$QXs-hJb914-kQ3X6GTXn4uZCCTqLU669s0UnH$OqKiVto204vNfJ6IoRQGw9feTzdeM6jXS4MAHmfG5ooYgaibSv+x0$qozEUDiyI5zM3ko0CwbT5bCi4rWXMgo4BBHZfo3do0ZajOzYAzuZzakNU9UwWnBs3-22JbcTw4mDq3Q2LJb9UCLwBhZY13RDRTvYH6wZ3QlXq6eKwvBNZIi+eGFMAbhzN3TMJFw-vdHa$YHvI63X7MEbAzz522c3Z1UAH0f8yQdpk8FOHx0CS3Ii0bIRTg4QDV3Ii1xp9Uj4QD53YscxrGTQd7YGhrsNxH9D8tED43DCfxbcT6HDijZNL+3-ogBbAiWhYImZX8TwnaAs33LdgqlzYjviXEUKlgX6zS4UDJ3KizKH33y4jYxhX5-rSo0GbwiNAK8Llo9UZ4WDpinsRlplzrtDBDZfselXXz2CDAt5IizlSEgwsDzkhUbjpbm$Y6YjxAAEEurqCU4TCTADcKAxJSzbmBvhAWzupyg$tyj0hoLQnpygQZGj0hIsKfXGT8tXjSMGs5faGRQtszGeZcc6hYT4w7zF--bv3wCOL3-jIehiUTpRgCHJjDQBimgX+gvYtj+gWC2kleETKjDkTIi0BbfGMdSBKeb2zBrog9HnBeAAi2zlSGcZTz2gJbzTXXR94VB+UzsmZX3RDtjBbeOrdqZ8ubbkj9eSGAz4URodvD+3ob3yomlUL7IkZIQOIhMA0hBjpM4-Fh$-iTmNqc$TL1GArs28VjXa-c0rxRxXu+nD8joY6K$uSxZ$vQJWRA4540sVrqQbh7rMkGGxwkjttEFeWA-BnyGVR68087qxdo0WHg1ovVjLJn4xxwgC-tS8KBVo1ztZorw6$UeGL8$$$kxnRQxzzRlw6SQDJs1n0gz8h-h1MQnHno-vQbIpWscL4WbxkUS69v8rQGKTKTDtoQ$$Wzxx6b$8Y-QIXuV$F-HQ9agohLyRhsEkGarbRAl$0$rKoYWiSrnd$W22mURF$9cutxExtp$$LKLxOQ$$eOfUe+1$tIjZAMOrhr$r8JpuQU$DWKhdp$mps9g4lzU33cVixEQpv8WwqtvK3p$$jvq3cVGG0R3r$w0qto6r$W$x$9zg3dUVF+oMsQxn08LvQ+$Tyo$9fTY8f$u-i6jwXw0Z+sV0CJ$-XhGnS$mVt$5GF89kULLsrpior86$$hTo8i8I4W6sML$ik63X3Qw4EsLyxB-nXQhqpsgxJis$S$J08SE0xVxLLYy$286D+GDKz8oDbFJVfMl88V-VyQDO2nS$iQr6AXRIDOEfc3GArKEUEqO8W$4S-515SmOZwzKTQt3s9v69+LAKB2792-L$IXhm+ACV8Z38yJrsg$d$wk8GfKAou8x-xykL$XOHJL6uU2K-Y$pMhQGQL$sV8nMduOZGaKHI+6yDXvXA-0hHIE-rJG1YWB-emxdk6+-6D6G89gV1$mY0Q9Ong$HsOZhHO$FQug$SL3Z9+AsX6BS$$xIW7pQWQKvoStgMhw7gdl3r2ap53Owbn$m3tQHrGQwmBa$$LNUKE$$"}},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-out-s: 87opTDePa/Qk3b5Zk70jJA==$JKqFQkC9Epf3YEGUOcNpdA==\r\nset-cookie: cf_clearance=Qkeh0NqMaB1GFM_xxatUx5tf2jkV1mHe3sqMqywnQNc-1774320963-1.2.1.1-EyLB8Ce7SBTli86DEEl2DxlWYvipQpIQo24Ix6M.zwhJJ3mQqZyzJkDO45gkYRTOUjmn10248xOc7L7qn0jc9OtP6UPi1FphKTVsiDnnW3deulwA3RDpesXC0IX7EwR3H8xmeuRyRABbBuznq_.hfbNZfp40eo_p_OAHFc9Jthpv1nfyc0PTrB_pqrCtT3xJ7wzcpB9WbxDcrrgVeXL_bEKc2BeINDY8am0JJ11y6MQ; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=1drop.click; Expires=Wed, 24 Mar 2027 02:56:03 GMT\r\ntiming-allow-origin: https://1drop.click\r\ndate: Tue, 24 Mar 2026 02:56:03 GMT\r\ncontent-length: 0\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 9e1266853e73120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T20:34:21.112536Z","times_seen":16220865,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"1drop.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dallying-reveler.fontmaxplugin.cc/_nuxt/assets/index.js","fqdn":"dallying-reveler.fontmaxplugin.cc","domain":"fontmaxplugin.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:01.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontmaxplugin.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 28 Feb 2026 12:28:07 GMT","end":"Fri, 29 May 2026 13:25:31 GMT"},"fingerprint":{"sha1":"FF:C9:44:AB:1D:80:02:3E:4A:9D:9D:16:1E:F9:2D:B9:CE:66:09:5E","sha256":"D9:44:FF:7F:09:14:1A:62:5B:82:92:B7:7A:13:81:95:94:8D:9B:8A:52:C0:EC:FB:45:F7:AD:03:48:F0:A7:67"}}},"request":{"raw":"GET /_nuxt/assets/index.js HTTP/1.1\r\nHost: dallying-reveler.fontmaxplugin.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://1drop.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 24 Mar 2026 02:56:01 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 20 Mar 2026 13:49:33 GMT\r\netag: W/\"69bd506d-f4033\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=300, must-revalidate\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VAwO%2BEguaH2LsetYpnxvbKzKPMwuflMCt1AX%2BqYUtUywIWzSqikKPKUaAZ5hM1HlryIIMYYvrdYLXI6kukMMGJXxkmvylkabq%2BmTnnOxzP4j6QVtxpIv8uVx4%2FrEn%2BLchg%3D%3D\"}]}\r\ncf-ray: 9e12667abb523181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":999475,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (63044), with no line terminators","md5":"1f8cc178621ecd9c9c1b017952116051","sha1":"470ce5b6acd4ad23a5acb230a162407ae27b51b3","sha256":"80debbca6406464e53ea112730f464983863d3b3b0dac0a40cc2d4dd4cc1c931","sha512":"68e97a73b8e0fa080e31fd30164275ac818adeb175f9cf940c4c4efe19976633b67818a0d0c509807192081364d6963482bce33a7dccce1e902f8e40f6ec7c23","ssdeep":"24576:HzRI7jNDZAPmsFQ5On2RQD19mYC46GhBd4B+A7hRE1N1Krt+CG:HY5On2emYC8hBmFR7t+CG","tlshash":"eb258497130de36599e17cf528b43cb608ed4481ec1c1af8b743bb465933eeb6349a29","first_seen":"2026-03-24T02:56:27.620552Z","last_seen":"2026-03-24T02:56:27.620552Z","times_seen":1,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":14,"dns":1,"connect":1,"send":0,"wait":197,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"dallying-reveler.fontmaxplugin.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rajdhani/v17/LDIxapCSOBg7S-QT7p4HM-Y.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:01.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:15 GMT","end":"Mon, 18 May 2026 18:21:14 GMT"},"fingerprint":{"sha1":"B5:88:52:35:18:CA:4C:5C:D9:FD:F5:56:AC:C0:2B:59:E5:7B:5E:F1","sha256":"74:A3:48:9C:ED:BC:84:9B:F3:4E:EF:E2:A0:CD:6B:BA:0F:CC:E2:3A:7A:AD:F3:94:2C:CB:EE:5D:F8:D7:CA:AA"}}},"request":{"raw":"GET /s/rajdhani/v17/LDIxapCSOBg7S-QT7p4HM-Y.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14976\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 22 Mar 2026 10:39:43 GMT\r\nexpires: Mon, 22 Mar 2027 10:39:43 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 16 Sep 2025 03:40:47 GMT\r\ncontent-type: font/woff2\r\nage: 144979\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14976,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14976, version 1.0","md5":"cac31f26b77ee8053a76a54ce2f8ce48","sha1":"c92bcfc9121164049c1b30655db9481d0e454464","sha256":"759a9000e47b028799d7a4ca602634a7ac7adf415775df070a335d18d9b66f38","sha512":"175e68a3fa2978ab4a89c5bd92eebe5c0f034ccbd6004dd708c243b561102ac7e15e267b90edb86d03c312c1849b157b544ae8045209b0c2e2b27d1b480b7783","ssdeep":"384:ekfg3HBbG7EsSXbNSX0FgF1o56xCKSEdVkSKMOk5:bI3hEEJJSXExAwEKI5","tlshash":"7b62cfb8b1b6d40fb06e4de74cb0d2e11d78b155ad6a8ee4109bef197668063852fe30","first_seen":"2023-04-26T23:36:20Z","last_seen":"2026-06-07T06:52:57.921398Z","times_seen":3804,"resource_available":false,"data":null}},"time_used":344,"timings":{"blocked":161,"dns":1,"connect":16,"send":0,"wait":18,"receive":4,"ssl":141},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lite-api.jup.ag/tokens/v2/search?query=So11111111111111111111111111111111111111112","fqdn":"lite-api.jup.ag","domain":"jup.ag","tld":"ag"},"ip":{"addr":"52.84.50.2","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://1drop.click/","date":"2026-03-24T02:56:01.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lite-api.jup.ag","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Mon, 02 Mar 2026 00:00:00 GMT","end":"Tue, 15 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"0A:3A:FA:40:6C:C0:7E:88:0A:F3:A9:72:66:BF:C9:D6:99:1B:F6:A7","sha256":"2C:4B:20:7C:DA:39:7F:EC:E5:2A:8C:99:7C:69:6A:58:C0:62:51:B7:C7:1A:38:71:DA:BF:B8:3C:D1:B8:AB:DA"}}},"request":{"raw":"GET /tokens/v2/search?query=So11111111111111111111111111111111111111112 HTTP/1.1\r\nHost: lite-api.jup.ag\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://1drop.click/\r\nOrigin: https://1drop.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\ndate: Tue, 24 Mar 2026 02:56:02 GMT\r\nserver: cloudflare\r\ncf-ray: 9e12667f5a190731-OSL\r\ncontent-encoding: br\r\naccess-control-allow-origin: https://1drop.click\r\ncache-control: public, max-age=10\r\nvary: Origin, Accept-Encoding\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a82071c7a558f0fabf37ee3b940ad600.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: rHRV_t_HuSL7re_ArIf3FDgz5_YgB5jrFNxGCDKLe05xy5CeEKkGYg==\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2427,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"876d705d0c3ec265f063caf29fa719b2","sha1":"22d5d4862b42baeeea46e128de5fc5a209476d92","sha256":"9c48af44919a77b921c1104669f2153fdac1cdef4ebb99768e95d82789399fdf","sha512":"51d3db0d56f47367dc5bc76c55cebbf67ecc682bf6f120837425ca5a1acdd9d304c9ad3a7a96b9442c949a167fdec335ff6576fba8b42c1dbc3b258773ef4e40","ssdeep":"","tlshash":"be41b7e5c79d60d0c7ac573988c83fec507618c194250885ac799eecc0d1a2fb80ee1f","first_seen":"2026-03-24T02:56:27.622014Z","last_seen":"2026-03-24T02:56:27.622014Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1246,"timings":{"blocked":572,"dns":13,"connect":1,"send":0,"wait":103,"receive":0,"ssl":554},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}