{"report_id":"831d0ef2-9088-43ee-88a0-dc252e479277","version":6,"status":"done","tags":[],"date":"2026-03-01T10:31:02Z","url":{"schema":"http","addr":"mont-investeau.com","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":0,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"mont-investeau.com/","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"title":"Mont Investeau | Plateforme de négociation propulsée par l’IA – Site Web officiel","dom":{"size":128935,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (55197)","md5":"e2bc8679d7ad97b1ed58d8370a26b496","sha1":"394c71466d2192c8eb9a335889a006477fd42599","sha256":"903109fc14046de440cee8771ac76a5e916dcb73181de948f53f63110e21565e","sha512":"f2e0452f279eb52d9247e7fe7832bc08753d5b02caa8d378490cd278e200f876dea6a46a81c937dca23531364d03d60d31a1ef4cb439dbe940b9ed3fff2c9f68","ssdeep":"1536:5Batj96jtsEJPjQBq1Wixx2Pq3HqlP+yRevpj/jZlyz:ytQxLqBq3HqlPqsz","tlshash":"5ec31023021d39270133c6d130a95b3bd1abde6ffaa74a016efdc7e227e9c90755611a","dom_hash":"domhash19e0d2f4df643add6b4fb6c5af0e0105","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"mont-investeau.com","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":0,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-05T10:31:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-01T10:30:42Z","timestamp":1772361042,"ip_dst":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":39768,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)","source":"{\"timestamp\":\"2026-03-01T10:30:42.327420+0000\",\"flow_id\":1983695427871503,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.38\",\"src_port\":39768,\"dest_ip\":\"34.117.59.81\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2025331,\"rev\":5,\"signature\":\"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)\",\"category\":\"Device Retrieving External IP Address Detected\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Linux\",\"Mac_OSX\",\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2018_02_07\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0043\"],\"mitre_tactic_name\":[\"Reconnaissance\"],\"mitre_technique_id\":[\"T1590\"],\"mitre_technique_name\":[\"Gather_Victim_Network_Information\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_09_19\"]}},\"tls\":{\"sni\":\"ipinfo.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":911,\"bytes_toclient\":3424,\"start\":\"2026-03-01T10:30:42.271119+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"mont-investeau.com","ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":70,"request_count":70,"received_data":3348319,"sent_data":32408,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api.frankfurter.app","ip":{"addr":"104.26.0.198","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-05-08","domain_rank":3245888,"first_seen":"2019-12-22T20:37:04Z","last_seen":"2026-02-25T20:10:01.827697Z","alert_count":0,"request_count":1,"received_data":848,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"ipinfo.io","ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2013-04-23","domain_rank":1327,"first_seen":"2013-12-16T07:25:53Z","last_seen":"2026-02-25T14:49:39.126893Z","alert_count":0,"request_count":1,"received_data":572,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"ipapi.co","ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":7936,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2026-02-25T13:40:07.535585Z","alert_count":0,"request_count":1,"received_data":2485,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mont-investeau.com/public/js/localization.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6cc4f23a9e8894a243c74a19d2eab2f2","sha1":"5ed9b73bd06d0e5e39352a6ddb55bdeeb8e40a2e","sha256":"12064402ab9b471abda6d40eeaa04d326f8890c1d4c84cd6f86f1944cb8044e2","sha512":"aaf12d1c6f624b72a68b96359d71b44e7fbb7c9e65ebc645747bb1cb9a21ce481ef7154142625a779424560691178c39c6ca45071092334a9b7670aa5beab6bb","ssdeep":"","tlshash":"9421c110af9f1000cae8114f1d340176547ec5653a1ee8dfff5605a835e9f2ac361f24","size":1330,"data":"","first_seen":"2025-07-29T07:47:20.613767Z","last_seen":"2026-05-03T04:38:04.908529Z","times_seen":914,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6e36c76db1d4be62846e4688e1d201a2","sha1":"d421acd170fd9eb1b686763a12894da4a1f5c5c8","sha256":"2f8ff5a257017ae358561ce73d2e52b9ed91efc9ba343789a7f2cb5488f1d350","sha512":"17d964e1f0b29827859b7e5c7e80fd1b7947c5e16f7593d0569b3954a03615f832e2ba9ab0737c9f8ab426852936041dcc197405aaece705976c638e78bf9f6e","ssdeep":"","tlshash":"86b012411d3d2950497968f5493e7243704330617c0f8c8020250e5440f31cb4012890","size":88,"data":"","first_seen":"2025-07-29T07:47:20.621361Z","last_seen":"2026-04-16T21:51:05.192577Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/forms.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b5983c2080a6fb2768f4dbd10e4953b1","sha1":"51db46c1adc5e62158cb9b9b905f5e00fb7f2a00","sha256":"7e2e361ca7a3c9c5a161a87b4e50ba1864ca7268d629ab5f44583739d2b728eb","sha512":"eaacdea9561562117d6c6bc76c24f12497fdebac206beb5342b0dfbd92fc819c125c7ef265f9a026389e8f00c660cf0f521f9dff1f30289563643e9f73630673","ssdeep":"384:dhANNZWa2uCO1HVsOAhDpVhwuq5iR96QNEoYtxUPEZRSoCu51h929iNrvOG7L17F:+ouCuHSOAfhwvE6QVYzAEZRl51hcsNrR","tlshash":"c3628494f73c0436a6fa21fe78ef4485397ca2525d804c55a8f8e41d32e2fd58ab2f81","size":15893,"data":"","first_seen":"2026-02-19T19:41:44.702298Z","last_seen":"2026-03-14T04:18:06.706987Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/formsPlugin.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3c29f00e9d7f8bb55e71355dbd8c2c36","sha1":"bcd53049e5f8f39a0024525e48d62960bd6817ee","sha256":"402121a68eee38a0f9d6fb02115b5dcd6fd9ba6954bbb78174c257ce18f0e8e8","sha512":"f453a6d8a189f663a1a47224963572e018665868fd764184b7743ba92f1d7df25c7f541feb0c6b3f40c707c292f4a4e01ef4a5fe07e84fad1956e5a4509306c3","ssdeep":"","tlshash":"87f0278fc3258f3381316d7479ff96475bba02e639c98812391c5b802ef86922070663","size":487,"data":"","first_seen":"2025-11-07T04:55:15.503057Z","last_seen":"2026-05-03T04:38:04.882044Z","times_seen":769,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6c9bacd626f8da329cfd17986468b921","sha1":"b8ef112f4c44f07c914363756792e9baff14be34","sha256":"a5bd18c50d0bedc08c05eec31019f087887e4454a02b2f8959dbdfbebba8ffb9","sha512":"09e7d0ad1436136919ddd67933ebb806ec1dff914f3139af7b11f513064f54e02d82a8c7d35b511b0cd9ab18bb570dcd18d50f1722ea0a2ab64e2510536e78cd","ssdeep":"768:IY03Xlqn/kiIzOT9FSRo/6mCIQkjMdt24vD8B:ItiIzU/6YjMdo","tlshash":"55d2e7ae63655b37a6fcc2a270e54503ae6f79444a44083d7cacdece0288ed271f5b34","size":29519,"data":"","first_seen":"2024-12-28T11:23:31.679776Z","last_seen":"2026-05-03T17:23:33.310731Z","times_seen":1101,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/userCountry.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"bcd956701cd03398458e22553099557f","sha1":"13ea955deb21745b2feb7af6f060abcf5769f65c","sha256":"0961b85469539bc4f36a29a52fa143d1b21a67c050d258bd63485a07cc90a82d","sha512":"5d017d065449ead1d30174eb2f6cbfd663ec35613e0c55982eb2550433f1a757539fd97f933a0257574e0ac71499b119c3491295ef7ef2f7befbbc41c25a7383","ssdeep":"","tlshash":"f0f078ccd16ba761f9f763d07926e52600e4e9123f178483b6f50b43a0a75cb4eb08d2","size":632,"data":"","first_seen":"2025-11-07T04:55:15.50602Z","last_seen":"2026-05-03T04:38:04.904614Z","times_seen":772,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/justvalidate.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5999ea06cbb02d9f509d7127f581ca57","sha1":"353b584854cfb425f4da8446734b1f5557d32eb2","sha256":"29d1548e149452387bacf862a93dc3049a1f63b90cb972d6091641d477734592","sha512":"9320ce7503b230e62b4dc62a4078e802091a4a8e5fe28f7495ffec44f1bcbe6aa56e4b1ded1824e5854992e11d52319596b70a866486a74b24eb33d5a5107090","ssdeep":"768:VkW++JZ/wbtODUsl8dJorXESRAwgJMgp81UuVvwnCByfDwty0HD/h7PCByCrCagl:mCCDSXrRAwgJMg5s5Y3gk56D","tlshash":"41d2d706267149234dd94aeae08b9543b3d0375da914a4ccf73decfb8a8dec630536b6","size":29666,"data":"","first_seen":"2024-10-04T14:22:46Z","last_seen":"2026-05-03T17:23:33.333765Z","times_seen":1216,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/currency.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b5866b4a375079b4ffb3a02cde461a54","sha1":"f33e49337746d1003ff1e3714d43ae57d2ea4d69","sha256":"81777b6cb3fe12f02c54fd709616876a545dfb35709a39e2c221e52c7cddd7b4","sha512":"516b1d36e5aa801d21add9f500643c30f5c62eddc88b875c836eddde2022df0b4c970efa5f2496932940ba2c9415c425c5e6346b91186bf2239bfdea0d944128","ssdeep":"96:KlVrg8/es7VmmqqBPk2wPxqvg9BjdR02vP/TKNrcJlaOe/vOg5URxo3BQydu:KfECqKk3xOg9BjdqKJFEdm","tlshash":"cec15fd5ff7e44a0c3b4a1a10c2c2dc459be67587c8a99c5982e442012fdc9ade25ebf","size":5991,"data":"","first_seen":"2025-11-07T04:55:15.51299Z","last_seen":"2026-05-03T04:38:04.878686Z","times_seen":755,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/cookies.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"29e09689244f96efe325db8dd6199591","sha1":"22a6ee3bb67ee79ce42be7dc409da0d694de1676","sha256":"9544cae77e6148f55eaead5bd77eb9b61a80a8f6d55d981e6db37062f825ad25","sha512":"3d932ec6654eee6856e3195fa8c83204df36d591352b368eea187968ce378510dbf99e5bce7edb74c108ff3e6921d67a50248f17ba84674997e59fc74f419fbc","ssdeep":"","tlshash":"7f41436a3494111a05932ad1a59a629d7e30f21372bf6816d0cfa2f06f12d23cd9fc7a","size":2001,"data":"","first_seen":"2025-07-29T02:37:11.539418Z","last_seen":"2026-05-03T17:23:33.348995Z","times_seen":1051,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/scripts.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8f5811c6e6994e28e6b6161b27afbd48","sha1":"378e9cd860bf5151a6d0204e9234bf562c52469f","sha256":"cdf4a610497b6fe8000b40ec58175cb7f2cc5143139432c8fef5f3a5f33e0b3e","sha512":"1652323f076a82cbaf406586b24bd6cf80fe472a640b546e957d81e66aeea655fffc5a055f49ada26b7cdf6e19b5757e082a5fdb63a391e03ec47ec47e0a03a1","ssdeep":"","tlshash":"a9e0ab1fb07b742772ba30b42f442e00643a14803f47e990377b1a00e3d78bb4e2391a","size":431,"data":"","first_seen":"2025-12-03T22:05:13.236833Z","last_seen":"2026-05-03T04:38:04.862888Z","times_seen":158,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/formsHandlers.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b7e8a05e7ae996297bf86824ac379ea1","sha1":"cabf10514e35c0a679f955038f1c2626cda611d4","sha256":"8a7adb89f11101aea44dbf0947382d2712e7fb69ed8b616ecdd036f3a8e9de4b","sha512":"8828d4b516b9d70a2846e23d01adcf7b4e9dbc6d500c9bda430899b8d2a59cac73d4e5e2bd3688395ae15a1ce260fd4e4e0076ce677a027708f735343053bdd3","ssdeep":"96:SVRt4ZvYSW21wvY+pw7Khw7KWEzvYTbhw7KW7YzKif1hFEURFAwnfcuWdl9MJIEy:IrqvQ26vIlivllqftEURFtcuWdl9MeEy","tlshash":"8dc12409d2be1e181afb205ebd8d3a8d34354026b824f01f715c05fd27bcba6a1d6bb4","size":5682,"data":"","first_seen":"2025-11-07T04:55:15.49233Z","last_seen":"2026-05-03T04:38:04.902679Z","times_seen":704,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput-utils.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4e9dfe4ff0e4f710ca4d7e095262c1b2","sha1":"e995f1c98857e950882f9ed98b1f35469635a119","sha256":"c06746a767fd8adfe37ddcfa195262649a24a04d3b50036c77899cae54c9109b","sha512":"3fd04aec489cdb4540a0b2bce6552a7ef3517a1c4b464c1155448134de0b5ad77f9799a39f29481eee08205ca24cee01af38b782f8ce4dd251f86705d86b7f58","ssdeep":"3072:PklM0F8CAJjFs3OwPss3MwPPmdV9T2xFM8Mpmxs5DyBpUsR56kmLNTg/QKWVRpFA:PklMpjBf0xFM8Mpm0/Z2","tlshash":"d944f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":259721,"data":"","first_seen":"2024-12-28T11:23:31.699953Z","last_seen":"2026-05-03T17:23:33.309892Z","times_seen":1100,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput-utils.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4e9dfe4ff0e4f710ca4d7e095262c1b2","sha1":"e995f1c98857e950882f9ed98b1f35469635a119","sha256":"c06746a767fd8adfe37ddcfa195262649a24a04d3b50036c77899cae54c9109b","sha512":"3fd04aec489cdb4540a0b2bce6552a7ef3517a1c4b464c1155448134de0b5ad77f9799a39f29481eee08205ca24cee01af38b782f8ce4dd251f86705d86b7f58","ssdeep":"3072:PklM0F8CAJjFs3OwPss3MwPPmdV9T2xFM8Mpmxs5DyBpUsR56kmLNTg/QKWVRpFA:PklMpjBf0xFM8Mpm0/Z2","tlshash":"d944f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":259721,"data":"","first_seen":"2024-12-28T11:23:31.699953Z","last_seen":"2026-05-03T17:23:33.309892Z","times_seen":1100,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c849f819f2de90a902b5c40bf76f9c23","sha1":"008aeb2acf2e843a630f7766466bf09cf0ce3e35","sha256":"db6a31c34fbb00825c5bbca327c05cbc4b1051d0fe9acd8602af1f6d6e430805","sha512":"a231c70f9cdeddba6d4922a10a8f450fd907e214f7906d06fb28145672c40dc590b8f8471a07459a53e7eeda08a1c7031e53475c6384de9989f2d2e15243deaf","ssdeep":"","tlshash":"cb11e701432d1135d77594fde7d52edd653513e97c86259f2c8a440d33c26d6caf41a3","size":911,"data":"","first_seen":"2025-12-03T22:05:13.241192Z","last_seen":"2026-05-03T04:38:04.936258Z","times_seen":157,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b34def6b4e437ad7d0db58dfa318ffb7","sha1":"b0a146759b2b22a5d1be6127fb3067c406755602","sha256":"5528c251dbbf1a3b9a0fc542b1577f1894ccf5bce75be59c57e8ca591ed2538b","sha512":"8c1f45da76f5e986a0fb32b303c2849da7141b8cc088d51655baeddcf60603881ffad3e4932b26d464628b1a2efb15038f3ec373359691ea5a09dd464ebb0997","ssdeep":"","tlshash":"d1215b30a33c2526d3ff605769bca36e207d91163d42998d8c08085812cad5eb7a5dd1","size":1397,"data":"","first_seen":"2025-12-03T22:05:13.241873Z","last_seen":"2026-05-03T04:38:04.937129Z","times_seen":157,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-1.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.613Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-1.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2286\r\netag: \"6994115d-8ee\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2286,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"03eee2f44867d11f7fc76aff7da5f968","sha1":"7324f6311ec3220f20f46650deaa782019541090","sha256":"0c8051194502eebac4a7a99dd85c0d972ffc75d27435f670822b9930b42bf2d8","sha512":"d6785501aa760e2bda7ac2cb9b5fb78d204335370f141d5f49c0510a08ab2a41f3faa927f0ff56519a7f383bb30810a0a170e4fd6c3550caa4229747515a4fe1","ssdeep":"","tlshash":"38414b11a2dafe462d623ce576979528a9738b47800810cf1ec172e8341ed3cf9709a6","first_seen":"2026-01-30T01:19:29.802131Z","last_seen":"2026-04-26T05:20:39.309084Z","times_seen":36,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-2.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-2.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2740\r\netag: \"6994115e-ab4\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2740,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"31f26404ae2e355a0745c9666c492dd7","sha1":"0cdddac5c6aad22e3624bdfaafde26d1c553f781","sha256":"f128fbf98f1cd18ec77435a2abb356c584279537d4c6adfee3020d4c33aa1d89","sha512":"136063307ea081899f0885116500be1db1afbee88f009b2e58a8b3a5686757548cc619f80077b4efadd4241f7c72ca4fc7d799d2eec42bacf39982f8bc9e6916","ssdeep":"","tlshash":"77515e12a171c9223691337658cd4a38f2f5381b55cac64315a778fe7bf58038c6cabd","first_seen":"2026-01-30T01:19:29.802985Z","last_seen":"2026-04-26T05:20:39.354236Z","times_seen":36,"resource_available":false,"data":null}},"time_used":466,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":370,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/pros-3.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/pros-3.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fd6-6d7\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1751,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"77cc23f4dfef3fb494da063dbffc4fb0","sha1":"5497f0fa1d50011c7d90ab2f3c9107fdb6617906","sha256":"6c79187930a4abc56242352b5d4d5a5e68e7a6837c129e4021ade79165774cef","sha512":"9998ae9c90a9a7a002c388e1bf176ee2730c6806e545707820f118ae4808994ae1552977dacefedf49e6e425b31819097e0be659b99e73a6bddcbf80594cfdfe","ssdeep":"","tlshash":"9c3123dc2178c39cb40679680786b8b13c5b99cd95a74845d3b3be12e88845d5e748eb","first_seen":"2025-09-02T04:43:32.34178Z","last_seen":"2026-05-03T04:38:04.865848Z","times_seen":795,"resource_available":false,"data":null}},"time_used":368,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":368,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-6.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-6.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2830\r\netag: \"69941162-b0e\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2830,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"94582e1237ae06aa8617e34afc5d5240","sha1":"098e053da69c007e8ff54c12f52e471f4783393f","sha256":"fd9b542938fae377c8f9e720025233a9b7555ddf43a8cdd8da994f6b4c23237f","sha512":"aaaed31391a22314b0845765ccdf3ae6bf0b5241d4a53de93c85914363d1a58edae5f1abb24ae585c4c6c90faf08c9238e2d8fbc4b134c3c3fcb946181e0aae3","ssdeep":"","tlshash":"69515c1073f164693e8830ba56a8becc20ab876cb1ebc63d598ba04fd7e35a00835058","first_seen":"2026-01-30T01:19:29.761762Z","last_seen":"2026-04-26T05:20:39.343015Z","times_seen":35,"resource_available":false,"data":null}},"time_used":748,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-7.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-7.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2384\r\netag: \"69941163-950\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2384,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"0ac32cb5fb55ee13a4b809bf67797b9a","sha1":"07fa683517628549c138023a442128ae1ba6d90c","sha256":"6a11688cdca5488264c9da0cea8422dc53128754eb512ad46e33713453b1b98a","sha512":"ec6b7401425dbc71032290678822820f8a153c2649dba8717093bdbec281b66af79943c6b206e869f63c7d19dbcb1aabb08f364f3d95384aa3dced679df5a082","ssdeep":"","tlshash":"ba414d7796fca103485f9f76090824bcfa36566fff6a2a11446d37720c58935344b727","first_seen":"2026-01-30T01:19:29.78259Z","last_seen":"2026-04-26T05:20:39.3602Z","times_seen":35,"resource_available":false,"data":null}},"time_used":748,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/css/tailwind.css","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/css/tailwind.css HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: text/css\r\netag: W/\"69936f92-e3a7\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58279,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"2a0cf72ee73dd5df33af14428b86140f","sha1":"7ebebbbf1218d4dc2e44c94b23b5f0b77cbe7795","sha256":"2b711c653a66120f7738884a5c5f684b4057fd6504052f7653a4e0f57a5b003e","sha512":"60e916e6b9fd4dc2aae674423581a146eb9de840c4224bd0358284964cbc7615f19ba590c5305754ef6be4cab2b1fdf8b3826f6404396a95099b3b0ddba73ebb","ssdeep":"384:reiWgHG6FYlh5swrxRXEZ1M7GhB4PTJk3J53TxNzYP2+Na1fKOM4nbiemZ7tbN0:re7gHG645dzEZhKPTJk3J5j+em7bN0","tlshash":"9f43661ad74299a8783ad2e0ef0d94cc361e29a1deed0f6fd0b15524cfc89690da7d24","first_seen":"2025-12-03T22:05:13.211005Z","last_seen":"2026-05-03T04:38:04.890841Z","times_seen":147,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/Inter-Black.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/Inter-Black.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 316848\r\netag: \"69936fca-4d5b0\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":316848,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 52 names, Microsoft, language 0x409","md5":"118c5868c7cc1370fcf5a1fc2f569883","sha1":"f79fa58ace5f55e338c99bf71e7e0702841df6f2","sha256":"4795b76b5b54d140fa17432eb4ee2eb27c63156ca0c8184ed27c4781faafe276","sha512":"1dcbf0476cd7470c359294bb360e141af440e407251646746ff53e57b302a70f4f32b775d16d19219fbf562b9b1ef5e8ee05546bcbd87a2d297541bba11f084c","ssdeep":"6144:wiaT14OiMsRwis9EzgwfxsW4unPLx+0woyN:yWnMr90gquWFnzxCoyN","tlshash":"38646a17f327c35dc5132e368b96c7a47363bc917a02e10afb243a95c98b1b05e9b5d8","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-05-03T12:36:11.217008Z","times_seen":1024,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":333,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/Inter-Regular.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/Inter-Regular.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 310252\r\netag: \"69936fc5-4bbec\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":310252,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 50 names, Microsoft, language 0x409","md5":"ea5879884a95551632e9eb1bba5b2128","sha1":"cfa780d0b50b2bb7eacb82984f1b18a95aaa40c5","sha256":"3127f0b873387ee37e2040135a06e9e9c05030f509eb63689529becf28b50384","sha512":"f09113b22bab8fb07920453e2cdc3ce678231f7b9f801f44471461697a10a61a9382173e177691f4170a3f9af736a4ee880fb48cc4408c8eea4e3ee850004cc8","ssdeep":"6144:PUWaT1IUkh6w/yOjngZyKMOMxMmABlNGow+BNn6m4zLkA4X:sX+Qw/rgZyKfMxMmABlNG4BNn6m4/kJX","tlshash":"5f644a17e363c31dc5132e3a8793c7a0b767bc513b12a10abb243a55da9f1b41e9b4d8","first_seen":"2023-10-14T00:46:20Z","last_seen":"2026-05-03T15:47:16.850008Z","times_seen":3621,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":371,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/intlTelInput.min.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/js/formsPlugin.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f88-734f\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29519,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (29164)","md5":"6c9bacd626f8da329cfd17986468b921","sha1":"b8ef112f4c44f07c914363756792e9baff14be34","sha256":"a5bd18c50d0bedc08c05eec31019f087887e4454a02b2f8959dbdfbebba8ffb9","sha512":"09e7d0ad1436136919ddd67933ebb806ec1dff914f3139af7b11f513064f54e02d82a8c7d35b511b0cd9ab18bb570dcd18d50f1722ea0a2ab64e2510536e78cd","ssdeep":"768:IY03Xlqn/kiIzOT9FSRo/6mCIQkjMdt24vD8B:ItiIzU/6YjMdo","tlshash":"55d2e7ae63655b37a6fcc2a270e54503ae6f79444a44083d7cacdece0288ed271f5b34","first_seen":"2024-12-28T11:23:31.679776Z","last_seen":"2026-05-03T17:23:33.310731Z","times_seen":1101,"resource_available":true,"data":null}},"time_used":209,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":209,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/phones.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/phones.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 62018\r\netag: \"69936fad-f242\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62018,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88ae8c6bb589750082b5edf16e6a1cd9","sha1":"8c6bb3702f3271c48d86d65d66a557f4f0f6d898","sha256":"36a7d79051bda66b0503bbf3ddcfc8067ee8cdb063fdcd743493ce6af2b54612","sha512":"28786ec8aa25db88a8381dcc2c7f49eacd969d96395d3a25e7a2bdb08ed114ea472c81c938eeaaea86bc5b58147585287afe581e55ce74894c571e03ecd30a32","ssdeep":"1536:GkkVU4uvILYGW4FoHG3xXQWd8jk7IlJ7avfZk8z+M0:RDvNV8xjdd7IX7avRk7J","tlshash":"67530235dff0ad4d85461130018d2cbca9b87e9dfa1fdd618a710cd0d8b6b2b994b1ae","first_seen":"2025-09-02T04:43:32.240085Z","last_seen":"2026-05-03T04:38:04.897004Z","times_seen":786,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/info.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/info.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 59838\r\netag: \"69936fa5-e9be\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":59838,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8955c166ea726f9df674dceb3f9186ad","sha1":"7d642254ba07756830b82c507c49856d91ded48b","sha256":"430789278409c7c3c40c011f36ab5ad7aa9dbb698bf5538b7161b91bee63090b","sha512":"1cc9d6440bcbf856f66eba36f4ba9f2a6a29cf56e340629628061a3cff76ed921adec1fe61e8f513fe4ac37083f4baa450d7e204e939eda5c5fbc27bad0fe015","ssdeep":"1536:I+GXTgppEwC2m78LI1MfqzSS8So+Pd2qoLL0ASZSh1iXmnyqrjR:IhXThtQQuir7dPoLAHZOiXmny8jR","tlshash":"0743023e29de8841c8df2c6d04a8162efa6c9b23668abc7858f6130ed3d5131e7f5d05","first_seen":"2025-09-02T04:43:32.277422Z","last_seen":"2026-05-03T04:38:04.907044Z","times_seen":1142,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":368,"receive":384,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput-utils.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/intlTelInput-utils.min.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f87-3f689\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":259721,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"4e9dfe4ff0e4f710ca4d7e095262c1b2","sha1":"e995f1c98857e950882f9ed98b1f35469635a119","sha256":"c06746a767fd8adfe37ddcfa195262649a24a04d3b50036c77899cae54c9109b","sha512":"3fd04aec489cdb4540a0b2bce6552a7ef3517a1c4b464c1155448134de0b5ad77f9799a39f29481eee08205ca24cee01af38b782f8ce4dd251f86705d86b7f58","ssdeep":"3072:PklM0F8CAJjFs3OwPss3MwPPmdV9T2xFM8Mpmxs5DyBpUsR56kmLNTg/QKWVRpFA:PklMpjBf0xFM8Mpm0/Z2","tlshash":"d944f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2024-12-28T11:23:31.699953Z","last_seen":"2026-05-03T17:23:33.309892Z","times_seen":1100,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/header-avatar-2.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/header-avatar-2.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2276\r\netag: \"69936fb1-8e4\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2276,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f002c455a1cbb7ebb9f0e367f5a1aeff","sha1":"108acd639aef6dfb2988dbe90017ee4e693846ad","sha256":"3687604fcb1bd6ec80db705d104ab28909dac30e35be40ca3ef55146223af35a","sha512":"7c2b8f1cfc72675366802a003974b8d88fca624431736e4271dedebe9aba73b06cc1652fd6701a4d5fba09f55f6ed56abe021b07b4ce46c6cdb8c0939f0e2e9e","ssdeep":"","tlshash":"e3415cf92594b03bc0f4583a0c7c661a4ffa49e2534e0e360f5d9b6a19212325cd382a","first_seen":"2025-09-02T04:43:32.312857Z","last_seen":"2026-05-03T04:38:04.86437Z","times_seen":793,"resource_available":false,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/quote.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/quote.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fde-ac8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2760,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"504ce723c76d111e0be511d24721c2dd","sha1":"a1fe51672c966079ca8ccaa11fbe6de0bafa1644","sha256":"a563b73f0268826906bcde897b0a2f55d0d2fa9cfb394e4c151c138f3865202e","sha512":"87a808d4940b03b8e019e3a28be1bc3d866c01323be476d8e2e1ac2d780404bd66046a62855d03ae2c309387f7c18788a5f1d9b3bae538139b5448df459631a2","ssdeep":"","tlshash":"0b513061b3b971e0f215e3f667e27925b95b26622f87c2e4c0d72dd4d87480c5e808c6","first_seen":"2025-09-02T04:43:32.254441Z","last_seen":"2026-05-03T04:38:04.880584Z","times_seen":1171,"resource_available":false,"data":null}},"time_used":373,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":373,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-9.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-9.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2440\r\netag: \"69941165-988\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2440,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"6f695e6789583f6114e6090a4e8acf1b","sha1":"16fe8bd98709540b7d88a24fd779808986b550b4","sha256":"e943c9ecdeb0819be6c6f7669dc1a49df143d59809b3b8f187528d69de6ba6f1","sha512":"d192486ee66fab96b898486e036ddcb0f2a346ae6e0e671625089f135d59572b0437e11d1249577095c11a577e1a3038e165849b3ffea3ce18915389fc0ef6b7","ssdeep":"","tlshash":"2d513b4323232d8880ff1f70062ff76465b14bad51b6d362a6d8e889ba220d74e210b9","first_seen":"2026-01-30T01:19:29.7834Z","last_seen":"2026-04-26T05:20:39.317311Z","times_seen":35,"resource_available":false,"data":null}},"time_used":747,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":362,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/css/pages.css","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/css/pages.css HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: text/css\r\netag: W/\"69936f93-17dc\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6108,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"4c004d7fb813ad468dc797ed682424da","sha1":"8291785c4fe7010ec75a1255e36f75be8ca97857","sha256":"f144da3a1159cfe3d609f8342cb2035b491781956df7ea407a3ac8e9ed888463","sha512":"a4906698cacdaa0d6d20f2a2143f537be0075f099f138d2babdefb7b4ef99258b290a719932dfad4c2416ac4485e1b5e58db58eececb8d026241540708257bc7","ssdeep":"96:Axlw4RZUJT2ZBXg3CU6GEmC+OmCeMEMrM2Ht7n9Pvuf+kBsLOH39OMrHd:tcZsgU6eFH1IVHjc+kBsL63wgHd","tlshash":"5dc142139f14b449f22d90daefa17f68052e4093eb8d4eeee547386ce2c919105b2f8d","first_seen":"2025-12-03T22:05:13.226785Z","last_seen":"2026-05-03T04:38:04.90538Z","times_seen":158,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/bottom.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/bottom.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 99546\r\netag: \"69936fb5-184da\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":99546,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88108cbe23f34dcfcfdb96c13db08e7a","sha1":"39ef779c20c4e99005f542b1fbcd8356569d6628","sha256":"b825967004d9a1b6348da8813f70cebf175be9a8126d7284c3cfd74f8425e5ea","sha512":"88ceb6f3fc031353ad035bf79c82c3b1d1d4aec31508b3a90917c1ff25740e3bbf5d917a2bf5db3de0ea85cbccaa637a6ab4f208171819a2447d3f9c5346d48a","ssdeep":"3072:lYuuo5b/UsbYrEKwSoY31imbmwEmlfn9qKNiXnkW:lvuo5b/lbuEKwCFimbZb9SnkW","tlshash":"1aa3121976f65a96e8541f88edc2a77932b50fe7207370da3028ff36086863d21678dc","first_seen":"2025-09-02T04:43:32.314304Z","last_seen":"2026-05-03T04:38:04.903337Z","times_seen":775,"resource_available":false,"data":null}},"time_used":755,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":361,"receive":394,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-8.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-8.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2348\r\netag: \"69941164-92c\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2348,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"22ae0ab284f3302e245ef0a6eeb15639","sha1":"87edbb7064fea5b6febfe95f1e0b2ecd775aac33","sha256":"48ce843425ff904f159be8dc072b448a89b731143c96e8b13a172f12dacd1d37","sha512":"b99314a4a32b435e9e8de6c5b2bf0c26d0f703fe861971f1925289f241f7e0cf1934431445db39acb99e363a2432bef6791442ce321a0c2cedbb74d1fc078402","ssdeep":"","tlshash":"6a413b0042f49165cde0a8358453aaaad922e09c57d4f4b45246cb9c4acae8deb3742e","first_seen":"2026-01-30T01:19:29.762504Z","last_seen":"2026-04-26T05:20:39.313652Z","times_seen":35,"resource_available":false,"data":null}},"time_used":747,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":362,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/Inter-SemiBold.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/Inter-SemiBold.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 316220\r\netag: \"69936fe6-4d33c\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":316220,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 52 names, Microsoft, language 0x409","md5":"465266b2b986e33ef7e395f4df87b300","sha1":"5e0c44e57e7e090252d79f622899e67585bb892c","sha256":"b0b540e69bf6717016e33874670e09acf4bffc2ca3f4c1cf174a4ff696308c65","sha512":"b653746094471135e0b4cb286b45c4fe2b146a877ed3ad03bf1c116f0413c0c2e66d9245651349dcf1c322b71071b499b83129d88a17b25f3ca7b18d5a5428b6","ssdeep":"3072:tYR7HDJwbA5Maf/j41tIW+8EziE7/VgC+zvVF7ALp5p28gzEPuNOVKpxG6IXfsCQ:qR6aT19iEjAa5hgJRLQCo4TJIwH7","tlshash":"0d646a07f363831dc9062d3a47e3c7a07367bc917a12e10abb283799c98b5b45d9b5c9","first_seen":"2023-10-14T00:46:20Z","last_seen":"2026-05-03T15:47:16.875125Z","times_seen":2644,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":171,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/justvalidate.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/justvalidate.min.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/js/formsPlugin.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f8d-73e2\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29666,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (29666), with no line terminators","md5":"5999ea06cbb02d9f509d7127f581ca57","sha1":"353b584854cfb425f4da8446734b1f5557d32eb2","sha256":"29d1548e149452387bacf862a93dc3049a1f63b90cb972d6091641d477734592","sha512":"9320ce7503b230e62b4dc62a4078e802091a4a8e5fe28f7495ffec44f1bcbe6aa56e4b1ded1824e5854992e11d52319596b70a866486a74b24eb33d5a5107090","ssdeep":"768:VkW++JZ/wbtODUsl8dJorXESRAwgJMgp81UuVvwnCByfDwty0HD/h7PCByCrCagl:mCCDSXrRAwgJMg5s5Y3gk56D","tlshash":"41d2d706267149234dd94aeae08b9543b3d0375da914a4ccf73decfb8a8dec630536b6","first_seen":"2024-10-04T14:22:46Z","last_seen":"2026-05-03T17:23:33.333765Z","times_seen":1216,"resource_available":true,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.frankfurter.app/latest?from=USD\u0026to=NOK","fqdn":"api.frankfurter.app","domain":"frankfurter.app","tld":"app"},"ip":{"addr":"104.26.0.198","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.285Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"frankfurter.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 23:38:55 GMT","end":"Mon, 27 Apr 2026 00:36:45 GMT"},"fingerprint":{"sha1":"FA:49:2B:98:9C:02:E6:99:D5:9D:92:A8:1C:60:51:1C:A6:10:0D:DF","sha256":"83:F8:06:7E:90:25:74:C2:30:7E:74:16:E8:EE:94:E3:A1:77:37:27:54:E1:5A:4E:E2:6E:8A:F0:DB:CC:07:7E"}}},"request":{"raw":"GET /latest?from=USD\u0026to=NOK HTTP/1.1\r\nHost: api.frankfurter.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mont-investeau.com/\r\nOrigin: https://mont-investeau.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/json; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-expose-headers: \r\naccess-control-max-age: 7200\r\ncache-control: public, max-age=900\r\nvary: Origin\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P2RyapE1cJwco8ndcYLyDVVtVRj6tfHgQ8az8XE0r1J6bqerS82rVC4FtwtbkuAZMqWQfnk5eKoYqJcZyGebGBui1PgBNytePfQVCPBsw2Li%2Fv0%3D\"}]}\r\ncf-cache-status: MISS\r\netag: W/\"b2add945edcd288f70d7e00fcb9f37d8\"\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9d577ce2afb996b1-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":70,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"36554bdb72c42d3c4327f2614d67eda2","sha1":"206054ae0b4d68e7b479862ef25ef1e5f460c34b","sha256":"4d867df6eb1b4a6680db9cb9698f64415e391320aaf77d0c189843581428935f","sha512":"14871fd8d80b53039465ccdb7acab18c467c40c1391f31ed75b241435a01bb9922600a2b4a33f7be2e379c951fea4c78b5dfd0470eaf4f13c42bfe891e235150","ssdeep":"","tlshash":"7aa0222bba3c8ea0c80088b0fc802ae0ac0ab000038c0f0020cca200c2000020cac828","first_seen":"2026-02-28T00:18:02.399299Z","last_seen":"2026-03-01T19:15:07.541828Z","times_seen":20,"resource_available":false,"data":null}},"time_used":330,"timings":{"blocked":56,"dns":1,"connect":8,"send":0,"wait":215,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/favicon.ico","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/favicon.ico HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: image/x-icon\r\netag: W/\"69936fa7-10be\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"4076685c94c473498e2ea7e09f489a5b","sha1":"a3803ca9bbd3ddd08b6670e1d3da5eb38b424e67","sha256":"b6e24d4b360e5671e113d1114061e5b741987190b61e35d4f0808c092b7ae9bc","sha512":"036b70dc55063e6f9e651d5ed3ace3894590b0a57765a13833e6fc44865072534e5acc2fe63f892229d608881593f477f294603224f051125a3a9271279810d8","ssdeep":"24:subrmu2omixi8eZXsTb9JL95GmuZWGBAMBQXU3d:dKPomr1EJLfGVZWGBAwN","tlshash":"8b9165a02581c509eee65cf4c71f8aa3c8159ea4c3a03083159078fb28764d06b3f614","first_seen":"2026-03-01T10:31:07.813765Z","last_seen":"2026-03-01T10:31:07.813765Z","times_seen":1,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-01T10:30:39.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 11488\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":50440,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (817)","md5":"2ade2335b766689f7d5d9e14c8aac4ec","sha1":"81551b2dad811b8ba5865eafd6312646ce143f17","sha256":"9ccf96192fd14531dc1dc44947af038d5029fe6719bd3fc40538131ae57a515b","sha512":"7f6c6c218c15f45c9b68205f956008d76a9a683021737fe9966aa9347a4bb2bb69c5c2de0afc9f9b941521956bfc7622ecbcf13670bcfdc3958f68c8b5590944","ssdeep":"768:cirtKBOA64q3HqlPnyT5vimnzm/jZlyl8:cirtKBOoq3HqlPnyT5vpm/jZlyi","tlshash":"4a338319128d0eff01434796f6a0bb9ae06fdf74d52bd8a6f1b7016123c6c84db522b6","first_seen":"2026-03-01T10:31:07.815555Z","last_seen":"2026-03-01T10:31:07.815555Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1817,"timings":{"blocked":248,"dns":36,"connect":96,"send":0,"wait":1324,"receive":1,"ssl":108},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/css/styles.css","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/css/styles.css HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: text/css\r\netag: W/\"69936f92-706e\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28782,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"53d8ea4fce5fbdfdf9ef25b7e058db93","sha1":"3afc346233ab40653d5fd58820d47a2e6c67d87c","sha256":"e485cba460146a0cc487b28e8b871913b5955840ffb8c6918ca2784bc846aa76","sha512":"6db56968b215d4f17a5cc37f15a1d5eeb5d94c543afc85f133de7e9be7387781c63a5ce23393c0e1b8765a1d62cc749d013bbec069568f5228e0da3c6791b1dd","ssdeep":"384:HS9Y+JTzEoKuRCcO9yoPKhzTIuRn6oAw2NYrbpIqe:y9YSTzfnjoPy/rR4w2NYfpIqe","tlshash":"c1d2551386220c7ee22dc3f839a6c5b4772f0c827daadd97f6c9101d5687990a5fbd48","first_seen":"2025-12-03T22:05:13.211802Z","last_seen":"2026-05-03T04:38:04.901882Z","times_seen":146,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/formsPlugin.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/formsPlugin.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 487\r\netag: \"69936f85-1e7\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":487,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"3c29f00e9d7f8bb55e71355dbd8c2c36","sha1":"bcd53049e5f8f39a0024525e48d62960bd6817ee","sha256":"402121a68eee38a0f9d6fb02115b5dcd6fd9ba6954bbb78174c257ce18f0e8e8","sha512":"f453a6d8a189f663a1a47224963572e018665868fd764184b7743ba92f1d7df25c7f541feb0c6b3f40c707c292f4a4e01ef4a5fe07e84fad1956e5a4509306c3","ssdeep":"","tlshash":"87f0278fc3258f3381316d7479ff96475bba02e639c98812391c5b802ef86922070663","first_seen":"2025-11-07T04:55:15.503057Z","last_seen":"2026-05-03T04:38:04.882044Z","times_seen":769,"resource_available":true,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/eth.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/eth.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fe0-480\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1152,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"30dd3d2d238cd83055f0f9855f05c381","sha1":"e90b769cad3df8e832f314f95c1e96deebb5f9c2","sha256":"0e0cdeb30eec14f0abd375dac24b6eae25880840a9ece62b3d7c50fa778fbaa8","sha512":"52caac7d6efdda42b7fe943275b0b37983eee7850123df5092c449c767a1c93319152acdae90c1c33f9efc3e07ee60839dd38da9debc79bd967dd9af7fe13b41","ssdeep":"","tlshash":"4e2100d7520c52c01a401ba43b0ff831a756e4e54f8e4cbad648274bb6c8a9f8eb43c5","first_seen":"2025-09-02T04:43:32.286867Z","last_seen":"2026-05-03T04:38:04.875478Z","times_seen":1173,"resource_available":false,"data":null}},"time_used":372,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":372,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/kraken.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/kraken.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fd8-ad8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2776,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a88d6175c0fdfc14d4998e0aa9ac7959","sha1":"3886985b7a635d4cf8ae3d50db49d63c42dbebd6","sha256":"533b51e295c2ec894de75538b9f6f7ad23b0fb18cb5d55de02ad6eec6618af9b","sha512":"02caefead63c07312097e588f26540e3ae602769a930c25b5c21e59b93d6c788cc13db0d473382f4cf84d4716fccea69e3243ce74946524b0e2b6284ce3d4ef8","ssdeep":"","tlshash":"e25183a8d37ab218f004b7f88b07a8b481826fb42705ca5daffa0c1bd99500e1c75dc7","first_seen":"2025-09-02T04:43:32.260297Z","last_seen":"2026-05-03T04:38:04.909347Z","times_seen":1229,"resource_available":false,"data":null}},"time_used":366,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/polonex.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/polonex.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1021\r\netag: \"69936fc9-3fd\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1021,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0a93f41c5d779ef0d290e4c54e2438c4","sha1":"e56f962012e24d19748c1d4f34789fab11deb64e","sha256":"c9bb6c3d073015bd7e82cb3c8e1b1e9a3fa9e15d3ade934e21068ecd59424f61","sha512":"ecc25a27648b40e5fb0370597111f401bfec58bb6b74145251062ab6ed8a6a5c9d6e15a5e3fa23687429262adaa83007366839604b4c43b8922dc7c84fa61e6f","ssdeep":"","tlshash":"ed11cefc6728920d4e0897943b6aa866107273d89189c747b5c565af6a8d06f0cba1d4","first_seen":"2025-09-02T04:43:32.322472Z","last_seen":"2026-05-03T04:38:04.861076Z","times_seen":1229,"resource_available":false,"data":null}},"time_used":751,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/info-arrow.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/info-arrow.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 480\r\netag: \"69936fd1-1e0\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":480,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7000561a2a36f6e67dd92e77cbb50d10","sha1":"0059c6b703952d15dc05cad181c1999380a9454a","sha256":"b05aa3927b700369237f9d2ff209fdf0f4867935cbee04cd1bbbba66231cc7e6","sha512":"8c7cedcd717b2ae9b6b59fec21c9aefabb935218e3f158f81b653b5224094bbecac514b5dfe11f4c3763914860064afbf742aca3cf7f1824a358c185ca5f0d0a","ssdeep":"","tlshash":"9ef09ea730841086e00defb4f02c544636c31cc3b488412cdd4c660ab6e47ba2d40e54","first_seen":"2025-09-02T04:43:32.262978Z","last_seen":"2026-05-03T04:38:04.890125Z","times_seen":864,"resource_available":false,"data":null}},"time_used":750,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/userCountry.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.972Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/userCountry.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/js/formsPlugin.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 632\r\netag: \"69936f8c-278\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":632,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"bcd956701cd03398458e22553099557f","sha1":"13ea955deb21745b2feb7af6f060abcf5769f65c","sha256":"0961b85469539bc4f36a29a52fa143d1b21a67c050d258bd63485a07cc90a82d","sha512":"5d017d065449ead1d30174eb2f6cbfd663ec35613e0c55982eb2550433f1a757539fd97f933a0257574e0ac71499b119c3491295ef7ef2f7befbbc41c25a7383","ssdeep":"","tlshash":"f0f078ccd16ba761f9f763d07926e52600e4e9123f178483b6f50b43a0a75cb4eb08d2","first_seen":"2025-11-07T04:55:15.50602Z","last_seen":"2026-05-03T04:38:04.904614Z","times_seen":772,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/cookies.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/cookies.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f8b-7d1\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2001,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"29e09689244f96efe325db8dd6199591","sha1":"22a6ee3bb67ee79ce42be7dc409da0d694de1676","sha256":"9544cae77e6148f55eaead5bd77eb9b61a80a8f6d55d981e6db37062f825ad25","sha512":"3d932ec6654eee6856e3195fa8c83204df36d591352b368eea187968ce378510dbf99e5bce7edb74c108ff3e6921d67a50248f17ba84674997e59fc74f419fbc","ssdeep":"","tlshash":"7f41436a3494111a05932ad1a59a629d7e30f21372bf6816d0cfa2f06f12d23cd9fc7a","first_seen":"2025-07-29T02:37:11.539418Z","last_seen":"2026-05-03T17:23:33.348995Z","times_seen":1051,"resource_available":true,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/logo.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/logo.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 967\r\netag: \"69936fbf-3c7\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":967,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eb176596f021b1c2691f508e1f933b61","sha1":"fa38852591f0366651c4ef73a5d1933b62dc5478","sha256":"c359491b578fb6929a58d33b785a6d4679c555dda092945365a97813292558e4","sha512":"1234af6b2c78c4009051a0f01da71bbc9a144bae061457bc215572ba1ccfde9b5bb83d80b5e516df16c9db676cba2ff706f8294460bcc564ab528ecea2f688a5","ssdeep":"","tlshash":"6f1157c131cc95884e48831b5b0e657b622b30e8a11942c4b9603b0bbdc9bbb1ca9bc9","first_seen":"2025-09-02T04:43:32.306896Z","last_seen":"2026-05-03T04:38:04.869848Z","times_seen":1234,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/person-1.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/person-1.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 57544\r\netag: \"6994115b-e0c8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":57544,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f6e4b4264767635f56e7a17125c2a606","sha1":"174479636906a0250d3a2be689e658bb0a34bef3","sha256":"165b05fe4b1416fdae1d83d1512ac3053066873e93e56ef99938c6f8620aa942","sha512":"393c31c469819c28aeb59ac6d02f724e8cd894a1150a44d7b64029a4c98fdcc5ac9ef5c2c9d9886a26cae922a5611ba73fbe6b6455db05287ec73d2aaefe3e2c","ssdeep":"1536:01GD4HyUcl52vaSgPk3mxiQL+le8Z3HVh:wGc2Ksx3OP","tlshash":"8c4302235aebfa35e1f441328991b9b05ad9f11fabd722ec028d498717d48b0a74d31e","first_seen":"2026-03-01T10:29:05.449257Z","last_seen":"2026-03-23T11:24:12.618373Z","times_seen":9,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":110,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/coinbase.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/coinbase.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 955\r\netag: \"69936fd9-3bb\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":955,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9f07c782d3f01b7b31901fbb318590e2","sha1":"645433f39d4e78328cdc592a9bd28d57d179ba15","sha256":"de81b810f3c1ea03aca8625d43f24d58ae5cab09cf2c086d662bb438bbeffb56","sha512":"d22e07c679c625f3303deca2624a27dce963d4b13fb16de04477a0b07fdf841f0ac4fcab1d21a79fa74d85518d8eb58c8fcd48f2500b6f580faa895c07cebc30","ssdeep":"","tlshash":"f611e13c9128530c500433a85b76216616b666d8878e8b687111bb633cc945f8ef7bdf","first_seen":"2025-09-02T04:43:32.257454Z","last_seen":"2026-05-03T04:38:04.860408Z","times_seen":1229,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":367,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/Inter-Bold.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/Inter-Bold.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 316584\r\netag: \"69936fe2-4d4a8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":316584,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 50 names, Microsoft, language 0x409","md5":"ba74cc325d5f67d0efbeda51616352db","sha1":"47ff07c75746682133b81e7ac0537ce50a4c9916","sha256":"412c068eab6f36e6807d630ff89127165e8e4d3e8653434cdfb56b60cdcc3a32","sha512":"0e1b968a789e9a4d3149e9bf539f12800b9e808b6d1829841e74a122369110b369b36dd10231fd9fe68523475305e398aad0927fe14247cbe75256cdd17953ad","ssdeep":"6144:x2RouaT1miEEE1ipnQzkghLs7J28i9Bpu:siomE1onQzkgRs7i9Bpu","tlshash":"5b645b13f323c31dca122d3a8b93c7a07367bc512b13e10ab7643a55c99b5b85e9b5c9","first_seen":"2023-10-31T18:47:11Z","last_seen":"2026-05-03T15:47:16.849244Z","times_seen":2324,"resource_available":false,"data":null}},"time_used":564,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":359,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/scripts.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/scripts.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 431\r\netag: \"69936f8b-1af\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":431,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"8f5811c6e6994e28e6b6161b27afbd48","sha1":"378e9cd860bf5151a6d0204e9234bf562c52469f","sha256":"cdf4a610497b6fe8000b40ec58175cb7f2cc5143139432c8fef5f3a5f33e0b3e","sha512":"1652323f076a82cbaf406586b24bd6cf80fe472a640b546e957d81e66aeea655fffc5a055f49ada26b7cdf6e19b5757e082a5fdb63a391e03ec47ec47e0a03a1","ssdeep":"","tlshash":"a9e0ab1fb07b742772ba30b42f442e00643a14803f47e990377b1a00e3d78bb4e2391a","first_seen":"2025-12-03T22:05:13.236833Z","last_seen":"2026-05-03T04:38:04.862888Z","times_seen":158,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-3.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-3.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2670\r\netag: \"6994115f-a6e\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2670,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e3ff19dfb8617563d7cdb246193205d7","sha1":"03b89bd474dba9ab69322f0863717af77db6e6c0","sha256":"0cb6718284a9b9133cfcbb8b3dee38b15d3fe45c9a0e116dadf0d9cd4820a73a","sha512":"b7532326e3cd7d8f4846080322d948fe5e2e171a838432331230501d67a4241e46787003a936645b7a935806b16caf67dcaae96d5eab258f843fe6b4faf3379f","ssdeep":"","tlshash":"dd515cc463b342b92b38b7701607d64c81f7c92ab9accb918317cd47222318135647ba","first_seen":"2026-01-30T01:19:29.794116Z","last_seen":"2026-04-26T05:20:39.315426Z","times_seen":36,"resource_available":false,"data":null}},"time_used":466,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":370,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-5.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.630Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-5.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2510\r\netag: \"69941161-9ce\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2510,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"fec5a74606b66eb1f41689284347ba89","sha1":"e1c11164fb4e903d3ff8b1b760fb3aafc0998974","sha256":"6f8877462f5f186ea963a0fa30249f064abc9e62c2cf25bca3a48419089d859c","sha512":"0fe2dbd11b3fccb40e254b86e8f9871d220f83bcc0e0647439f77677a76ee1524f6a3d70784c6ac75ab9ab087eb3cedeb6b1e2f88b1c5cb8747b72d820d566af","ssdeep":"","tlshash":"78512c224f93adf8d31c9e09de0941583afcc22a4008f660bc7254c63bba801b79662b","first_seen":"2026-01-30T01:19:29.803863Z","last_seen":"2026-04-26T05:20:39.355941Z","times_seen":35,"resource_available":false,"data":null}},"time_used":748,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/forms.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/forms.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/js/formsPlugin.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f85-3e15\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":15893,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"b5983c2080a6fb2768f4dbd10e4953b1","sha1":"51db46c1adc5e62158cb9b9b905f5e00fb7f2a00","sha256":"7e2e361ca7a3c9c5a161a87b4e50ba1864ca7268d629ab5f44583739d2b728eb","sha512":"eaacdea9561562117d6c6bc76c24f12497fdebac206beb5342b0dfbd92fc819c125c7ef265f9a026389e8f00c660cf0f521f9dff1f30289563643e9f73630673","ssdeep":"384:dhANNZWa2uCO1HVsOAhDpVhwuq5iR96QNEoYtxUPEZRSoCu51h929iNrvOG7L17F:+ouCuHSOAfhwvE6QVYzAEZRl51hcsNrR","tlshash":"c3628494f73c0436a6fa21fe78ef4485397ca2525d804c55a8f8e41d32e2fd58ab2f81","first_seen":"2026-02-19T19:41:44.702298Z","last_seen":"2026-03-14T04:18:06.706987Z","times_seen":21,"resource_available":true,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":133,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/person-2.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/person-2.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 48198\r\netag: \"6994115c-bc46\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":48198,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"20494584c688474b72f8b051ac6babe1","sha1":"3cd3fbb7e81d0a71bbc5ca1d7949b65646ab1f28","sha256":"6c94b7f2665f86928c85a9b0820cd8ccba1c5e648e6a07824682aac238c1a11f","sha512":"603dd0dd71879d90000fb93bc4afaf7fb29f14153650def3b6b91e3b3626d1c23ee0e372e419b8a75079355d47658aa80746d62b26ffe2649ca401fb85460e7f","ssdeep":"768:9rVwq0kUr4J7RVJEfIoTaMyITic831wy9IIyK2BKWIfHIdHy1U1j4awkmK9giRMX:dyqloIRVqfIiaxITiPAIyPyyaa1nCiR0","tlshash":"cc23e1cc71fb3fe9d01ce87792a3b9a69b89a4c7434e1e551306133819e7a02994863b","first_seen":"2026-03-01T10:29:05.46373Z","last_seen":"2026-03-23T11:24:12.610525Z","times_seen":10,"resource_available":false,"data":null}},"time_used":418,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":373,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/Kanit-Black.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/Kanit-Black.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 173492\r\netag: \"69936fc4-2a5b4\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":173492,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 15 names, Microsoft, language 0x409","md5":"98e93fc09832d3891a57162b83ecb930","sha1":"7d7c545de2f02989d1f2a76849291b75f6e6b7e6","sha256":"7f6d2b61aeaa7e6e1d1f0a99fee666c688650f00254786a1f48bfba31ad63aa9","sha512":"41229779be59db29324f4716122da85948f6de5f05de483327b85a888a424527813331a827bb1f93db3ef8e875f706c0658b28126d1058604c8aec953402f2e9","ssdeep":"3072:T1jSTGGQ+BqRF4LwmVIIaVyL1PhllxA4DUgaTABYcaclGT4I:T1xGQ+Bo3VyL1PhllxugDScaclGTx","tlshash":"7a044b07f749d789fe1a5e382769a71ba294f0704f5787cbf08d3679e89a4c01e192c2","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-05-03T12:36:11.197372Z","times_seen":973,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":234,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/payment.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/payment.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fc0-7bc6\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31686,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9857cd226493e46d1f9d1da264b98ca7","sha1":"91d7efdfb03bdf612c1279b05b55a6299304bb6f","sha256":"8d4f42fb0c221eea7cc3bb6f8f25434a543644d9f20257c749c617c0ac8fbe1e","sha512":"feb167e1811234de452b58bc81647471bebe7bae1c845c73021e0a7c0cd538a28b55ed29c0b15f790266018680a0b4f8394ea193116656b328e3932a11f8e554","ssdeep":"384:3sn7jCC2N62crb+rBEXGZQNM87Rg/BzZQTraKBzBY0XDiu23dMcgjZZLwiywoqok:cn70MSrBEWlxBVMuKBFdTiu9ccXywak","tlshash":"bbe2c7e963faa2d4d58cebd36f94a1393d1320f75eedcd10c3ad4e68aa4486c4c245d1","first_seen":"2025-09-02T04:43:32.335925Z","last_seen":"2026-05-03T04:38:04.933704Z","times_seen":860,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/header-bg2.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/header-bg2.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 39994\r\netag: \"69936fad-9c3a\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39994,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c2004bc1f6298be7aca074e9a961c0ed","sha1":"5b72f53a98833bf6e5504dd6f4d25276b7e78218","sha256":"1ef40994ac3137ec249be87f309eb7daf3273815b9777f117ce3756a73297eed","sha512":"cb88d25b93a5eb666edca7749d9d6888cf6a0e24ae7fbe050a37aa1c8f785c8e86befb7377b4c4df8479e32e1d0b0f6aac90b4f4036ad7b15b15e576a1ca4f88","ssdeep":"768:wbiE5PVNCAPTF26XcQGcimMQxrOVdGNwMg6jKfHj2Jzr7:uZTPEs8mMQ8VKwj6jKfHWzr7","tlshash":"cc03f19748ae16dddc6271363c1ceb21a4b66a059fc21d86c787c6f6c7c3668f14d238","first_seen":"2025-09-02T04:43:32.347288Z","last_seen":"2026-05-03T04:38:04.904001Z","times_seen":779,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/header-bg-mobile2.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/header-bg-mobile2.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25708\r\netag: \"69936fa7-646c\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":25708,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d8179eca6cacb540539cd9b74f711fdd","sha1":"5cba7acc82732a756054aa3529eac3cb85a3557a","sha256":"6efc83b8bf5e579eec51195c4eba7f58df2487f8d195f07d59b0741bd6ecce39","sha512":"ece42e75e994510373393c040d56edd7f44b5c3612c1b5552e3ca7111abc0312096792b5e8defafcbece652da2f21a3f8ec439db2426e31ab20ce06dd24487ab","ssdeep":"384:p2ESfIf9teHWKyJsBp1p4RrCGUWRsLGNr+pQNCc4b+cMVOARGCU2VW7Cr8xYySTz:0ESATO1SaWR/NBaiuwVW+VQUDr4Y","tlshash":"c1b2e183f37074daa07597f892717d2a79a8039013b98b9c3687391fe53a510779d2d8","first_seen":"2025-09-02T04:43:32.280027Z","last_seen":"2026-05-03T04:38:04.894593Z","times_seen":842,"resource_available":false,"data":null}},"time_used":362,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":135,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/like.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/like.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fcc-e1f\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3615,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2c10ef99921bedb522858b8452a520f1","sha1":"d8950fd5ebd9fc4c9f7030a8ad535a03ea502ac5","sha256":"8fc5c82557271bff7c7974b940f396c0e1510e56e149061ac98368c95138f2f2","sha512":"7a9f75653a67f9d6d57ba07927fd23c238e20b57cb1aa6856d8edeebe8399b6304ae108c8c30804b59bb911fc123df24257c6148a15b94de03317ce9f156f892","ssdeep":"","tlshash":"1f71d8e583e862f9504ba770c9369fa5736b3cf9374a8e8693c8ad8da81500c584cd47","first_seen":"2025-09-02T04:43:32.282519Z","last_seen":"2026-05-03T04:38:04.907749Z","times_seen":864,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/EncodeSansExpanded-Light.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/EncodeSansExpanded-Light.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 161592\r\netag: \"69936fcc-27738\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":161592,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 16 names, Microsoft, language 0x409","md5":"97a2a619bcef5d92ac7f66e17564887c","sha1":"2c6e03389700c030149924e5fdde5f0e9754cced","sha256":"875d0d2122e8bb59c73e1e03d3757b382046266f658df35c0053797e954295bc","sha512":"0b3ae4d454cd5d25800d242177e45719b1b4cd16393586b83d93f94072b026c5a9c3258521a08052f699b59564385d593f07182718e5aa1da9b3a806c69ad051","ssdeep":"3072:ZrdeC8OMvHv5MXeEr2IAEmbYMRbc+LkPjcHHgRlbf:Zrd++XeVgYooHHOx","tlshash":"dff36c0ff7a3db19f5150e35997c83d572e6f8512f22c64ba54cbe68d4870f408c62aa","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-05-03T12:36:11.19792Z","times_seen":970,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":178,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ipinfo.io/json","fqdn":"ipinfo.io","domain":"ipinfo.io","tld":"io"},"ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipinfo.io","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 18:32:48 GMT","end":"Sun, 03 May 2026 18:32:47 GMT"},"fingerprint":{"sha1":"D6:C6:99:F0:9D:3C:4D:DB:17:CC:F6:1F:9E:10:27:32:82:1E:E4:32","sha256":"B0:81:7B:00:5F:B0:92:5F:B1:AD:D8:F3:12:C4:48:25:52:CA:DD:E7:15:32:9A:C9:8C:DD:BE:10:4C:2C:63:DE"}}},"request":{"raw":"GET /json HTTP/1.1\r\nHost: ipinfo.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mont-investeau.com/\r\nOrigin: https://mont-investeau.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\ncontent-type: application/json\r\ncontent-encoding: gzip\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\nvary: accept-encoding\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":280,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"adf22d9a8ca3a97a9ff78909b8702358","sha1":"f5046826566a7e98d6b5e5c7b0a65677c3bde708","sha256":"756edd1454b049c1370e83c864bc93dfdd82f44d8f9752b3068e5a11867a5de3","sha512":"182391c8c01e54481853a09aa4cf8072496850e45863b198721d0d572e3aa93d8fe11a90bfb24cf97fa64cc132f1594c379474db65db5a1d2207694f770443b9","ssdeep":"","tlshash":"c3d02b6621341b37aeed455c8406960622656e1f1642369f0fe72b0c100c87334f03ae","first_seen":"2023-04-17T17:28:07Z","last_seen":"2026-05-03T17:52:22.91656Z","times_seen":51983,"resource_available":true,"data":null}},"time_used":419,"timings":{"blocked":132,"dns":1,"connect":26,"send":0,"wait":152,"receive":0,"ssl":105},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/stars.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.601Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/stars.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fd7-89b\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2203,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b5f46c787a1e0651d75603195a101a46","sha1":"2e1b5eab0082dd1cde7729696f9aaea6ae00e171","sha256":"adfbc7c2eb5a7bd50ba738a956c98508155e845bee22dbd4ae2b6a28e5f82c52","sha512":"8c928c3cb1ce4c6e4a78af922a97367600a7ff1c6f84fd57c9919f807c06f8fc98be8572822376ca5efa53dec6eae031fe52c12029698321d197bcc838434ccb","ssdeep":"","tlshash":"844104a0731c93f49056f7f4fd29a96635203d7e9b8887f4c2d12a80d4b72a9d58fd88","first_seen":"2025-09-02T04:43:32.301529Z","last_seen":"2026-05-03T04:38:04.914014Z","times_seen":1235,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/ltc.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/ltc.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fc7-408\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1032,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c4a6bbd896e770e829a30e835714ac49","sha1":"7a9fe65f4227ee71070e76c345eef4e1f77850d6","sha256":"32d3294815fc7a945762273c76564c434e395d8ebe6eab2e9edc8e3cb74076b6","sha512":"cd82a14c15b0307501bc59e5b0bf4dcf3edb39a0bcc51b42d5f439ad23847da574e357b1e4edccda6d2f17e57332709d1b1f5fbbf43019614f4ca1ec494360cb","ssdeep":"","tlshash":"8911ced0b7a977f56484c338826c3071647b3cee1a215d784ee43841752140ecc52eac","first_seen":"2025-09-02T04:43:32.275483Z","last_seen":"2026-05-03T04:38:04.883837Z","times_seen":1233,"resource_available":false,"data":null}},"time_used":372,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":372,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/pros-bg.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/pros-bg.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 40462\r\netag: \"69936f9c-9e0e\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":40462,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a552bc7ad58597757b953a47ef50de2e","sha1":"ae607ba3cd8f2986ec9f2dee80ae90f28cd1eaf9","sha256":"7af56b3431d35b0264020ac4eaa6ff1ca05a72a64647fdea890e9814597da6db","sha512":"b976c4950c93b9743666efe43261649a885163865793314992bd7990b42afdf4c34703bc01cb8abe742559e270b203a06e1b6f1f184bfdfb8e9062c88f3417b9","ssdeep":"768:euKXMkiH1mxkbLyKMVgJWqHgSSUxyt7tdWbbfNFd93raFCoDHXeX1rFYv:euTkImxcPn4Yyt7tdWbbfNFdl63eX1A","tlshash":"a603e1d097b394eead24862349bcfdc2576e36e18b429b8282c7e54a58378df9532130","first_seen":"2025-09-02T04:43:32.343217Z","last_seen":"2026-05-03T04:38:04.863521Z","times_seen":847,"resource_available":false,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":223,"receive":137,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/favicon.ico","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/favicon.ico HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: image/x-icon\r\netag: W/\"69936fa7-10be\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"4076685c94c473498e2ea7e09f489a5b","sha1":"a3803ca9bbd3ddd08b6670e1d3da5eb38b424e67","sha256":"b6e24d4b360e5671e113d1114061e5b741987190b61e35d4f0808c092b7ae9bc","sha512":"036b70dc55063e6f9e651d5ed3ace3894590b0a57765a13833e6fc44865072534e5acc2fe63f892229d608881593f477f294603224f051125a3a9271279810d8","ssdeep":"24:subrmu2omixi8eZXsTb9JL95GmuZWGBAMBQXU3d:dKPomr1EJLfGVZWGBAwN","tlshash":"8b9165a02581c509eee65cf4c71f8aa3c8159ea4c3a03083159078fb28764d06b3f614","first_seen":"2026-03-01T10:31:07.813765Z","last_seen":"2026-03-01T10:31:07.813765Z","times_seen":1,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/localization.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/localization.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f8f-532\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1330,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"6cc4f23a9e8894a243c74a19d2eab2f2","sha1":"5ed9b73bd06d0e5e39352a6ddb55bdeeb8e40a2e","sha256":"12064402ab9b471abda6d40eeaa04d326f8890c1d4c84cd6f86f1944cb8044e2","sha512":"aaf12d1c6f624b72a68b96359d71b44e7fbb7c9e65ebc645747bb1cb9a21ce481ef7154142625a779424560691178c39c6ca45071092334a9b7670aa5beab6bb","ssdeep":"","tlshash":"9421c110af9f1000cae8114f1d340176547ec5653a1ee8dfff5605a835e9f2ac361f24","first_seen":"2025-07-29T07:47:20.613767Z","last_seen":"2026-05-03T04:38:04.908529Z","times_seen":914,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/user-4.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/user-4.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2654\r\netag: \"69941160-a5e\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2654,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 86x86, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b29517deed95cdafb173d04fdf814729","sha1":"eb8740e87670eed3ea3f44205b8595d69c81f567","sha256":"df7643ab2cbfcd185ba0650482baea757427514ad823a33b8ccdf586e7e95ac6","sha512":"76b5a5c6df37d88515037802a52aa7783c00cbf8d8b37d505e221328c400cd51f7e801d4fd17b1d7f2e6f749f5c12a2ecc096d729ca107b271bd97a1fd46ce98","ssdeep":"","tlshash":"9a514cbfcc68d524d41309c75a620550d848410f8a4abcd708cf7c3589bfd948aee6dd","first_seen":"2026-01-30T01:19:29.77647Z","last_seen":"2026-04-26T05:20:39.350508Z","times_seen":35,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":364,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/comment.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/comment.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fd2-93c\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2364,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"03dafba01023fde082ffa08cec31dfd6","sha1":"bd202e2efecf4fcccbdea6ed2beb3c1d246a8e98","sha256":"0d1664b6b5351ca740502fc40a1fac93071f77f3dc3e3ba1acc32c696757fbad","sha512":"6da0a2071f09b1dd1462f9737d29271b241ea9dc471c072a2de131a1be356110286b1a72c3e4649f560003783538463a08c16c8b19164d74cf34f0e1b25dc302","ssdeep":"","tlshash":"1941eef0e25c90e95405bb78ce7b17e173733dad2ad0c2849370f9266a949fa9c5c983","first_seen":"2025-09-02T04:43:32.337995Z","last_seen":"2026-05-03T04:38:04.861722Z","times_seen":1229,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/EncodeSansExpanded-Regular.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/EncodeSansExpanded-Regular.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 161040\r\netag: \"69936fe1-27510\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":161040,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 14 names, Microsoft, language 0x409","md5":"09cef80beab41395b7406d15baf9a43b","sha1":"bf3eaf32c0a00c48e6bd5c173692c09bc6228b4a","sha256":"ef2d88cf3791a898cca0511f6866297247381a8147dcc60634204f1aaa37fe87","sha512":"8f5a3c30637653391455a5e079da16c34aa09d222d58b28226e9999e9363323ae3e3728abd2d376c9ecc40326bc325c63d96173329386f1ecd4d700f1f4f8eb7","ssdeep":"3072:8lOLJC8OMvp5WToy4PgIAgD5MCZy0BbKTtdSVJaXTkZ5IOgf3r2m/XpA/t7Tv2ul:8lOLh8TtguCy0Bbf5IOgf3rHpAFv20TT","tlshash":"eff36c0bf7a3e709f9551e74646883e572d2f8516f32c74fa448bfa8d4870ec08c62a9","first_seen":"2025-09-02T04:43:32.305054Z","last_seen":"2026-05-03T04:38:04.911597Z","times_seen":840,"resource_available":false,"data":null}},"time_used":496,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":310,"receive":186,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/css/fonts.css","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/css/fonts.css HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: text/css\r\netag: W/\"69936f93-155f\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5471,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f0627245761b9ddd06cb364cc796811f","sha1":"70e346e88e4659b0eceb7f76017794807902dcce","sha256":"7eb62995cb0c108cb17c8c38bd7e6ce060d1fcc80c8523fb72f353a72427dd23","sha512":"8d73c9b64a00ce31bd416f265caa82c9f239c284bd17e400e24c5cfc98cad679fe9047d22107c58a852d7350cf0898e22f80c43b1c5abc6e6b0119a4b6d1d570","ssdeep":"96:QGOS7aGOJTGOW/GOLkWGOg+GOxTQGOCeGOw6qGOM1OS7bOJGOWp0OLqOgrOxTxO2:h7qyLkzS38bD7o+Xk8565N7cehe05urN","tlshash":"d4b1c910141ea833aa612eae739b7e148f4d28057155c5ab47b80c7a9cfb63783e5f4f","first_seen":"2025-12-03T22:05:13.225993Z","last_seen":"2026-05-03T04:38:04.901158Z","times_seen":158,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/currency.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/currency.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f89-1767\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5991,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"C++ source, Unicode text, UTF-8 text","md5":"b5866b4a375079b4ffb3a02cde461a54","sha1":"f33e49337746d1003ff1e3714d43ae57d2ea4d69","sha256":"81777b6cb3fe12f02c54fd709616876a545dfb35709a39e2c221e52c7cddd7b4","sha512":"516b1d36e5aa801d21add9f500643c30f5c62eddc88b875c836eddde2022df0b4c970efa5f2496932940ba2c9415c425c5e6346b91186bf2239bfdea0d944128","ssdeep":"96:KlVrg8/es7VmmqqBPk2wPxqvg9BjdR02vP/TKNrcJlaOe/vOg5URxo3BQydu:KfECqKk3xOg9BjdqKJFEdm","tlshash":"cec15fd5ff7e44a0c3b4a1a10c2c2dc459be67587c8a99c5982e442012fdc9ade25ebf","first_seen":"2025-11-07T04:55:15.51299Z","last_seen":"2026-05-03T04:38:04.878686Z","times_seen":755,"resource_available":true,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 15:59:25 GMT","end":"Sun, 17 May 2026 16:59:23 GMT"},"fingerprint":{"sha1":"37:8F:7A:B7:BF:60:24:8D:1C:83:4F:C2:59:C3:0A:0C:EE:B3:75:A5","sha256":"8D:E6:B5:3D:41:1D:D8:B2:FA:03:95:07:E2:54:7C:1F:A2:22:E9:05:05:5E:D2:99:7D:DF:46:3F:32:52:53:F9"}}},"request":{"raw":"GET /json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mont-investeau.com/\r\nOrigin: https://mont-investeau.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nallow: OPTIONS, OPTIONS, HEAD, POST, GET\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://mont-investeau.com\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.stripe.com https://*.paddle.com https://www.google.com https://www.gstatic.com https://maps.gstatic.com https://maps.googleapis.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://*.paddle.com https://fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: https://ipapi.co https://maps.gstatic.com https://maps.googleapis.com https://*.stripe.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://www.google.com https://*.stripe.com https://*.paddle.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/; connect-src 'self' https://ipapi.co/ https://*.paddle.com https://*.stripe.com https://maps.googleapis.com https://www.google.com/recaptcha/; object-src 'none'; frame-ancestors 'none'; base-uri 'self'; form-action 'self';\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vBkx6Fk%2FwnIsuAmk%2Fs15ecA1gnVacH4XLnAsOZyF2UwYIRFDaqfjNcnho7Ne4bzAluXYq943sqjW9A8XqIFlUpQqyZ%2BqC%2F0%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9d577ce04dd4562f-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":748,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"e04f1469fffe997f86caaa7556ea45e3","sha1":"1d27c4b7717eb0815a21b1cc77b4ecfa46da686b","sha256":"de7561aa66cb3b68b9ca8c76e969396ca71f8b045e3dc76024fd96aae7cce322","sha512":"c2b87b634c6cded9140ef5ceb496f18359645a78fd5b19f9e1953d5f47d3d7a447c32b352720691f07853b90a0445fd1fe1d3cdad3e391e308b850bb0a7856a7","ssdeep":"","tlshash":"82012428e4680e7b88b80358b4686a07162422075f16354e7fd4874d0f8d8bf20b124e","first_seen":"2026-02-11T12:27:33.810968Z","last_seen":"2026-03-11T11:01:39.516772Z","times_seen":1299,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":60,"dns":1,"connect":8,"send":0,"wait":246,"receive":0,"ssl":47},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/flags.png","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:42.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/flags.png HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/styles.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: image/png\r\ncontent-length: 70325\r\netag: \"69936fb8-112b5\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":70325,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5762 x 15, 8-bit/color RGBA, non-interlaced","md5":"0b1ca148890222235a0f9903636ca21a","sha1":"b451b4db431749cc40cc2a5f271f9807ca21f1d3","sha256":"54dc5bc49fbe41359681fa0af8add039fa1383a4f4eade34f7a0a5a257dd1caa","sha512":"37553ab4cecdb30b631d883dc0a1afe4b5e81b921fa2fb8054a63fa054c2f57954dddebfee1a5b676f97a392b954aaa553a803e6e9abeedd56f87da0b58a8475","ssdeep":"1536:3Cc3jdCcCx1zjonyR5/Gm5mwoKVehnITl1G/Ghdfal4pMy9c:SczdzCx9jonyT5mwo1hIp1hQ4pMOc","tlshash":"966302b241c2a627f87cb972b955522b673bfb30d280780a00cf15b6979517f04e3a3a","first_seen":"2023-09-16T21:00:24Z","last_seen":"2026-05-03T17:23:33.308077Z","times_seen":5396,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":97,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/binance.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/binance.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fd4-d34\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3380,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"286147a6a8b43aa9f703eb3b278c669b","sha1":"a23688139388df4ef861c249ccfd8bd48aa2eff2","sha256":"1b4f876a5cc0b5da87f17a7ffb330ce2c5002c414036ddff7803da78ec725865","sha512":"1e4b9065bb362a10ad591f82fe88d373c5c82f582cc5ae6c03c87fe1f0cd3f61b71942fffeb119ed7700ee95e7b91845d16ee94443af3dd9960cd1c0c10fae4a","ssdeep":"","tlshash":"a56193a513a9c2e4b4056bfc8f0a68f23fa728f7ad27c51953d12941e8a067c8c75dd3","first_seen":"2025-09-02T04:43:32.294472Z","last_seen":"2026-05-03T04:38:04.870468Z","times_seen":1230,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/bittrex.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/bittrex.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 808\r\netag: \"69936fce-328\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":808,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"df280930bc74ed9797630ef8fc49d3ae","sha1":"90880c4fea185cf1c65916a7f2c946e030170499","sha256":"bd78df4c565f16b918144f647ff9bb0dd258d448fc1c27079e93a0a7a073c994","sha512":"9b85a6a0ed231f251557790380bb6b203ce6b66e55a7bcca005404183c9a9882fb38637ee2b48c8742af5c9875f0f195beffe909ae992476e26f8058171569b9","ssdeep":"","tlshash":"4601f1f4f62c924d0e08534d2b7835395194b3d8c3c64b5d3940633b6c8d4271eb32e8","first_seen":"2025-09-02T04:43:32.308504Z","last_seen":"2026-05-03T04:38:04.898489Z","times_seen":1229,"resource_available":false,"data":null}},"time_used":750,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":385,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/lang/langs/fr.json","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /lang/langs/fr.json HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mont-investeau.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/json\r\nlast-modified: Thu, 26 Feb 2026 09:32:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a01348-81bb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":33211,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"559f7102fad7a7649058f67a31bd8402","sha1":"afe3d57a9f5ea4939475c27888e0c47e78f7d7c8","sha256":"94091b126ba652adead62c0f8d1bcb827c880a1eafe8c3651ccf6df31fe1fab3","sha512":"ca2d001808a9d54f8fd1c8d9a266573d7da77d2000d8943fbbdc60062a1c6d3a8d0834ba43ff0a63f9430c0cbc529a26e2b16e44c1820f82c28b0e3c172609de","ssdeep":"768:DdnD5IE/X4WXZlBaHdiESeu4WMoUz8kUds/YO:hnD5r/zXZl0diESeuwoUz8kUds/YO","tlshash":"cbe2b42ed8c81a530ac25161bba28253e634814b6b55f61cf7ddc24d0f8e4eed2bb4dd","first_seen":"2026-03-01T10:31:07.872027Z","last_seen":"2026-03-01T10:31:07.872027Z","times_seen":1,"resource_available":false,"data":null}},"time_used":619,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":619,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/EncodeSansExpanded-Black.ttf","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/EncodeSansExpanded-Black.ttf HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 161496\r\netag: \"69936fbb-276d8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":161496,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 16 names, Microsoft, language 0x409","md5":"8d733c894ca18c1e271b8e648b605601","sha1":"ec5db396305437bdd280d2c5a857a507027e8d56","sha256":"de952ddb6b905cbddfca787502eadc44720735bbceb916264de6c427e58e89b9","sha512":"f4842689b731e5323b4d163abca8145971f1eb6fa30e88f1ca2d8467961342c90437a4965332eaa8ce74e75307ed0094164fd52913b3650838660ead87ec8e49","ssdeep":"3072:HokDRrC8OMv4GeLUoBhQI1LZrx0NrqRKoC+b1WxxEriV:HokSd1LZF0NrCKn+hZWV","tlshash":"f8f35a0bf783d735e9151e36a46893e573d6f450af36c38fa144bea8d8c70e428c52a9","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-05-03T12:36:11.180869Z","times_seen":973,"resource_available":false,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":201,"receive":239,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/glow.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/glow.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/css/tailwind.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 698\r\netag: \"69936fde-2ba\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":698,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5a3f3d58c639d254adbe360efe2cd06c","sha1":"ae96f32b7bd60f327cac97014ac200a03983c736","sha256":"9d8a12463844f53b73f589446f70b027d397ec4b22b1c2d505a00c45ac0ce9cd","sha512":"cfac41234168567ddde2a5ffe3fa450eacb9b7c1f57005f79538c91a2b28741069a0657eb080131f120130b4ced175f998a9c32ce6304895faf46e77c6889b7d","ssdeep":"","tlshash":"29014434e35ce02fd654830dca5540c031fdc0d561d6400175d25f6f58e8853aec9364","first_seen":"2025-09-02T04:43:32.326694Z","last_seen":"2026-05-03T04:38:04.895389Z","times_seen":863,"resource_available":false,"data":null}},"time_used":362,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":136,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/usdt.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/usdt.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fdf-df9\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":3577,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"908ac595c69379ce8ce688a04dc020b5","sha1":"8fea3ba2ba406c0a875388c4dc75481af957a326","sha256":"b7ef94d66bc1b27c90dd4bb1887dfb58335df07576bee8eeee3c459d53fc543c","sha512":"fd52eb012b199609a0edd27ac2d9f118823d76afd5001b1c8373d6c7f96d20696b349e59409dcfc79a638f09292cd75c14a598369681ef0ac4e962b063c69a1d","ssdeep":"","tlshash":"7971e8e96398b2f4e607abe4ca37a871356758f57f12c48cc2847845e21856d0c9adc7","first_seen":"2025-09-02T04:43:32.333256Z","last_seen":"2026-05-03T04:38:04.913187Z","times_seen":1234,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/btc.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/btc.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fe3-567\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1383,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"08b899edc5746ab897190fc4caa0a883","sha1":"24da4aad4cd7ed97d096df6c277c6e7e185a2130","sha256":"5a837ec546b5cc6b85ba9666c287c5183c4ad87e22d4670f891bdd60297b0bae","sha512":"892ec9c3514f9cbacedc42f87ef287a468867ce3a6bfc73610aaaea7b6503339055d15cd4dacc8d9d18ba23f883d7f3f41b1229d77981b0b8ead8135caed9d3e","ssdeep":"","tlshash":"3b2120f1b3ecd5c59a8857f0552d78b17d3230f1ad1ad12c86f07fa1325a42e0928cc5","first_seen":"2025-09-02T04:43:32.272741Z","last_seen":"2026-05-03T04:38:04.891663Z","times_seen":1235,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/header-avatar-1.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/header-avatar-1.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2216\r\netag: \"69936fb6-8a8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2216,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d90034b2d291e94da6d0c65eb0f9f1a1","sha1":"fb72b31d8799e2e1c9cec12adb3c3e6a17422ef4","sha256":"f24ce3fbcc2eb49afb20cbfd787afd1dd2638481df578f3c2d18a72c73a3238a","sha512":"463b8cb134c6f7edcc23335a444e59f279fd31a61376d8f8677143807c76eca430bd2922da414b348784a1196b87171973d2043a68292c29c135bea5f25b205e","ssdeep":"","tlshash":"5f4129cac327d11ac0ab4e35440d0dc1928c8549ea96076caf4bf92b58ca65d3be23d5","first_seen":"2025-09-02T04:43:32.319544Z","last_seen":"2026-05-03T04:38:04.906173Z","times_seen":793,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/pros-1.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/pros-1.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fcf-1510\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":5392,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e3e03487987db909519573a44bc1c14f","sha1":"e9fe3cb017ee1eeb06730a1b5481c587763e3135","sha256":"7380cdf722492fa999e321b25877905d77eb7781b3729966d36a4a580b40d924","sha512":"052f13a31dd25a9a6e0c561e9dcb24128fe21cc351a1626943534885190a0869790d1038e29b49041649c72cfdade38ed8e1c0043527ae6d56c26dd2d2d32947","ssdeep":"96:oKyaCV0Ct7eFu8TuPK/MeDurIIzfZUijQuGCZ/gNCjAJNk+n3W4ctX7BTDx:oK00dE8OK/4VXGC9yJG+O7BTDx","tlshash":"25b173c8237541a4f949b6fe071bbc542e4649e8e7118c5dcbd46e0be1420ae2d7aecb","first_seen":"2025-09-02T04:43:32.303241Z","last_seen":"2026-05-03T04:38:04.900262Z","times_seen":795,"resource_available":false,"data":null}},"time_used":369,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":369,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/pros-2.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.619Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/pros-2.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"69936fbd-1c0a\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":7178,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5ccb30901fe366e2c16716a76b7d5f45","sha1":"c843a8c141f8b541601ae8a50fc3cfa336d4844c","sha256":"a08ef793cf722e6ad68e787ef6d77a1a7479b4a90ea93c9e9ce04095069fca89","sha512":"ec261437779ed5fe498752027945ad78b84044e60404fc713e0afbe960e80ef184445a8f920853838d13a12e01519c23fb08244c4169df62dcc9bd7d7c59a5b9","ssdeep":"96:VKHrnlEeDv1dv40YDVpMdbZYdBMc5jsRSq8J+org8R0RCeALrS/rw9HO:VKHpnv6DT5XCEdprgPRCqU4","tlshash":"08e185c4372ac3b4f409dafd4219b4757e527dcb761380d8c3ba1d4ab88a42d6da98d3","first_seen":"2025-09-02T04:43:32.249675Z","last_seen":"2026-05-03T04:38:04.872562Z","times_seen":795,"resource_available":false,"data":null}},"time_used":369,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":369,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/intlTelInput-utils.min.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/intlTelInput-utils.min.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/public/js/formsPlugin.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f87-3f689\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50358\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":259721,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"4e9dfe4ff0e4f710ca4d7e095262c1b2","sha1":"e995f1c98857e950882f9ed98b1f35469635a119","sha256":"c06746a767fd8adfe37ddcfa195262649a24a04d3b50036c77899cae54c9109b","sha512":"3fd04aec489cdb4540a0b2bce6552a7ef3517a1c4b464c1155448134de0b5ad77f9799a39f29481eee08205ca24cee01af38b782f8ce4dd251f86705d86b7f58","ssdeep":"3072:PklM0F8CAJjFs3OwPss3MwPPmdV9T2xFM8Mpmxs5DyBpUsR56kmLNTg/QKWVRpFA:PklMpjBf0xFM8Mpm0/Z2","tlshash":"d944f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2024-12-28T11:23:31.699953Z","last_seen":"2026-05-03T17:23:33.309892Z","times_seen":1100,"resource_available":true,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/js/formsHandlers.js","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/js/formsHandlers.js HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"69936f8e-1632\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncontent-encoding: gzip\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5682,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"C++ source, ASCII text","md5":"b7e8a05e7ae996297bf86824ac379ea1","sha1":"cabf10514e35c0a679f955038f1c2626cda611d4","sha256":"8a7adb89f11101aea44dbf0947382d2712e7fb69ed8b616ecdd036f3a8e9de4b","sha512":"8828d4b516b9d70a2846e23d01adcf7b4e9dbc6d500c9bda430899b8d2a59cac73d4e5e2bd3688395ae15a1ce260fd4e4e0076ce677a027708f735343053bdd3","ssdeep":"96:SVRt4ZvYSW21wvY+pw7Khw7KWEzvYTbhw7KW7YzKif1hFEURFAwnfcuWdl9MJIEy:IrqvQ26vIlivllqftEURFtcuWdl9MeEy","tlshash":"8dc12409d2be1e181afb205ebd8d3a8d34354026b824f01f715c05fd27bcba6a1d6bb4","first_seen":"2025-11-07T04:55:15.49233Z","last_seen":"2026-05-03T04:38:04.902679Z","times_seen":704,"resource_available":true,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/fonts/header-arrow.svg","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/fonts/header-arrow.svg HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 482\r\netag: \"69936fda-1e2\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":482,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ef279923440321565d5b5eccf70e2a1a","sha1":"7d3ae164864496ff78f2207f0e5d7cf720117a56","sha256":"1a60f0679cb2ef0cd2d3270f16e34c7897e9998a24dbe1b613364bb4ded1ac7d","sha512":"ed1743bc7a967ce62baa78036d72e2ef91a315323307ce7494c1f16bb56ffa1e7dcf94045598344ce763b03c932d79bad05970e9a98a716a49b0cbcb97642bc8","ssdeep":"","tlshash":"c3f0e2f696591548fe8f09a5d9986c4b056a0adccdcc02c6e5506e105efc0c29cbae87","first_seen":"2025-09-02T04:43:32.334597Z","last_seen":"2026-05-03T04:38:04.871193Z","times_seen":1236,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mont-investeau.com/public/img/header-avatar-3.webp","fqdn":"mont-investeau.com","domain":"mont-investeau.com","tld":"com"},"ip":{"addr":"172.245.112.196","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mont-investeau.com/","date":"2026-03-01T10:30:41.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mont-investeau.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Feb 2026 17:57:40 GMT","end":"Sun, 17 May 2026 17:57:39 GMT"},"fingerprint":{"sha1":"85:82:8F:C4:F0:92:68:A9:15:1C:EB:1A:EF:64:3F:BB:E3:F5:C4:14","sha256":"38:8C:60:11:CE:B3:88:2C:E6:FC:36:0B:2F:A9:3A:4E:6C:54:F7:3E:EB:9A:8A:F3:F5:F2:B0:97:B5:34:0E:C5"}}},"request":{"raw":"GET /public/img/header-avatar-3.webp HTTP/1.1\r\nHost: mont-investeau.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mont-investeau.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 01 Mar 2026 10:30:41 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2008\r\netag: \"69936fb4-7d8\"\r\nexpires: Mon, 02 Mar 2026 00:30:00 GMT\r\ncache-control: max-age=50359\r\nx-served-by: mont-investeau.com\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":2008,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"41ee26398cbd792c2d068501c6fd5347","sha1":"87726c430c3e0306bfa296f1c9fbd6a0f10a1669","sha256":"88da44238d5dc9b340a7763dc85f16be6d31ed02e3913631824731f235a353f8","sha512":"7398a65a212717062749ebf7e94f743cbc52a00f9f0767682684ae74ef74185aa08a1ab410a5d0a4a4b433dfddcd59f71623bc28a708b92e6da2110c9d60bdb6","ssdeep":"","tlshash":"40414aeba80e426fcc9b4272727feeb0087f965c73618c098101012eeda3667474528c","first_seen":"2025-09-02T04:43:32.32803Z","last_seen":"2026-05-03T04:38:04.871949Z","times_seen":852,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":277,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"mont-investeau.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}