{"report_id":"86516a11-b600-43a2-bdd0-3711d9de559e","version":6,"status":"done","tags":[],"date":"2026-02-14T04:48:55Z","url":{"schema":"https","addr":"ihere.biz/","fqdn":"ihere.biz","domain":"ihere.biz","tld":"biz"},"ip":{"addr":"104.21.18.253","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"allyouneedis0059.online/?s1=rbl58","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"title":"Grown-up dating. Real connection. Zero clichés.","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"ihere.biz/","fqdn":"ihere.biz","domain":"ihere.biz","tld":"biz"},"ip":{"addr":"104.21.18.253","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-21T04:48:55Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis2004.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-14","alert":"Phishing Block","trigger":"ihere.biz","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"ihere.biz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"ihere.biz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"svntrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"allyouneedis0059.online","ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-04","domain_rank":0,"first_seen":"2026-02-14T04:48:55.726043Z","last_seen":"2026-02-14T04:48:55.726043Z","alert_count":7,"request_count":7,"received_data":784054,"sent_data":6829,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-02-08T22:14:51.234086Z","alert_count":0,"request_count":3,"received_data":130768,"sent_data":1673,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lh3.google.com","ip":{"addr":"142.250.74.14","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":1918,"first_seen":"2012-07-20T22:52:12Z","last_seen":"2026-02-09T06:18:43.329626Z","alert_count":0,"request_count":1,"received_data":505,"sent_data":444,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ihere.biz","ip":{"addr":"172.67.184.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-14","domain_rank":0,"first_seen":"2026-02-14T04:48:55.728037Z","last_seen":"2026-02-14T04:48:55.728037Z","alert_count":3,"request_count":1,"received_data":5599,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"svntrk.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-04-18","domain_rank":392290,"first_seen":"2018-04-27T07:41:55Z","last_seen":"2026-02-09T06:18:42.565223Z","alert_count":1,"request_count":1,"received_data":643,"sent_data":436,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"accounts.google.com","ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":103,"first_seen":"2012-05-23T06:57:57Z","last_seen":"2026-02-09T00:24:10.772857Z","alert_count":0,"request_count":3,"received_data":6955,"sent_data":1810,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]}]},{"fqdn":"allyouneedis2004.online","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-04","domain_rank":0,"first_seen":"2026-02-14T04:48:55.727803Z","last_seen":"2026-02-14T04:48:55.727803Z","alert_count":1,"request_count":1,"received_data":5839,"sent_data":520,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"allyouneedis0059.ru","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-04","domain_rank":0,"first_seen":"2026-02-14T04:48:55.731977Z","last_seen":"2026-02-14T04:48:55.731977Z","alert_count":0,"request_count":1,"received_data":5681,"sent_data":540,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-08T22:17:48.645662Z","alert_count":0,"request_count":1,"received_data":6525,"sent_data":529,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"allyouneedis0059.online/?s1=rbl58","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3d6bf522ea46c1c6d464218f794a50d9","sha1":"eef7661aa0f996bf8b0d118876e47513ef691472","sha256":"7b728836561316594efbc994db8a16bbbed2e6a68c46f01b3043a2be8d90f765","sha512":"9fb66e73a27efc2a6b3ea4b9347dd26164fd48440fbb71104f2be93e7f1ff0f0642af753f5e16d46df7c35419e06c6017072fe13eca9350d6c234ffb87b2e05f","ssdeep":"","tlshash":"015103968da755a1bd57272a4f5fe10530b7447f0444ca60791cd5083fe5a77b288ef0","size":2509,"data":"","first_seen":"2026-02-14T04:49:01.134629Z","last_seen":"2026-02-14T04:49:01.134629Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/scripts/fp.v3.js?id=646d4b3deea4287def3fdfc18906bcc7","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1d8ad98fe3471d1a74d485f9b4737bfc","sha1":"a1190f7bb41660f682d59e15c2606279da0792f7","sha256":"9aa12d141f3c41629c83ac95bf3bebab2b33bca7f8f8988bf64b53b57c73714c","sha512":"7fb9f2102417806125bb6cfc40d829f98ca8cb772b9ba847562a19b7e0e6e3e1a3e78ccf464a2409741ee9074d12ca521d305c3ae16ff774e2bb6e3c462dda51","ssdeep":"768:WTW1G6kf2ckxyISuNwxJDJzFE8CYtCgkbAIlIdlIZCwXy:ljvfxyI7N8JDJJEnYsgu3ZRC","tlshash":"be0329d872c7b01e5263697a157fa046ba3abd50750d8c07da3be1c07ca5d4a023bfb9","size":40104,"data":"","first_seen":"2023-04-05T13:38:28Z","last_seen":"2026-06-08T10:43:08.731137Z","times_seen":351578,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/js/vendor.js?id=f23bc11d2441d5b9e86b53d88a5908ea","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"aca5e6c0028f1b4960a0e62d6d24e559","sha1":"4a8d1497f6447254f1e671ee5dda6bd72f562a17","sha256":"364258e1672bcb945d88922135f05c121011adc7539bcc2da9e34bf409d7d032","sha512":"87526b200bde3c28a84e5e9046339f4cc518a53b57317ed9219dd7254c0604445a6e6c2caab7d916165a4bbffb78f3adcc7ea263bc846b62d0ccd58fc3aedc3c","ssdeep":"1536:v8gdiZ8tGTw+U6XMUbxmyBgoCJSLvWrbUSNSDoAzyuDNEVsHdlBGHMuZ+3v2MQ8/:QdZSNSDotgHdZuE3v4JuxQEL","tlshash":"e0a319ddb2c6716347ab70ba00bf550af2365599680d8440f029d8eabc78e4e523bf7d","size":100254,"data":"","first_seen":"2025-10-31T14:13:53.047241Z","last_seen":"2026-06-08T10:33:03.311825Z","times_seen":226760,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/fonts/vendor.css?id=f88bedfcced80309f6d44b5ab3ef4506","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:35.927Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /landings/wlc22/fonts/vendor.css?id=f88bedfcced80309f6d44b5ab3ef4506 HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/?s1=rbl58\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:36 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mIACh4PySjCYEosJLUBiZ53GJL0HEhUM5h5e96%2BfSF5V9qiQz%2FcSaOMNBFbKGcUCq1S6cu3zpmcE1q%2Bn4TmphYNL4KIKUzuq6jLJOumGw9vfZBEF065n\"}]}\r\npriority: u=2,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nstrict-transport-security: max-age=31536000;\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698ed1ac-238c\"\r\ncf-ray: 9cd9ef208b561a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9100,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (9099)","md5":"e852f424754d7da1f73e774e99239330","sha1":"9b50ef4ffa48c25b1d446e1e722e9ab7816af39f","sha256":"41a4a62a99b57108047d993bc431719c134b8bb11960943050d7fd4e7ad5bece","sha512":"d2598c255fe7aca008926e823de1e65be75084598190815fecb4db937329013611dfa78b2a9c1c1105d56cfddd45927c318842ba32767a30c5589e90239fc8e3","ssdeep":"192:DguOoJdaj/DWDt7OEdNCxDdQ4dof0TWkujkJhPrH:8utWj/DWDqDvScakJhPrH","tlshash":"731274315fe96038f72f876f76d15a982e94c823d1138fa9f06af629cdc50921672f09","first_seen":"2025-07-01T11:16:12.015244Z","last_seen":"2026-06-06T00:21:53.452343Z","times_seen":3629,"resource_available":false,"data":null}},"time_used":380,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":380,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/js/vendor.js?id=f23bc11d2441d5b9e86b53d88a5908ea","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:35.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /landings/wlc22/js/vendor.js?id=f23bc11d2441d5b9e86b53d88a5908ea HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/?s1=rbl58\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:36 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mvqw3U6h%2FBKgiFiBtdmxOEh1nm9VeOgVHMvLHUpWDqka1ksLzEtVOggsQeQ2AYh6rU8UW0xN0GBZD3NX%2FBjM8lZHht0Kq2T5HumSwLHMKLzoB77uAG14\"}]}\r\npriority: u=2,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nstrict-transport-security: max-age=31536000;\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698ed1ac-1879e\"\r\ncf-ray: 9cd9ef208b571a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":100254,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"aca5e6c0028f1b4960a0e62d6d24e559","sha1":"4a8d1497f6447254f1e671ee5dda6bd72f562a17","sha256":"364258e1672bcb945d88922135f05c121011adc7539bcc2da9e34bf409d7d032","sha512":"87526b200bde3c28a84e5e9046339f4cc518a53b57317ed9219dd7254c0604445a6e6c2caab7d916165a4bbffb78f3adcc7ea263bc846b62d0ccd58fc3aedc3c","ssdeep":"1536:v8gdiZ8tGTw+U6XMUbxmyBgoCJSLvWrbUSNSDoAzyuDNEVsHdlBGHMuZ+3v2MQ8/:QdZSNSDotgHdZuE3v4JuxQEL","tlshash":"e0a319ddb2c6716347ab70ba00bf550af2365599680d8440f029d8eabc78e4e523bf7d","first_seen":"2025-10-31T14:13:53.047241Z","last_seen":"2026-06-08T10:33:03.311825Z","times_seen":226760,"resource_available":true,"data":null}},"time_used":784,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":241,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/img/bg.jpg","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /landings/wlc22/img/bg.jpg HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/landings/wlc22/fonts/vendor.css?id=f88bedfcced80309f6d44b5ab3ef4506\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:37 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 31148\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\netag: \"698ed1ac-79ac\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000;\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bAHyxFXSHE8SwGrPkikl2a8Af2VDDMYxfANN9dAAQdKK490h6wxhOZl%2F4cFH361JJhEBy5p%2F1C1QApPEPlfyQJSBl76PhxSooedJjpcBM59AVoXUa0HI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd9ef25cbe61a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31148,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET 5.1.4], progressive, precision 8, 692x1200, components 3","md5":"10a61fc90a7540ecb65e30be0a5fa691","sha1":"531afccc6d17be2ede9a5f4a415a62d47da343d5","sha256":"ebcf18904bfdf85c64e58b3668a8992ddfb96e3225c18b97c6503589d8179c56","sha512":"8f09385b250295af9f9521cb6a224ba523f142347f4c4c57f641cfe86e5972fe2be710387e6193c51e232b0ca36e9c1fd54dc7186a4b6677004e15fdba897ea6","ssdeep":"768:ZEWG4+xWs6U+OqUcVeF6N8vLBYVxv0E+qpiTm6BaAI8LAQLD5qR9J:ZEWGwNU+pR8Ax6qpiTFA+VqRD","tlshash":"70e2e181d6c3be88bb2c407e087267109fac4726384db517927add7643b62c9be93b40","first_seen":"2025-07-01T11:16:12.017492Z","last_seen":"2026-06-06T00:21:53.470172Z","times_seen":3601,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":540,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/unbounded/v12/Yq6W-LOTXCb04q32xlpwu8ZfvRQkSJZH.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/unbounded/v12/Yq6W-LOTXCb04q32xlpwu8ZfvRQkSJZH.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://allyouneedis0059.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 50928\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 11 Feb 2026 12:37:22 GMT\r\nexpires: Thu, 11 Feb 2027 12:37:22 GMT\r\ncache-control: public, max-age=31536000\r\nage: 231074\r\nlast-modified: Wed, 10 Sep 2025 16:47:59 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":50928,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 50928, version 1.0","md5":"05d155aeb9312622bb55344a904c67a7","sha1":"7179f28585e79eb649070109ff59446ae8cadacf","sha256":"4b69ae920ef9fb5868c8255f5176e799e96d820db11a9e23da7de2ffd2af190b","sha512":"ce6260761e9fbaf82c95fe980b4bacc4dbbc96aecee4e5b70f7f57db488b29f7351c9a047be5a52de94a1e1bf05ffda15b4bd1ea59597d070ceda52ce51641d4","ssdeep":"1536:YavAFuYIsPewmVKgN/gy2DOZfOlgJeQ9nc:YavAcwmVK8x2yZf4gJeQ9c","tlshash":"2733028520f7291fc67232b74f68aaa4347163dea531d18e320970c8e9c665e6e3193a","first_seen":"2025-09-11T17:16:41.899057Z","last_seen":"2026-06-08T10:33:03.315685Z","times_seen":257447,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":59,"dns":1,"connect":20,"send":0,"wait":11,"receive":8,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0=w100","fqdn":"lh3.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.14","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:38.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:39:20 GMT","end":"Mon, 20 Apr 2026 08:39:19 GMT"},"fingerprint":{"sha1":"FC:29:4D:58:5E:E6:74:45:80:0C:2C:FE:14:2F:15:E5:F5:52:19:FC","sha256":"97:7E:CA:18:F0:30:B2:D8:F5:C6:F8:72:E1:CF:30:B5:CE:EA:5D:CF:26:AC:0B:BB:CF:17:23:E2:33:E0:56:12"}}},"request":{"raw":"GET /u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0=w100 HTTP/1.1\r\nHost: lh3.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nlocation: https://accounts.google.com/ServiceLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en\r\ncache-control: private\r\nvary: Origin\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncontent-type: text/html; charset=UTF-8\r\nx-content-type-options: nosniff\r\ndate: Sat, 14 Feb 2026 04:48:38 GMT\r\nserver: fife\r\ncontent-length: 337\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":81,"dns":0,"connect":26,"send":0,"wait":34,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Flh3.google.com%2Fu%2F0%2Fd%2F1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026dsh=S36818834%3A1771044518387540\u0026hl=en\u0026ifkv=AXbMIuCZD3oNrnb7PqlE6CD1Zokm7qhpkebDGENxq3bfDseGx-fnYN0cUTH1QW0xWiNDK_PlM7SgCA\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:38.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:41:53 GMT","end":"Mon, 20 Apr 2026 08:41:52 GMT"},"fingerprint":{"sha1":"C5:23:F1:A1:A9:C0:A0:93:AE:B2:89:19:6E:7A:41:85:9E:EC:F3:EF","sha256":"CE:D0:AA:C4:44:F7:30:BE:A2:39:A8:51:29:B6:04:F3:57:DE:65:8B:23:FE:52:12:43:84:37:5B:2D:EE:67:52"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Flh3.google.com%2Fu%2F0%2Fd%2F1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026dsh=S36818834%3A1771044518387540\u0026hl=en\u0026ifkv=AXbMIuCZD3oNrnb7PqlE6CD1Zokm7qhpkebDGENxq3bfDseGx-fnYN0cUTH1QW0xWiNDK_PlM7SgCA\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 14 Feb 2026 04:48:38 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-security-policy: script-src 'nonce--xKcCkOpcnCFKsDU7mgm2w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.pYNgKEP2dJE.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://allyouneedis0059.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 11 Feb 2026 23:23:22 GMT\r\nexpires: Thu, 11 Feb 2027 23:23:22 GMT\r\ncache-control: public, max-age=31536000\r\nage: 192314\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-06-08T11:38:09.553846Z","times_seen":508769,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":55,"dns":1,"connect":7,"send":0,"wait":8,"receive":9,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUQjIg1_i6t8kCHKm459WxRyS7m0dJ9pQOi.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/montserrat/v31/JTUQjIg1_i6t8kCHKm459WxRyS7m0dJ9pQOi.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://allyouneedis0059.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 39580\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 13 Feb 2026 02:54:16 GMT\r\nexpires: Sat, 13 Feb 2027 02:54:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:10:26 GMT\r\ncontent-type: font/woff2\r\nage: 93260\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":39580,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 39580, version 1.0","md5":"adbb74ed85ae03bafbc689d12c4b009d","sha1":"7f3b99b45e6d2fcfc6236e972f9eca353cf0d130","sha256":"d7143d0ded43c36b8c4ff4a0df9fba2d356d27f64d38f33d962ec5977f928d31","sha512":"d91511c5a20c5b851b6363603959dc520622c0202e2c39b8bd7cacf95f597bccbfe4595cda9785639dbd216e1a45c980e8e54c94a778165b6d81b83192d57a55","ssdeep":"768:GtZDr7XQiUGTkhuSlVGpCRf0p0lBYtg8PdVc4vtSbga/azp8kAUuzqksy8G:GzP7xyhuSlwpq7R8Ve6UN/ad8kLufsyP","tlshash":"e30301c6940ca5f9dcaa027bfc5e0cfa39654cb89c0a6b9c5f89e7634165cf2425ca4c","first_seen":"2025-09-05T00:54:06.266401Z","last_seen":"2026-06-08T11:18:15.545007Z","times_seen":221561,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":112,"dns":1,"connect":7,"send":0,"wait":8,"receive":3,"ssl":102},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:38.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:41:53 GMT","end":"Mon, 20 Apr 2026 08:41:52 GMT"},"fingerprint":{"sha1":"C5:23:F1:A1:A9:C0:A0:93:AE:B2:89:19:6E:7A:41:85:9E:EC:F3:EF","sha256":"CE:D0:AA:C4:44:F7:30:BE:A2:39:A8:51:29:B6:04:F3:57:DE:65:8B:23:FE:52:12:43:84:37:5B:2D:EE:67:52"}}},"request":{"raw":"GET /ServiceLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:bVraad3PrxyblOOy9iUsttHnRG2c0g:TeEhI35K9I6ZChW7; Expires=Mon, 14-Feb-2028 04:48:38 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 14 Feb 2026 04:48:38 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en\u0026dsh=S36818834:1771044518387540\u0026ifkv=AXbMIuBcdn3fzD9vWnBIJrV5U601rHfGTigRs6vdliiynV9HsLYo3doVfSSkYXZCLesMDIjuDhaPOQ\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-opener-policy: unsafe-none\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-xBiJESlTViVrSSYkg0QbJg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\ncross-origin-resource-policy: cross-origin\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":280,"timings":{"blocked":122,"dns":26,"connect":30,"send":0,"wait":36,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en\u0026dsh=S36818834:1771044518387540\u0026ifkv=AXbMIuBcdn3fzD9vWnBIJrV5U601rHfGTigRs6vdliiynV9HsLYo3doVfSSkYXZCLesMDIjuDhaPOQ","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:38.410Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:41:53 GMT","end":"Mon, 20 Apr 2026 08:41:52 GMT"},"fingerprint":{"sha1":"C5:23:F1:A1:A9:C0:A0:93:AE:B2:89:19:6E:7A:41:85:9E:EC:F3:EF","sha256":"CE:D0:AA:C4:44:F7:30:BE:A2:39:A8:51:29:B6:04:F3:57:DE:65:8B:23:FE:52:12:43:84:37:5B:2D:EE:67:52"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026hl=en\u0026dsh=S36818834:1771044518387540\u0026ifkv=AXbMIuBcdn3fzD9vWnBIJrV5U601rHfGTigRs6vdliiynV9HsLYo3doVfSSkYXZCLesMDIjuDhaPOQ HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:b3FdPvExPUN5U9wwaRh6byglgm624w:l6gYFcrnoBAc1dmh;Path=/;Expires=Mon, 14-Feb-2028 04:48:38 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 14 Feb 2026 04:48:38 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Flh3.google.com%2Fu%2F0%2Fd%2F1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100\u0026dsh=S36818834%3A1771044518387540\u0026hl=en\u0026ifkv=AXbMIuCZD3oNrnb7PqlE6CD1Zokm7qhpkebDGENxq3bfDseGx-fnYN0cUTH1QW0xWiNDK_PlM7SgCA\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-vQQ8oB7XTul5VfwLRUrceQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 429\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis2004.online/dating/?flow=627\u0026subid=rbl58","fqdn":"allyouneedis2004.online","domain":"allyouneedis2004.online","tld":"online"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T04:48:33.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis2004.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:01 GMT","end":"Tue, 05 May 2026 14:08:48 GMT"},"fingerprint":{"sha1":"39:12:FA:B5:B4:58:9D:90:6B:50:BF:8F:68:BA:07:2D:D3:8F:4B:15","sha256":"65:16:B2:C3:D3:13:5B:C9:04:8A:C0:9D:2C:1F:B2:F1:18:01:C9:D9:59:EA:93:0E:72:D6:BD:D7:DD:4D:43:9B"}}},"request":{"raw":"GET /dating/?flow=627\u0026subid=rbl58 HTTP/1.1\r\nHost: allyouneedis2004.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Sat, 14 Feb 2026 04:48:33 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlocation: https://allyouneedis0059.ru/?s1=60B1-B3E3-163B-76C7\u0026s2=6376913\u0026subid=rbl58\u0026sub2=\r\nserver: cloudflare\r\nset-cookie: 392d0516=628474cf976329535a313df4cc05caac191f; Path=/; Max-Age=86400; SameSite=Lax\nsite12=627; expires=Sun, 15-Feb-2026 04:48:33 GMT; Max-Age=86400; path=/\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MZ3bh7m592nagMmPNMAoGCGJXP3PyPihBB0toW38ZFQVigsczqS9BiSSp5cxYHnrwL1b0ALo%2Fh%2BdvYJ4L2lzXlveZ8JUVTHT6I2vLJVVXr4bppElWO1f\"}]}\r\ncf-ray: 9cd9ef123cc14e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5052,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":348,"timings":{"blocked":86,"dns":69,"connect":1,"send":0,"wait":175,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis2004.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.ru/?s1=60B1-B3E3-163B-76C7\u0026s2=6376913\u0026subid=rbl58\u0026sub2=","fqdn":"allyouneedis0059.ru","domain":"allyouneedis0059.ru","tld":"ru"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T04:48:33.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 16:34:29 GMT","end":"Tue, 05 May 2026 17:31:55 GMT"},"fingerprint":{"sha1":"8F:3D:73:73:17:46:2D:12:BC:0C:A3:3D:E4:6E:82:C0:38:45:3C:FA","sha256":"39:7A:57:2A:D7:B9:82:D7:37:46:E3:C7:E8:EC:B3:48:61:CF:82:62:CA:09:B7:57:FE:9D:A8:EE:1A:12:6F:54"}}},"request":{"raw":"GET /?s1=60B1-B3E3-163B-76C7\u0026s2=6376913\u0026subid=rbl58\u0026sub2= HTTP/1.1\r\nHost: allyouneedis0059.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Sat, 14 Feb 2026 04:48:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://allyouneedis0059.online/?s1=rbl58\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000;\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZhBTNOlsWdIr%2BXWuDpILJuS9WEOipoM30Zhl4G0fEcNhTZcHTz%2B3Yv%2BowfV67goaPAZ9pYxUxDwxuSU%2BEJEWQmyRVT9kOXuAJKZNiCpMSo7%2BKzk%3D\"}]}\r\ncf-ray: 9cd9ef139d1023eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5052,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":361,"timings":{"blocked":38,"dns":23,"connect":1,"send":0,"wait":285,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/scripts/fp.v3.js?id=646d4b3deea4287def3fdfc18906bcc7","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:35.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /scripts/fp.v3.js?id=646d4b3deea4287def3fdfc18906bcc7 HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/?s1=rbl58\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:36 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PqSJcY5vySY%2FOv%2FVTw3EzkaF32kEGrp7p%2BjrbqhUAz2TiMhveLhJMsZGiA2aiPK3rMWZo89CqHiMAb11qQs9GYN2e8kr1GpgudeKRFOrrs3XLrw%2Fm0ut\"}]}\r\npriority: u=2,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nstrict-transport-security: max-age=31536000;\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"698ed1ac-9ca8\"\r\ncf-ray: 9cd9ef208b551a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40104,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (40096)","md5":"1d8ad98fe3471d1a74d485f9b4737bfc","sha1":"a1190f7bb41660f682d59e15c2606279da0792f7","sha256":"9aa12d141f3c41629c83ac95bf3bebab2b33bca7f8f8988bf64b53b57c73714c","sha512":"7fb9f2102417806125bb6cfc40d829f98ca8cb772b9ba847562a19b7e0e6e3e1a3e78ccf464a2409741ee9074d12ca521d305c3ae16ff774e2bb6e3c462dda51","ssdeep":"768:WTW1G6kf2ckxyISuNwxJDJzFE8CYtCgkbAIlIdlIZCwXy:ljvfxyI7N8JDJJEnYsgu3ZRC","tlshash":"be0329d872c7b01e5263697a157fa046ba3abd50750d8c07da3be1c07ca5d4a023bfb9","first_seen":"2023-04-05T13:38:28Z","last_seen":"2026-06-08T10:43:08.731137Z","times_seen":351578,"resource_available":true,"data":null}},"time_used":377,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026family=Unbounded:wght@200..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.311Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"09:4B:1C:B6:64:C5:97:5E:E3:CF:D9:FF:1A:01:C4:D8:D7:10:82:7A","sha256":"2F:A7:09:04:89:72:33:DE:1D:F8:A7:A6:EC:9F:0C:74:15:D5:B0:87:85:BE:25:63:1A:0E:73:0C:72:E3:CD:C8"}}},"request":{"raw":"GET /css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026family=Unbounded:wght@200..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 14 Feb 2026 04:48:36 GMT\r\ndate: Sat, 14 Feb 2026 04:48:36 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5839,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"72ecc6cc0e11e6140e11a1dde0ebd5a9","sha1":"f711dd3d4fb940ff845c5323369ff16d261b1ab4","sha256":"0d1ee37453bbe3e63bb082f18f0d538fc8306fd4185e9df6b237c579d1252c8e","sha512":"7cf08986be803f128d8882fb40ce6bc84eeb288e617383c1cd7589e4a5eb23f4e3a431ee89e43816c90edfa46e64733257184fc4c898322293ad8daebd6e3d4b","ssdeep":"96:AOYg4aYwOYg4agFZOhOYg4a+OYg4a7nJc+udOYg4aeNtOO4aRwOO4aOFZOhOO4aq:AyYwyNFyuy3uySRk73vO6uLVmdX98Ic","tlshash":"3fc1fe910527e504ea431cc523cf7f269e4e62653495c5ba7ffe2c98adeac360325b2c","first_seen":"2025-09-11T17:16:41.908218Z","last_seen":"2026-06-08T10:33:03.312839Z","times_seen":261536,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":112,"dns":1,"connect":8,"send":0,"wait":20,"receive":0,"ssl":102},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/video/Video.webm","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:36.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /landings/wlc22/video/Video.webm HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/?s1=rbl58\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:37 GMT\r\ncontent-type: video/webm\r\ncontent-length: 590769\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\netag: \"698ed1ac-903b1\"\r\nstrict-transport-security: max-age=31536000;\r\ncontent-range: bytes 0-590768/590769\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=622BC%2Fa8UKRavPyVrLbY0DXEBX5dSe42KEsHUk7xIloi7ROAFV13LRnm1e01QHuHN0vCsAEsE8sdaFPMCdmy41FUvAzDuXr0frs8hGmumf1zrNcvn%2FOz\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd9ef25ebf41a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":590769,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"352e00b43d369ce52a6cba74dbc3edac","sha1":"f88339f7e8a708e6e18e69870ab1019469c85d82","sha256":"1114ea1709f88b098f73174cdaea4cdd9c5751fe35448258d8e518595e8e9e6c","sha512":"5df6e3283e7746f303a26c1cffc714624df269e4ea7b4cdd22d2548218246cd79850b0ae8b17c40f4c00589bfb23537ca02d1cb5f6c31f4b7d735f3f3c2089f3","ssdeep":"12288:OAcUez5D1/hfGXpbinGls+6hjg38rnIY3ia8Z6DLFY3MSR2Yb/3A3:OAcBzFG5cGl4Q8rnT3iN8DhY8Bw3A3","tlshash":"f7c42381addde4d3d19705f6d39b9642831fcc6808e23c6897b7621adce894ed9033a7","first_seen":"2025-07-01T11:16:12.005636Z","last_seen":"2026-06-07T23:00:56.799203Z","times_seen":7240,"resource_available":false,"data":null}},"time_used":1325,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":545,"receive":780,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/landings/wlc22/img/favicon.png","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:37.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /landings/wlc22/img/favicon.png HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/?s1=rbl58\r\nCookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; laravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; SRVNAME=w1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 04:48:37 GMT\r\ncontent-type: image/png\r\ncontent-length: 1935\r\npriority: u=6,i=?0\r\nlast-modified: Fri, 13 Feb 2026 07:24:28 GMT\r\netag: \"698ed1ac-78f\"\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=31536000;\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tQFQfO%2Bvhxz3IjY2%2F%2FFfnXvlvsp3PloNTc6ijbU%2BGF8GUVdMMK8Q09%2BylEs7QiynOgqnTynWTQXVgchF7itQJ%2BPFNMSMWMLK3DTqtNU3Lzi11nuz%2FTsT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd9ef27ec381a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1935,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 4-bit colormap, non-interlaced","md5":"ca15d590f08ef835c2e8c47a95a2173e","sha1":"210bf4b5cf0aaa523fb59b983f8e0c37de7b4156","sha256":"d706231b30f2e6e588c2a03462f04844ccc163bd8940384210927f443d885ab5","sha512":"a488f82f37db8113ce5e3547221370de0b371fa7b9257e79fc439a4228f08152d35f203284533c44bb2181a3fae8b1375e081f7da4960398f6c270ae3c40c07c","ssdeep":"","tlshash":"46411be34746fd6af816d9beef7ad7182f0b4c0804576d1e00270e930a7f5164154b3a","first_seen":"2025-10-31T14:39:25.991112Z","last_seen":"2026-06-08T10:33:03.31337Z","times_seen":20005,"resource_available":false,"data":null}},"time_used":373,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":372,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ihere.biz/","fqdn":"ihere.biz","domain":"ihere.biz","tld":"biz"},"ip":{"addr":"172.67.184.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T04:48:33.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ihere.biz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 14 Jan 2026 07:49:24 GMT","end":"Tue, 14 Apr 2026 08:48:07 GMT"},"fingerprint":{"sha1":"DD:18:E4:87:28:33:A5:36:87:27:E9:5A:8A:DF:FF:D7:14:01:FB:72","sha256":"6D:7C:36:E5:E9:E3:F7:E6:C6:2B:56:C3:38:E3:81:D5:00:D3:BB:A6:39:95:A9:60:AA:45:24:DE:EB:70:7C:4E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ihere.biz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sat, 14 Feb 2026 04:48:33 GMT\r\ncontent-length: 0\r\nlocation: https://allyouneedis2004.online/dating/?flow=627\u0026subid=rbl58\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dNgmdpPulbPu9KZbY8fxcyk9b9MOdE3bWEjvETiQzxfqJdabYn4cfW6tVFx5J7OGpdEZAK3lj4AkwkWOocjtWBxVIOEq5sxI7g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 9cd9ef11ad9a120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5052,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":42,"dns":27,"connect":1,"send":0,"wait":6,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-14","alert":"Phishing Block","trigger":"ihere.biz","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"ihere.biz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"ihere.biz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allyouneedis0059.online/?s1=rbl58","fqdn":"allyouneedis0059.online","domain":"allyouneedis0059.online","tld":"online"},"ip":{"addr":"172.67.201.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T04:48:34.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allyouneedis0059.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 04 Feb 2026 13:10:11 GMT","end":"Tue, 05 May 2026 14:08:58 GMT"},"fingerprint":{"sha1":"99:3D:B5:68:E3:28:6D:23:5B:2F:6C:DF:03:FF:40:22:DB:7B:75:70","sha256":"60:37:B5:54:54:B5:0C:B7:EC:1D:8F:FB:B7:6A:B3:D9:C9:80:83:48:FC:2A:93:04:E2:37:D7:81:E2:B2:B7:C8"}}},"request":{"raw":"GET /?s1=rbl58 HTTP/1.1\r\nHost: allyouneedis0059.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 14 Feb 2026 04:48:35 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: private, must-revalidate\r\npragma: no-cache\r\nexpires: -1\r\nset-cookie: XSRF-TOKEN=eyJpdiI6Ii9QNDl4VjQzcFRBSGs5cXhYZ1VtOFE9PSIsInZhbHVlIjoid2lPK1hmdklmRUpuRnZOdFdEZDl5UmxSRnNSb1BhREpNS0VtWFM5Vi9mNW5DcVRkZHhQTUczR3djWEY1VEdPZiIsIm1hYyI6ImZkZmY1YzQxYjJiZDU1Njk4YzE0YjFkNDg1ZDg4NTc5Mzk0OTc3ZGFjYWMwOTVhMzBjZDg0OTM5M2NlNTQzMTgifQ%3D%3D; expires=Sat, 14-Feb-2026 05:18:35 GMT; Max-Age=1800; path=/; samesite=lax\nlaravel_session=eyJpdiI6Ik83MVI0TnljQVNqNndoa3gwSzA4QXc9PSIsInZhbHVlIjoia0FONE91cG5zaGFTRSsyQWpFYkJpYnlYaHFPcGlJZUpRWTA2WkVpWGUzdEpDYk5NMzA1YlU2WVRTNEd6eUJnYSIsIm1hYyI6ImM3ODVhYmQxMDM5YzZjYWU3MDM5OGY2NGQwNmJiYjhkNThiYzkwMGM2YWRhNjQxNjAzYjI4YWNlNGUyZmFjYzAifQ%3D%3D; path=/; httponly; samesite=lax\nSRVNAME=w1; path=/\r\nstrict-transport-security: max-age=31536000;\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T0gvQsXdEao2yW1fiVhCPZ6CpGmvMuWXq7vIj%2FPKmGyM5mYe26Wj8nc86ZnfUx99GUZj20QE9s8SbqDMq66BaU5nDFiMjRkuhs7Lg7vXrh9zuhLbpHIX\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9cd9ef15ae2435a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5052,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"84ea9857191c106f1a003346c8d41219","sha1":"5d4f494330b842a1f794c6bccb75699a01d36090","sha256":"522faa1b5efd5b5cecd42ba1206652dff0c9919e28db55be6b60686275cafd95","sha512":"2c3ac0375a58ada50ceb94638f9303fe17b02272ed1eb09f19e3f4af20b43d1688d15e6b2db47e4875d4c3d706327a00f885aa86a4d9f5af0566494e9999edc6","ssdeep":"96:QXJgujIM6hWy78Elqngq6+KlPK1IkvfyRfAdjVf/AdstrIrpuu:Q59jmhWy79agq6xKZ6RQBIsXu","tlshash":"65a17563cca794598b4303154f5ee61860e3406b8b41c968f86dc4853ffaebff2825e8","first_seen":"2026-02-14T04:49:01.130345Z","last_seen":"2026-02-14T04:49:01.130345Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1602,"timings":{"blocked":39,"dns":22,"connect":1,"send":0,"wait":1523,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"allyouneedis0059.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"svntrk.com/assets/rbl58_698ffea394e11.js","fqdn":"svntrk.com","domain":"svntrk.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://allyouneedis0059.online/?s1=rbl58","date":"2026-02-14T04:48:35.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"svntrk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 14 Jan 2026 05:35:12 GMT","end":"Tue, 14 Apr 2026 06:33:25 GMT"},"fingerprint":{"sha1":"34:D5:30:5F:8A:13:44:FB:F9:6A:30:CA:2A:0D:02:BC:C2:8C:A7:3A","sha256":"A1:05:CB:11:7B:A3:61:FE:1F:49:D3:0A:84:87:29:AD:71:37:55:56:67:CC:25:E9:53:CB:89:E4:7A:77:9E:70"}}},"request":{"raw":"GET /assets/rbl58_698ffea394e11.js HTTP/1.1\r\nHost: svntrk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allyouneedis0059.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 14 Feb 2026 04:48:36 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nserver: cloudflare\r\ncache-control: no-cache, private\r\nset-cookie: svnimp=698ffea419ae1; path=/; secure; httponly; samesite=none\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f6ymMoSo1aawcSeCmdtraKiAYFq6u8l8A7Pa8BqEx2jGCv6nGbFyOc0CbeXbIp9CJJ7dAF%2BxUaHD7a5OeGjaBh4bQ7vdtqwYjXc%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9cd9ef2119010731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":344,"timings":{"blocked":94,"dns":79,"connect":1,"send":0,"wait":150,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"svntrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}