{"report_id":"887d421a-ec61-4e85-95e2-0eb934dbd3bf","version":6,"status":"done","tags":[],"date":"2026-02-14T10:59:49Z","url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":""},"ip":{"addr":"172.67.217.18","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"title":"R1OT | The Elite Multi-Chain Heist Framework","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":""},"ip":{"addr":"172.67.217.18","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-21T10:59:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"dashboard.r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"r1ot.app","ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-13T11:19:42.514961Z","last_seen":"2026-02-13T11:19:42.514961Z","alert_count":43,"request_count":43,"received_data":3170236,"sent_data":19166,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]},{"name":"Webpack","description":"Webpack is an open-source JavaScript module bundler.","website":"https://webpack.js.org/","common_platform_enumeration":"","icon":"Webpack.svg","categories":["Miscellaneous"]},{"name":"dc.js","description":"A multi-dimensional charting library built to work natively with crossfilter and rendered using d3.js","website":"https://dc-js.github.io/dc.js/","common_platform_enumeration":"","icon":"dc.js.png","categories":["JavaScript graphics","JavaScript libraries"]},{"name":"Next.js","description":"Next.js is a React framework for developing single page Javascript applications.","website":"https://nextjs.org","common_platform_enumeration":"cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*","icon":"Next.js.svg","categories":["JavaScript frameworks","Web frameworks"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}]},{"fqdn":"static.cloudflareinsights.com","ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-08-30","domain_rank":4073,"first_seen":"2019-09-24T14:34:56Z","last_seen":"2026-02-08T22:30:41.935977Z","alert_count":0,"request_count":1,"received_data":20344,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"dashboard.r1ot.app","ip":{"addr":"172.67.217.18","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-13T11:19:42.516469Z","last_seen":"2026-02-13T11:19:42.516469Z","alert_count":1,"request_count":1,"received_data":568,"sent_data":566,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/82abf2d65f5428ae.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"19622580859b19b23901b9a7be2f7937","sha1":"c06faadd6f342879b808413390376b59f7e0b20c","sha256":"bbc0826384faf59b3d35a439a95f7787cd19280ee35469c84cd0b213bc306f11","sha512":"defe2216a1fb2d9b3670710dd2ec27e23fac86ce5e8cf438ddc8038d513c145fc333c0afd051cbf6f1a83d62beafaa5dfc378bbccf26f7eb98bc59c9912f856a","ssdeep":"384:uj/7DGGRPR+rTfIVZ/X+0o3NkOG4+Z47aJUSwT4WGFJl:M+/8Z/X+0o3KZzZ47amy","tlshash":"bce2c7b572d5faa2129341f0c43f2017f3680d7521acb470a7e8cc9b755888da6bafd9","size":33299,"data":"","first_seen":"2026-01-19T06:24:39.223584Z","last_seen":"2026-06-06T10:03:57.433825Z","times_seen":4222,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-06T12:10:59.561929Z","times_seen":154323,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/31e5a05563f3a1c9.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9bce5552c65865dc1096bd27b0410282","sha1":"37ebbbc693f06010ab2eadfe7396d9e1cc3f4ac3","sha256":"91e6150245170683bcf743c584c2e184395f13740a8666bebdbb56297e7b716c","sha512":"7fcca5070d4ecf1ac368bb0402e2cb20ef6a4abe6dd8209fb7cc0025111fb3c59f2f2893f065a9fac935ea2a0f3c3f8eba0c9f16e3db24609e1ec4202bf102ad","ssdeep":"192:xbl2vi+IPLV32qH+FOh4AJo+7189Uc6AAK9duG7FvrHhQyTlFeMj7H0qJOfzpBk:L2vmQojL1Y7YAduG7pzlT573cM","tlshash":"b132c6a572e5b4da839791c4842b000af37e0e74746e6094e7ed8cfb652094dd1f3faa","size":11923,"data":"","first_seen":"2026-02-13T11:19:48.886443Z","last_seen":"2026-02-14T10:59:53.100558Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/d2be314c3ece3fbe.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e189b2054d05a586f4fd6eec2888c203","sha1":"7d92609e0338be85a1f0085efa31f699878f269c","sha256":"a6248517cd3ee53a8186b51c59e1e764e3dc0c512f4acbd50e818f9884663e21","sha512":"1c0e250e62e070ed252776fbd469b27c9c19dc68e695b9e90003b746e3ab6f9c919b39ed1890d581bc0bec54a0b8b2b8a68a415db186d4d278121cbe124a8ad6","ssdeep":"384:735z75Bq9E0m1YmRDQ0cJ3tn79Fg/Ag8qWtOPSNxErV:D5z9BX0ZMOx3ErV","tlshash":"fed2e8717395f9a352db85d9d03a0015f2290d3530ae24b07394dcef368dc89a1fafa9","size":30681,"data":"","first_seen":"2026-01-15T14:11:00.285057Z","last_seen":"2026-06-06T10:03:57.451569Z","times_seen":5963,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/b1022140b5107b3e.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b6210d13b4c542a4a29583d55aae0cbc","sha1":"618accecac63ca704e5305e8a20a2e99a104ebcc","sha256":"718deb279d888dc61e8f6c3132b0fa6b21bd374746bf08f73003087f322b9166","sha512":"803651f9b8d90ddd077b5f665cddc8a80bef0a98fea3daa05daafd0ad5d4d8a8911885fd60870f733ed1ababec80f16a92bd3a01fb385145a7104661fcf22f83","ssdeep":"1536:LeORl5/GgDtLUS9Cy1vtjpJ/hVVskJbLx6Z964r9XVaYxx29jVI5b6m0+UmzGMWW:iOf3LnLLJ/hw91rJLAHyavA","tlshash":"51c309ea73517521d3cb5199c0ae4b41b33b58d82409443cb6bdaccb296099962fff3e","size":126181,"data":"","first_seen":"2026-02-13T11:19:48.883878Z","last_seen":"2026-02-14T10:59:53.092178Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5bedcf6774c137c9ea6adac4dfe1e9db","sha1":"636cf5a1a23618715313b05b715637610417791a","sha256":"290402499e8aebe0b7163ce648c067093eacd3fde7b0c52517043eac61305e43","sha512":"405c7b5818945fb6f8425e828f9fe6dd06fd794bb7fb8844cdef74c31e881e9177465ef421ce1bee7c63ebe9e7c7a2fa0431aa195f57c4666cad7cf45d308ab8","ssdeep":"","tlshash":"8f313849f40ffca17c21ed1f21264f7690d8ed3a80716588b38fcac9467687a0788997","size":1661,"data":"","first_seen":"2026-02-13T11:19:48.912662Z","last_seen":"2026-02-14T10:59:53.106244Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d55ff7e334c2bb8790f70697894d6e09","sha1":"dc993d6ac079d52d3ec1ebd2456a1cf875c7be8e","sha256":"54bdbfb9b4ed53ddd3da0aa9a2a5df5f37ab5b1d6cbbceabe1f008c08a37f745","sha512":"e53c799d8d19a4de92409818a9f2ab7c7c63cbdb2f17a20b459a266dde574a1fdbc490451ceeb2351b5089a2d6b68776a30e5d618393662d77a8a7d2cae5c095","ssdeep":"96:LP7ODHdEa7cg1xqzc/xmWDCOasSYExqz8SuG6sSuzuSuNsamdgpEPw:HoMgnqzcpm3qzXdgR","tlshash":"aba1cf2db405ea8ffdae3969013edd7b20ce456f47a4deb88689ce140b414792797dc0","size":5024,"data":"","first_seen":"2026-02-13T11:19:48.914016Z","last_seen":"2026-02-14T10:59:53.108088Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/43e526e080420ed5.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"63f96a474862e8af8350f5fdb8785674","sha1":"c731fbe4b57c6d9fd6c778d213bd145b3d812584","sha256":"4e7896979a65b17e29c3f585ed49c93a6384f271f695cae7b570ef3be4c758f7","sha512":"17866398245a136de6e1b354599e3673f1fa7bc74147324dabb35dfc51b8293f460b3dfcde3309df8cf2e393becf7595a983bfc45d9c83d0a2a8962deb8ff0bd","ssdeep":"768:aIBWaLuCG4Kcozd+aVgFgsAxc9++Xd5OPSMNHYgrXlB6LSx+HqGsGp:/oD8oztgFPAxc9+cdQPSMN4OCQb/Gp","tlshash":"b113f9cd74a5b0910bb395b2802f501bf23e1d37189d48a0d3a2dde9b8b85add237f59","size":42295,"data":"","first_seen":"2026-02-13T11:19:48.89327Z","last_seen":"2026-05-30T22:54:07.83702Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/68375f163a38f567.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"99f00efe78915db3a32fcbfa2a8b10b3","sha1":"8f82eafd2dd50b2de4794df59e7c47f1cce795d3","sha256":"2cfb48de0cc0a32fdbd708c74cc21d7b1b98f7bd863a821e77e120ff3e2c4c25","sha512":"b50dbd433cea28483ba06f75fc628e7893331c7e88163cd85a38d47ba21ee80f35ac6772b44fe3b18c55b4cc10304fb4da985824f029f1cf7ec14a226db56a6c","ssdeep":"6144:5ckJGlygtDbuxhDurU04f1EFxdXcXl/eB8xAU4lfe:nJGG0nXc9eBVto","tlshash":"c4942b597250383845d540a9906f050ab636296d681ac49cb37cf4ef6cbcdce32bfbb9","size":413929,"data":"","first_seen":"2026-02-13T11:19:48.904264Z","last_seen":"2026-02-14T10:59:53.066128Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/ff1a16fafef87110.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5458632ee5cb3da028baebb11d5f70dd","sha1":"57e264834d3635e52fbbd3d93135842c09ce8525","sha256":"e9786b1305894e4119bb9811a816dac9cf576755596dd989ee15b455749fc35e","sha512":"28ae4e3a3828f99d64b7d4bfc7238d56c9ad910ce267dcb6c01e53be00c88f8a7f024640680d2bd66240a9972322744ee9147883a12ff8c92717c27ebb3fef50","ssdeep":"","tlshash":"63d02b702150f8d84086a4cc8836424bf52928b262fe3895d7ae8cb16174f0c51e1e55","size":282,"data":"","first_seen":"2025-08-20T23:30:20.185011Z","last_seen":"2026-06-06T11:40:41.405796Z","times_seen":22254,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"012e87eed66775696c9e2cffaa9f09c8","sha1":"02f138e5f377b5a5c3c81f3b192f3957bb1744d4","sha256":"46cba421840e0e478db12bd61e3087cee2d48924ec0ded47c034e8bcc69e1a3e","sha512":"f49a757fce5f1965a58805efc7794f03f2892e787ecac3ab944e1728cac6c638386c3d281895ac6d0c71fea03c1190988c728e9818008442ee7ea38010a561cc","ssdeep":"","tlshash":"5fb09b64e015fee555b555716539e445326f504d295c14b0111791a51709d142717ec0","size":123,"data":"","first_seen":"2025-11-02T23:09:27.268695Z","last_seen":"2026-06-05T01:30:38.987566Z","times_seen":501,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ead1170c9dfbf7532937baba62fa5960","sha1":"257de8a3449dba9cf75d12f22dd599eb1918daba","sha256":"a02adeac656735dc917fa4ff254de086511dec279a4898e554ef22a308af0ead","sha512":"607a993ca2896b8cfccb41ceb33f318ba2535d8f92b191f7c51b24f2477728654abcd002cd7b2d64c5e41eafca6342802b5342c8d2e0df0550e47d7ebfd765fe","ssdeep":"","tlshash":"8fc08090cc42cc1dc6660f361c3b1c3521ddd9b4074555469dd5d9381985b3105b5d9d","size":177,"data":"","first_seen":"2023-08-13T20:19:29Z","last_seen":"2026-06-06T11:25:12.530041Z","times_seen":3000,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec18af6d41f6f278b6aed3bdabffa7bc","sha1":"62c9e2cab76b888829f3c5335e91c320b22329ae","sha256":"8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f","sha512":"669b0e9a545057acbdd3b4c8d1d2811eaf4c776f679da1083e591ff38ae7684467abacef5af3d4aabd9fb7c335692dbca0def63ddac2cd28d8e14e95680c3511","ssdeep":"384:XriNpnjyMkg8XMtExRN1w29JIOzahXtO2nJ65:GijgSWuanfJ65","tlshash":"8d92d7def645723613f76076913f220b733b35a528068459812adbc22c3d98f6267f6e","size":19948,"data":"","first_seen":"2024-06-07T09:21:23Z","last_seen":"2026-06-06T12:05:24.532705Z","times_seen":337258,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/aee6c7720838f8a2.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b04e725a53340288b6ae5034fcfad31","sha1":"4b7f97671018e99ef5325585038d5248c0f55b41","sha256":"fd13288643289ee2e4fb15a1b6672a675d05937de623ce52d87c0c3e247db00f","sha512":"a61fbbb224d5a854532753e48f31bc2356f72e840d7190f5b068bd99c42caaca50a001750b4311d584fbf81837e9632849c1b9121a6e950bcf36732ba84be305","ssdeep":"3072:AVhLHlPuSSY2UzBRaWcG8TP36kNAHTjWmN6ZXtb967+pB:AVhLHxuSSY2Uz9rH3FSXtb967+pB","tlshash":"e7240be83995f6626ab302a710af1803733c252b280d4d60a351fdddb57845eb17bf9e","size":224413,"data":"","first_seen":"2026-01-28T23:01:01.278793Z","last_seen":"2026-06-06T06:36:10.060287Z","times_seen":2275,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b9eb53d83a38f6ee2ef57547a9a2386b","sha1":"d35a5f9a40798adb192603a5709d62a8570a65cb","sha256":"65e3ed112aa9b8d2f9c6adc0eba40fc8f14cc89bff1cb233f2ef3c600e7b2293","sha512":"27c338ad6ffc2d292e29486e58a08aeb4f01250534287f006991031c67b7705785bd22b4040acde36cbdb8d51910bdf5278f2cbb07cd5b2865895731824fb889","ssdeep":"","tlshash":"c3317cb2ac1aec04dbc39e4c583e3ca220ccc2b79269995a7568cd248583d7a5ee5751","size":1560,"data":"","first_seen":"2026-02-13T11:19:48.916099Z","last_seen":"2026-02-14T10:59:53.11238Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/turbopack-24ae7afde2b293e9.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"576ad92c8ba48dce1fbf008eeb584ea4","sha1":"97251a4996eae62dff6c35817df4803dda47a4dc","sha256":"685c219bd6f37e7efa20d45683afbfa074ce6a4a7f74ac5cc6fa691e29749578","sha512":"d113a83fe5ef1f65fda7ba063587c156dd7d698dbcce6a504ecbb51e4d8353e66f3b10fcf7c89e744fe9a297727ec2503c94eeee25b240ba730c937a21892107","ssdeep":"192:V74eFn8/Esp1U91EG5T1uyO9lGdiwMhMlng4W9PZcxkUk1IsS:V74e2OvO9lG0OlgJZZQl","tlshash":"9522d6da37a6f07743afa5e6907f4044f17914a8142d581c93aca8fb383946e49e3f27","size":10268,"data":"","first_seen":"2026-02-13T11:19:48.911398Z","last_seen":"2026-02-14T10:59:53.051062Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/1e651092a29e76dc.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"76651c39b45500bdb582383fc2e0e793","sha1":"f4170158ef617afe4117badff66f1307e7119c47","sha256":"a5250f5d4d35f67be0325d4743f597edd40e60a7cb60c5ca756b42c011984fe9","sha512":"4022493a1ac4f403248ef1fba63bf682788252ee1d39fca526361a6825445962f235b202704c2226a38734e11cd5a9548596369c0994dffb2ad066aae62071fc","ssdeep":"96:46gI8v2JcmMRNY6v2JCuSXTnv2PDPSf3vZ8kM2Lv2OgIWwzysv2gv24hNfm5w7uZ:HjJcfGJCuJPDPiiOgBwuzX4/z+AO","tlshash":"e5f1326635d5f9d1178b44d4c83b5006f22a0d3a226d70a8b7e5cefa7a8044df472fea","size":8116,"data":"","first_seen":"2026-01-29T19:10:36.561032Z","last_seen":"2026-05-18T03:00:20.235944Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/b6c7cf0bc4b34a56.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1203b4086fec940ca4ef41ea946a0e97","sha1":"033775ff566ed3662d2330d1389fd664fff8acc7","sha256":"d52acd0324dc4a63fe8d4d1e1d7e540976e0d00d5fc89b2a95c01ee3614397c6","sha512":"a57734e2ad8b0b24fb813d33dbca7265abebea7ddffa257908a7bf77be5445f0f14c04c8f04910c9f79c9e555b34deef3eb5e215353e8dc79917e06e87d272fc","ssdeep":"768:8jfutW8PAfKoiibtMzffQOV6gTr54ue/dGlI+0BkOe8wcOwbY6VJykVi8QBmgpQZ:8bWxyZKn9lO7DrUkVdM0TyxHaz4cv3","tlshash":"ea93e6f935d1f88207ab44a6c43f0006f32c4c77289e74a4a3e5dcda756465da1f2faa","size":91932,"data":"","first_seen":"2026-02-13T11:19:48.891415Z","last_seen":"2026-05-15T09:01:13.940146Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/dollarbutton.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/dollarbutton.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 42380\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:14 GMT\r\netag: W/\"a58c-19c1d0a8290\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TkBZgBrkupSQoW4LxUYjK6PKQMsrP3RxDraXTmH10HOHm9%2BGkSKRKYrN2jsspMQ1MptUeu%2FMn442oCEjGUpLD%2FLCJmeU4fNt\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60cb00e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42380,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"63d8823fe09e59b0e383812aa1c08b6d","sha1":"5ffaf2c299f8f92ef7dba47a1533198148898115","sha256":"6ec8af5d31acd7fe1b0fde162c27a4a7f670494b1fdc139153a0906ecfd17ab8","sha512":"4c5641be8a0769ea8083cb5400157f703237e82f1d1e4e8eda0305fa5afe64d3a6aebf31fc2ae165b068feb469f9d93b490056575f45a017b8e66222c8b8bb28","ssdeep":"768:CgxVa8sSt/41BX1Y680xm8hPFFpNWrT9UjAE3hH7jM+YIMFarQW+7FpVwPA:48sE4BX+68TIz4TfQh3PJR+vVZ","tlshash":"2b13f269930202d17a6a5a9339441d8e1fc659a7f0efd21bfd323015ac3fb5faad4148","first_seen":"2025-10-11T10:45:57.843549Z","last_seen":"2026-02-14T10:59:53.040137Z","times_seen":3,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/d23f31b94ad01e54-s.p.4b0b0c7e.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.436Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/d23f31b94ad01e54-s.p.4b0b0c7e.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 9400\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"24b8-19c22871cec\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZS34lg7z%2FgIPPqWIYNKkc0mzSewLzqvR4B%2FkidGZBmVBiMnxop2O9ZzyDpla5uzduJC349nYow4l6szuXU4cyveQtEAGZ%2Frv\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f997e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9400,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 9400, version 1.0","md5":"989e746dc103c42fd5ef7c5cd861d1b2","sha1":"525a3afc6ab18de10f9ea2e38dbf82fe98320d3d","sha256":"35f7e628ec8e7dd3bf434e95ce28289803401f12d8605c56ca83db2b4b301d33","sha512":"3b6c65421944caba4e7a5377fe60dd9e0b70dd8c7e500150bb8bd229fc80fc5caec261d8224c6c7a4b788b3e0db18b5bf806a109615b83286b8b18c9363a9eb3","ssdeep":"192:SgBED8cFnp3NSNR7+8TA0liw5wzBBPKb83sA7fdLf:qD8cFpG68FiPznPKb/Oj","tlshash":"1812af332956cdbacaf1ee71e563edd419026c4675d6f670f420c0e48b0270de1ae6b1","first_seen":"2024-12-17T21:13:25.253772Z","last_seen":"2026-06-05T17:12:57.802851Z","times_seen":159,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate6.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate6.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 54326\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 19:47:32 GMT\r\netag: W/\"d436-19c1abf0420\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RO089ZKOAEdZgDodmYWTt5A6kLApXOC9p0F2N8K7xwESWFKqU6kQY5mpaylN9Eg%2FN50kOy39aVrOfjRowGEOfJQ%2FYFIPZLMO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f99de07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54326,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1974x992, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"f0578c78175727c7bd392f9905889943","sha1":"c4239d25f043252c0cff73744ad6baef69ad6bda","sha256":"480025a89d374f6977c60783642f54efb584b9a7ef01d115031ab38f25968c93","sha512":"2b29ef6e408c14d0d8d9c27b1e56cd9efc57dbb852d67084ef9ed436c796d332ca675bb5e2a0263c58cf7618aa46e9453737a2c1f31e13ccf7c383853aeb4c50","ssdeep":"1536:I3QRbddoN1NQR6pSqflbjj/W+HtdDb5k/oCr1MMGsZr:I38JdKQApSAj7HTdiougs9","tlshash":"a7330111c99cb7765ad9eff70dcc88c0f2e760b044d67823251c9ea15ad2b7f27422a9","first_seen":"2026-02-13T11:19:48.903381Z","last_seen":"2026-02-14T10:59:53.044015Z","times_seen":2,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/1184a7600a6782f1.css","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/1184a7600a6782f1.css HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: text/css; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"15451-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6c1Z7%2FZd0Hxni5bVt618MheOQRI%2FzcpnIjdv%2FptRtOzQ66YKUipOdZPN%2BCjybj315wQjaDB1oWcwumI0EEcvtTHFX3RDZEWF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\ncf-ray: 9cdc0e5a099fe07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87121,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (43467)","md5":"6e0e309f47b4079c1a0319897ec821dd","sha1":"0e07786d75f48bedbb8560accf9c075b894a5707","sha256":"3857c59b908518219665fa2c5460410de9d00c20cb3cada54a4d904629464ba9","sha512":"62b725998667e7e1fca36fe98a067c778681ccc447587ee05071acff1ba7e070a16e80fa38cddeacae601e26056246f17683cfe807c4ba24f935418429e5123c","ssdeep":"768:booSTop1o/8iOqt0JxtXilnTsNpnuQE5xNWJH6ZIXXn5PdO/qp70XjaRfj+c6bzx:szuE8cSEguma","tlshash":"3c83b6b451a6e47bfc63f8e1a2ccbc0ea41cb0a5df791599f8052604a7e37f20a65f14","first_seen":"2026-02-13T11:19:48.910508Z","last_seen":"2026-02-14T10:59:53.047214Z","times_seen":2,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/1e651092a29e76dc.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/1e651092a29e76dc.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"1fb4-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CAO%2BECx3tLP17pRpH3qhRc5AxRI9jVLhJVhhCcQc96n928Z%2Bk2D5q88xewMYAQveuKJe7hQ35C8pIbEp2tCT5CSXLoWSaK6F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a09a0e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8116,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (8116), with no line terminators","md5":"76651c39b45500bdb582383fc2e0e793","sha1":"f4170158ef617afe4117badff66f1307e7119c47","sha256":"a5250f5d4d35f67be0325d4743f597edd40e60a7cb60c5ca756b42c011984fe9","sha512":"4022493a1ac4f403248ef1fba63bf682788252ee1d39fca526361a6825445962f235b202704c2226a38734e11cd5a9548596369c0994dffb2ad066aae62071fc","ssdeep":"96:46gI8v2JcmMRNY6v2JCuSXTnv2PDPSf3vZ8kM2Lv2OgIWwzysv2gv24hNfm5w7uZ:HjJcfGJCuJPDPiiOgBwuzX4/z+AO","tlshash":"e5f1326635d5f9d1178b44d4c83b5006f22a0d3a226d70a8b7e5cefa7a8044df472fea","first_seen":"2026-01-29T19:10:36.561032Z","last_seen":"2026-05-18T03:00:20.235944Z","times_seen":37,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/turbopack-24ae7afde2b293e9.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/turbopack-24ae7afde2b293e9.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"281c-19c22871cec\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ltbbzgbBbzHfpDdeudHBU%2FupptwbG36hqOL5R2U5rcWrWTiEzKY40Iz3HHORemsLDhV49HIp%2BertFOfoflzOOFStNFq5icl6\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b5e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10268,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6438)","md5":"576ad92c8ba48dce1fbf008eeb584ea4","sha1":"97251a4996eae62dff6c35817df4803dda47a4dc","sha256":"685c219bd6f37e7efa20d45683afbfa074ce6a4a7f74ac5cc6fa691e29749578","sha512":"d113a83fe5ef1f65fda7ba063587c156dd7d698dbcce6a504ecbb51e4d8353e66f3b10fcf7c89e744fe9a297727ec2503c94eeee25b240ba730c937a21892107","ssdeep":"192:V74eFn8/Esp1U91EG5T1uyO9lGdiwMhMlng4W9PZcxkUk1IsS:V74e2OvO9lG0OlgJZZQl","tlshash":"9522d6da37a6f07743afa5e6907f4044f17914a8142d581c93aca8fb383946e49e3f27","first_seen":"2026-02-13T11:19:48.911398Z","last_seen":"2026-02-14T10:59:53.051062Z","times_seen":2,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/usdt.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.492Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/usdt.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21198\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"52ce-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=63V7riMMg%2Bjs54kMZZhn2BN81%2Byd9z%2FG5kLrVhquOuMZ8M7dwK4%2FMtrqPghRKw%2F0eSYZeA9%2BFZTCQcjIrG7Gjnws8pyR1DH7\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60bafae07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21198,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"a12a75d7b71d259b10f84770378996c1","sha1":"25988bd4bafe774f637ec955ea60fd2392a554b0","sha256":"a864a544a00fe8a892e8339c9d9555d854cd2b2dfdd81bca006b1ea61e58f84a","sha512":"5093ff9fedd81e2b6d9d3dff2d35b0743acbc8f63c1118edbf243083208e934cfbcb0fb96d62c64c6693b0e41c5e3b117bc97a38a2efe6b9973407c730876174","ssdeep":"384:YwOZ7TvX7AG12pqtCgo4a6O+eI3OsP4ip2QH2jYm2qzqca2JGsDTfGQ:YwOZvvXOpqY7VI4iTWjBxjaOXfx","tlshash":"f092e19256ea7c2d708d41a43af5adb6308961e19122b3bbd3c1ebcb862c1c69413277","first_seen":"2026-02-13T11:19:48.897295Z","last_seen":"2026-02-14T10:59:53.053275Z","times_seen":2,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/usdc.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/usdc.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21657\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"5499-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RCdtgO0ZhnnqslZKKo%2BY9vlGckfPr2e5Shj%2Bqr7EWtM2krLtviS1aQUvIWinvAfmsxWKw%2BcV4cy6tQgGV9dwhqiDxuLZiBMX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60bafce07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21657,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"5fddcf95b1a4b4c0ac969f0e4d46683b","sha1":"1827a6eef14ede86a3696ab150b79d7147b8886a","sha256":"23882064b9e459283f70dfb0c8f9bc5e1c99633bcb6d0cdfa32e1d93fc27e7b0","sha512":"91f4650bb370037683cf0fb9db8a7062f5f45e30948d3ae27e26e172f60ba87216f582fbf3253f994b63a97f27b11b3b4a88f4231b9c59d838209a965b79555c","ssdeep":"384:DLlGxZTZQgEhhI0QL0GvpPZbbTV9hSARiKzSG4o6expsB7X5poqvf7Lp:DBGxZ912WvpPdoA7BpsB7p+qvZ","tlshash":"73a2f177f4e5457b9a64c2e02bf96921e44639e4b898263f57803a0609f96888cfff40","first_seen":"2026-02-13T11:19:48.898545Z","last_seen":"2026-02-14T10:59:53.055613Z","times_seen":2,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":145,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/silence.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/silence.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 5255\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:15 GMT\r\netag: W/\"1487-19c1d0a8678\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=71KXOrzrXR86sGYPZ5AafGDRuSx16xlbbjf6HLcfp2%2FpcD4iMkOYSeN5XSYjLI9GKn%2BzuEA0XswByh6s1g0G2GhNBdykbEQ4\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60cb01e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5255,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"c094d665d42f02653a7461e25511aa0d","sha1":"01c3e415526eefa5d9084940acae2ce5cce7dfac","sha256":"c801e1d6d337e32b96680287fc665f808adbedce7bceda9ee8e1b2f2e6b941f4","sha512":"6dbc5b3617d8ddabd17d5831bd246265e28fee64882a3b749ffc2b595087f095b381163e9abcec0182fd02bcfc4e66c460233afb9086d2a74323ba96bab0db94","ssdeep":"96:+WUK51yH5U+AMATWGznCuoX+CXTNK/Vexa3CgKJ/7r69Pn9DhBz6nxbU3G8lQV:wKzyH5UdnznC7VXT5aS/DWPn9DghpV","tlshash":"71b1bf042e47f62acdf7a0f3323684348b5d76240257064b5b7b070c691e9efe0c01c6","first_seen":"2026-02-13T11:19:48.9083Z","last_seen":"2026-02-14T10:59:53.057928Z","times_seen":2,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate5.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate5.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 41504\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 19:47:32 GMT\r\netag: W/\"a220-19c1abf0420\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eFKZeZqPlVS8M2jl68kMsW8ZARs0IQ%2FMuffV%2FCY%2BkySKn8BOHFVkF5%2ByuZrbgESbgLKbcMqkAsj553F9puTh4GnamoPwdsf%2B\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f99ce07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":41504,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1900x1024, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"95276661dcfcd302e213bac2a417ff68","sha1":"d7001685a7beaf91c50e55b793cec10a04102aae","sha256":"9d53e0a9493167e0bbfe0a012b04f3d43d5e1f3061c8eb4560cb89755cf5dced","sha512":"dc2ad551ae4cc56cf29032950c261331c43e95f92156a95850c0a5ac72502cbe2f223ee5d5f25859ae7c11a09fb5903d127a5b1a9d1d3ad1246d208b06eb1bb6","ssdeep":"768:xEwQQoy6CF5dTSdsRPyxP/Ja1RAkmm/ugckM71Jsh80WMcpdiq3xJZ6c:xEwQQos9SdsFc/OcmGnkMPM80lNq3P0c","tlshash":"b913f149cffa116b918d5592fc326200363956a0c50bb9ec5fc6f94fb54e06cb4263f6","first_seen":"2026-02-13T11:19:48.885037Z","last_seen":"2026-02-14T10:59:53.060305Z","times_seen":2,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.433Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 34668\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"876c-19c22871ce8\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jh%2Fh6DxrtKhQxozD%2B9WrOPQMHoIDG8PaickuBAH0JeCyitXMupEb1dBADMjT%2F248ZET5uPT41ztj5AnJjBV4xKOIk7mdFpeY\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f994e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34668,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34668, version 1.0","md5":"4746809ed1c17447d45d2a96c64796d4","sha1":"300a3511100a2ea1fbf43bf329855e17da1f4532","sha256":"8139a402ce239285716452e5668bce94bbf240b433fcfa2e154aa7e4d240445b","sha512":"28c2ae34437a02c99282a2e0cf8c3de11bfa07b55835068c82578dac1947dd3a74ab904cfdae0ce1d14767d601884c2e8f577025f647cae4a06c8dee220cbb61","ssdeep":"768:btpz8R5UTJqgQ3XvFF1LTbda57GqOWBR+LEPP:Jpzk5qepLTbda571v0EPP","tlshash":"35f2e1816c1c7085da4951f9cda50bcd46ee86f98d3f6d2118613a38e6c802f47f97be","first_seen":"2025-01-09T20:17:59.500754Z","last_seen":"2026-06-06T07:56:22.943074Z","times_seen":23612,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate3.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate3.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 52136\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 19:47:32 GMT\r\netag: W/\"cba8-19c1abf0420\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BVXcD2HAmD4Yd9AhTm55LjJ4Jmt4sxd8xxzX%2BVGBqHc%2F48vj5iz7%2BBDlLrFUjSRThcZ71R97HagJ4Hiu3zSprjr8CsO6Dx4%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f99ae07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":52136,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1756x1120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"025e211cc529f0e3cbafa428872348a0","sha1":"83f23e5990fdbe8daa281aa5a521bb7571d978e3","sha256":"03be1b73e06f0ecff0457e7d2e8872569620ababc1025844b654d0817877776c","sha512":"15f0a7d5ce9e6e601bb8da641ec9732f8121f509c3caffdf05471e8b177b7a6cb4a574be4027330bec39c5c0febfbb3a748353f4f1c2daa9467f4afb044aaaaf","ssdeep":"1536:jm0b/VIBqMDT0tkrXlGeSW370cASa++Arj:RKqMDQ+r1xjL08a++Yj","tlshash":"a033023598f2a8d0f2427baaac789d0e6c554d2148705cd77a03b5f5dbef381e391ac0","first_seen":"2026-02-13T11:19:48.88989Z","last_seen":"2026-02-14T10:59:53.064236Z","times_seen":2,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/68375f163a38f567.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/68375f163a38f567.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"650e9-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pMtH1o8qSWFeekZ9ftUaYvBg1U7kc6Vlk6P3jrm3Kg5WrQtjSc7sfDNhkuQnTQbHSgCt2aqxpiAZvu2CnqmghnTrZ%2BReS2MN\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b8e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":413929,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"99f00efe78915db3a32fcbfa2a8b10b3","sha1":"8f82eafd2dd50b2de4794df59e7c47f1cce795d3","sha256":"2cfb48de0cc0a32fdbd708c74cc21d7b1b98f7bd863a821e77e120ff3e2c4c25","sha512":"b50dbd433cea28483ba06f75fc628e7893331c7e88163cd85a38d47ba21ee80f35ac6772b44fe3b18c55b4cc10304fb4da985824f029f1cf7ec14a226db56a6c","ssdeep":"6144:5ckJGlygtDbuxhDurU04f1EFxdXcXl/eB8xAU4lfe:nJGG0nXc9eBVto","tlshash":"c4942b597250383845d540a9906f050ab636296d681ac49cb37cf4ef6cbcdce32bfbb9","first_seen":"2026-02-13T11:19:48.904264Z","last_seen":"2026-02-14T10:59:53.066128Z","times_seen":2,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/_next/static/chunks/1184a7600a6782f1.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 34668\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"876c-19c22871ce8\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85209\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IeVZV4WFAhOLAGjzm5%2BQEOOUwRphKDXjSZBcvZsRmEd3jzxFUX64SAWDalpzjYAtZG%2B3fPNUyUrGzGxJMQq83YA3ycBl910q\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e5c6a23e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34668,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34668, version 1.0","md5":"4746809ed1c17447d45d2a96c64796d4","sha1":"300a3511100a2ea1fbf43bf329855e17da1f4532","sha256":"8139a402ce239285716452e5668bce94bbf240b433fcfa2e154aa7e4d240445b","sha512":"28c2ae34437a02c99282a2e0cf8c3de11bfa07b55835068c82578dac1947dd3a74ab904cfdae0ce1d14767d601884c2e8f577025f647cae4a06c8dee220cbb61","ssdeep":"768:btpz8R5UTJqgQ3XvFF1LTbda57GqOWBR+LEPP:Jpzk5qepLTbda571v0EPP","tlshash":"35f2e1816c1c7085da4951f9cda50bcd46ee86f98d3f6d2118613a38e6c802f47f97be","first_seen":"2025-01-09T20:17:59.500754Z","last_seen":"2026-06-06T07:56:22.943074Z","times_seen":23612,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/babydollar.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/babydollar.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 33171\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:19 GMT\r\netag: W/\"8193-19c1d0a9618\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PAUTW%2F5vt77d%2BWopHDvAS0aEPHkgRtOo8kUsI90LqwCeyFPbuliF%2FHEILuYWPo%2F3lcuRTDWd1gmL3PLIAaum%2BZF5R5THbNdE\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60cb03e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33171,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"0ce268ac73662378a30c41005bbfe084","sha1":"014552000e7613bea5b8848a6a20e2274cbc9b74","sha256":"8da604544d347b4085455c687307ccf9328fa31ef5f0b601b396aee7dffebc10","sha512":"9400fe038810ac18e512a3e334ca6e973a987e89eb0cde180bbf491329fbd52f51df1a803354a3adf73aa9cfb3c2778afe188a1af5901efd4857b0837197a759","ssdeep":"768:bQ4ejNdhp4rzMPqZBGk6YFZXwjnBjyGuExVWHf:bQnjNdrkzVFVwjncfExVWHf","tlshash":"97e2f1c1bb24537df41f280361af2e21779d5163879ae33100aeda15cd3a70ecb25a74","first_seen":"2026-02-13T11:19:48.87768Z","last_seen":"2026-02-14T10:59:53.068534Z","times_seen":2,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/sol.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/sol.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21117\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"527d-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1AfkMHhpX70q180r%2F0twIGjx%2BXLBt%2FB0HZ3VaTQMXWsujHN3YDydkQMa7cFoKs5pQ2VovmTyJdNucXzM3utzWOGeS16fipP5\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60baf9e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21117,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"7227886bed05973cbdac639bc54e58a2","sha1":"cb90b4e4e2f06716b63fcc83cec017ebc202eba1","sha256":"b66efdef7ed54ab400e6818399146b41e7c68d485664f5ce9e88f9da60244a85","sha512":"a466b482539ced90bc3466fbac3f833e5ae8c410ddc3f9b9e36221f92c53450c3937b734553b16a456aabd7c8ddb6f2f714d385333a9fe528b944d0415f354cf","ssdeep":"384:3jsCYUJ1BFMZqoQ+V5/6j8DUVcF1OGOheBAtBXRe3V0Qjh8c:oC1z+WjPO1ZOYBAtBhuht","tlshash":"ed92c03948e62c6be984514666835dc07a21488c64afbccfa1f912bd7f8d85dc1d1f3c","first_seen":"2026-02-13T11:19:48.905116Z","last_seen":"2026-02-14T10:59:53.070227Z","times_seen":2,"resource_available":false,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate1.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate1.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 114054\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 18:30:12 GMT\r\netag: W/\"1bd86-19c1a783720\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a4s3rqivPAwJBQ%2Fm%2BEMd4XLNKY044CkgDuPLZyllw7MhywfRTCTB4VPH9u7XXmkvbEGWEzUpBFsFn6QkWXaalniuGDd%2BbdI1\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f998e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":114054,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1893x936, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2782d9677e9027752a3fcdcf73251044","sha1":"6e7c742578d351c712351b34d51a1808cc361929","sha256":"9caa8d6d7f96596d7b2a8b5d2be9286cc6327fbe24d27ec2d263fdaac5921e51","sha512":"b8b24982ff9efe581fb6efa9538af3bd9e3bb00c7e7d4bc1972a7fe934db86678dd4e4bd3eeabcd334dbbc9732e8b69400cbfbe235c2bb3f0c1e8c7f8c98a363","ssdeep":"3072:DwidEUs7sjbyiqRljygW7Fzm/+NjIZqYUw3JW:D6t7sjeZljyggFq/+N/Hw3JW","tlshash":"77b312a5a6f69b88c01df8b21fd344a3d582030b597a675f350553ee7f086ac61d2c58","first_seen":"2026-02-13T11:19:48.900255Z","last_seen":"2026-02-14T10:59:53.07215Z","times_seen":2,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":100,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate4.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate4.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 65772\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 19:47:32 GMT\r\netag: W/\"100ec-19c1abf0420\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OgHOHDohwXoemLyiKMWXxDqw%2F2txU5bg9j2mPgc76eZI3kkijvDKTODckam%2BPiIbucEq3KdWHvN7hMkmTUcrsKbfZiApr1QS\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f99be07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65772,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1958x992, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b57d7d56c4abc505ffc8f3ed4146a431","sha1":"c2bdd008b03715020ab5ff776a48e8f515f7c93a","sha256":"a374aed265af8fb501a9540a116963484e78d145d744c190cefef6b881307f7d","sha512":"9221f4333cc288854dc6e3d6151511f6fd34b0d4173d37540f03475340e188f9ccc4d740ffdec2e719f42fc9b24504f762780b7db7fc7d908485638e3516547f","ssdeep":"1536:UGVtNV43zc3MzGVgxm3DZ1AEVZ1iZ3VWCMGX:1/Vu4Bg0z7AoirR3X","tlshash":"f0530220b15c0067c1926fd9b1baa084e88cef1275b2eb0f5595c0da3fe5a7d960855f","first_seen":"2026-02-13T11:19:48.909796Z","last_seen":"2026-02-14T10:59:53.073897Z","times_seen":2,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":194,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/b6c7cf0bc4b34a56.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/b6c7cf0bc4b34a56.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"1671c-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8JSIssd5Jk6m5rs41EbFYaSYwBeTOR78POkLur0bfU4UesGmXzx5iyO%2FfDzE5pKjNQFP5H93Wtk4StovlDINf4btuNux58ih\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a09a3e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91932,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1203b4086fec940ca4ef41ea946a0e97","sha1":"033775ff566ed3662d2330d1389fd664fff8acc7","sha256":"d52acd0324dc4a63fe8d4d1e1d7e540976e0d00d5fc89b2a95c01ee3614397c6","sha512":"a57734e2ad8b0b24fb813d33dbca7265abebea7ddffa257908a7bf77be5445f0f14c04c8f04910c9f79c9e555b34deef3eb5e215353e8dc79917e06e87d272fc","ssdeep":"768:8jfutW8PAfKoiibtMzffQOV6gTr54ue/dGlI+0BkOe8wcOwbY6VJykVi8QBmgpQZ:8bWxyZKn9lO7DrUkVdM0TyxHaz4cv3","tlshash":"ea93e6f935d1f88207ab44a6c43f0006f32c4c77289e74a4a3e5dcda756465da1f2faa","first_seen":"2026-02-13T11:19:48.891415Z","last_seen":"2026-05-15T09:01:13.940146Z","times_seen":30,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ot_phantomdrainer.MP4","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ot_phantomdrainer.MP4 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1283710\r\nstrict-transport-security: max-age=31536000\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 19:06:53 GMT\r\netag: W/\"13967e-19c1a99ccc8\"\r\ncontent-range: bytes 0-1283709/1283710\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gDgYfhHT8R7XoGAR8k%2B0BPc%2FLv98t98uc%2FD3EeUAc977IxcxQI3GDMsej5kCjtKaeC%2BCZDnZZGAgZMBSiUQI789BpBTF4Tov\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e5c2a18e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1206288,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"dc33eec6329f1861de32cd40d6917bb0","sha1":"56e84414f509f51affbaea90abcd8f8336e9998e","sha256":"75547e6231832ce892c9d9f48de0853c4d07b23d796eeab5309a9c18a4bb8d2c","sha512":"8c8d6a630330de2d047fe2ccdc62997456c17aff9ca8d29fcb31b4e6c24e48cc26a3517a231277a4f4f70300fc54bfa5fadf5d257ebaff5b15a081b879a1d6e2","ssdeep":"24576:Z8TTdETDcwOZR2TbXWFGfPQEb/nK7iJDWNTJkzA1:Z8TxETDcwQR2TLqWIEDnuiykA1","tlshash":"3c251152e7e1114fea2143b101d74326b736d0ad4bdf43cb9298926a5cdebc83d0abd6","first_seen":"2026-02-14T10:59:53.077098Z","last_seen":"2026-02-14T10:59:53.077098Z","times_seen":1,"resource_available":false,"data":null}},"time_used":457,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":276,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/btc.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/btc.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21430\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"53b6-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DtXrz68UwPLQh9wxcKsap43iYi%2Bx3jiZ7QSURH%2FVr8XGnxhmAzyRCz7EO8KQNErHUph%2FstQOqLjxISBjq4A2ihgwraumesoe\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60aaf5e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21430,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"ca791b40c73c5f9c5305dc32e05847f2","sha1":"9fa095b82f820544a3182781eb023e061e812a46","sha256":"db154af16779028604c4f4e11cf44fdb1d8973ba7906cb8fb069e6b042e602f8","sha512":"a6d271317707a13821747bb30a34ab46f1e72195d1e06ed9dcc8838308ad8331f3f065ed9c0a0d252e214b56d0697ea6735d4a5c5cddbced1669c3a945bad9aa","ssdeep":"384:iXMeVFW6fo1fSye6wDRb4J9hHufiCv+P1oDptqjq9zkKNCoDIEuAmz:idobThiiIkMtqjAoBoHyz","tlshash":"3ba2e05ee81273b50108023a7622ed2510cbe739a0ff4b676e9d7e5f65e604415a3dfc","first_seen":"2026-02-13T11:19:48.887339Z","last_seen":"2026-02-14T10:59:53.07895Z","times_seen":2,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/eth.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/eth.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1420\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"58c-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FmKNN5iCuLl%2BJ3xvbuziRnSce%2F6vWNowwX6jdtmDtTbwHVL4Nq%2FrGiIaMU0TD5L3b%2FOduX0F8UDjJM5HeqZB3rhl2sYl%2FRXy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60baf8e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1420,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"99ae8519657fef03f7de28f547b15d35","sha1":"e55b41db6948e83b311530363cf75e5401990f5f","sha256":"94acfec7fa87da443964d3be9c406370f1e605288dd20914bb7d55caef58a025","sha512":"3115fe208ee9d7371ebc3021fbba2504f97fa1e1d8fbb725dd07ba4a57467db6101a7d17d0d5711e4342be9ad3490eaa37541fc685638a8d43b7b033e7f9ef0b","ssdeep":"","tlshash":"c921e626727750acf6320ed4e6a00cafa861aa849f37b80d3302e6c1c57b50915e203b","first_seen":"2026-02-13T11:19:48.896496Z","last_seen":"2026-02-14T10:59:53.080538Z","times_seen":2,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/3206eb66b875a5b3-s.p.e2b99870.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/3206eb66b875a5b3-s.p.e2b99870.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 9304\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"2458-19c22871ce4\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qvgxAiJzaE%2BdMM5DGUHSVcMuKpGIZY5c5wNowslcconpE7Fqg94ckHnHH7pmubKyH3J%2BIe9ixbJfF5eKPCktW67tyfGhHPiC\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f990e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9304,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 9304, version 1.0","md5":"83636f24aacb72640d76120c7037457c","sha1":"518e92dca296900885729242847650a2daf14bb4","sha256":"7597c31a957ae3d2e1ebc786238752d883c15ce2e6b5da617dc3453a9fd86335","sha512":"f2c06849a33485a56c527f5b3bfb82dd340e83260e19155fa37d2710499232cfba849b0608238a7d97a9981fe58e0c69520fdc42b6dbd5b342ae3c4110398ca4","ssdeep":"192:M4w6e0uKh9Urb42SGzRRvcsetxqoQQFfmz2qsMHKibVLeQ:M4ZuKh9EM2SGd9Ktxqo1FfmyqsMqGkQ","tlshash":"9412ae1408ae9b90cb80b9f43abd829b0544ad79ab04ed95011f79fb683d11b8910f4f","first_seen":"2024-12-17T21:13:25.263735Z","last_seen":"2026-06-05T17:12:57.806309Z","times_seen":172,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/aee6c7720838f8a2.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/aee6c7720838f8a2.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"36c9d-19c22871ce4\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BkkXJrLqDYMw2g0rh4SQ9MxvxRThxp4XbTex5IfG8uppHGR10oLadQjf%2FsYo6%2F1u922nfz6AG3CEsStiBhJZro81k2Tkj0J0\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b4e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":224413,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"5b04e725a53340288b6ae5034fcfad31","sha1":"4b7f97671018e99ef5325585038d5248c0f55b41","sha256":"fd13288643289ee2e4fb15a1b6672a675d05937de623ce52d87c0c3e247db00f","sha512":"a61fbbb224d5a854532753e48f31bc2356f72e840d7190f5b068bd99c42caaca50a001750b4311d584fbf81837e9632849c1b9121a6e950bcf36732ba84be305","ssdeep":"3072:AVhLHlPuSSY2UzBRaWcG8TP36kNAHTjWmN6ZXtb967+pB:AVhLHxuSSY2Uz9rH3FSXtb967+pB","tlshash":"e7240be83995f6626ab302a710af1803733c252b280d4d60a351fdddb57845eb17bf9e","first_seen":"2026-01-28T23:01:01.278793Z","last_seen":"2026-06-06T06:36:10.060287Z","times_seen":2275,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.80.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 20 Dec 2025 10:36:27 GMT","end":"Fri, 20 Mar 2026 11:36:07 GMT"},"fingerprint":{"sha1":"C6:6A:71:84:C2:40:13:D1:A4:B7:DF:C4:1C:E1:54:F3:76:97:EF:6B","sha256":"EC:09:93:3E:E8:5D:9E:7A:B0:D9:7C:6D:85:49:92:10:89:9F:C8:FF:A5:1B:90:BB:AB:86:7E:D9:BA:0A:1C:4E"}}},"request":{"raw":"GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://r1ot.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2024.6.1\"\r\nlast-modified: Thu, 22 Jan 2026 17:06:04 GMT\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9cdc0e5a6ba31525-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19948,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (19948), with no line terminators","md5":"ec18af6d41f6f278b6aed3bdabffa7bc","sha1":"62c9e2cab76b888829f3c5335e91c320b22329ae","sha256":"8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f","sha512":"669b0e9a545057acbdd3b4c8d1d2811eaf4c776f679da1083e591ff38ae7684467abacef5af3d4aabd9fb7c335692dbca0def63ddac2cd28d8e14e95680c3511","ssdeep":"384:XriNpnjyMkg8XMtExRN1w29JIOzahXtO2nJ65:GijgSWuanfJ65","tlshash":"8d92d7def645723613f76076913f220b733b35a528068459812adbc22c3d98f6267f6e","first_seen":"2024-06-07T09:21:23Z","last_seen":"2026-06-06T12:05:24.532705Z","times_seen":337258,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":7,"connect":3,"send":0,"wait":13,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/ce62453a442c7f35-s.p.a9507876.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/_next/static/chunks/1184a7600a6782f1.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 34668\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"876c-19c22871ce8\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85209\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a8omB6HhzOZg9%2BuKijMa9VCk81RTM0KtOP4C4KllDnf8c%2BiJ3xeia4%2FqJkRM%2BioztjIufLG3sKQJo%2BKUhVQl4b7%2Bs%2F5Iwxpk\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e5c6a21e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34668,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34668, version 1.0","md5":"4746809ed1c17447d45d2a96c64796d4","sha1":"300a3511100a2ea1fbf43bf329855e17da1f4532","sha256":"8139a402ce239285716452e5668bce94bbf240b433fcfa2e154aa7e4d240445b","sha512":"28c2ae34437a02c99282a2e0cf8c3de11bfa07b55835068c82578dac1947dd3a74ab904cfdae0ce1d14767d601884c2e8f577025f647cae4a06c8dee220cbb61","ssdeep":"768:btpz8R5UTJqgQ3XvFF1LTbda57GqOWBR+LEPP:Jpzk5qepLTbda571v0EPP","tlshash":"35f2e1816c1c7085da4951f9cda50bcd46ee86f98d3f6d2118613a38e6c802f47f97be","first_seen":"2025-01-09T20:17:59.500754Z","last_seen":"2026-06-06T07:56:22.943074Z","times_seen":23612,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/6ad1cda2f16975ee-s.p.b58dc1ff.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/6ad1cda2f16975ee-s.p.b58dc1ff.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/_next/static/chunks/1184a7600a6782f1.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 21412\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"53a4-19c22871cf0\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85209\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x%2BVBZdv%2FLDXOvLSVnUzsVh0CAvOOUjsPdP2zpgnSbeCglQwMAJuoYRB9z9gRp2y1Cga84Ks7PtPML1bXt3mFuG71wk%2BA4ACs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e5c6a24e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21412,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21412, version 1.0","md5":"0243e05f3f8d9f938cd458997047c975","sha1":"85df1eb074ad13b33e9c3e247a30b57b5c973cac","sha256":"9dde3797547520f762f4ba3a822d417a0872b962bc78753a7ee9f955382b6b85","sha512":"83dea033ea95cc38cc8c26799487d3bd95833b250867185b2a346303fb54decd726ac2d0e29b55a6e7209a6af894b74fb79248e8cf6bc414d48886cf3a2f4c57","ssdeep":"384:bbSiq+2ISVZvebduTuI1bQPodHo1oQ+ZV977VIsl2k:bbSBISVZvebAnc2IuLZn","tlshash":"a1a2e1bd0845202a0d1a2ab94db56fc5e0b357dbe4df1e01bdf935239a83f14863e5a3","first_seen":"2025-09-26T15:32:26.13653Z","last_seen":"2026-06-06T08:01:52.132864Z","times_seen":493,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/emoji/bg_anim.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/emoji/bg_anim.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nx-nextjs-cache: HIT\r\nx-nextjs-prerender: 1, 1\r\nx-nextjs-stale-time: 300\r\nx-powered-by: Next.js\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VR39exkDRf%2FHbHYOJUdbht7MOsRr5yVjkUrFPwxnKHmjF02eOkzPHFLt6uFGHstXqwpBCrG8UoTfq%2FBKYT5upW%2FO%2FBHDMAci\"}]}\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60aaf4e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]},{"name":"Webpack","description":"Webpack is an open-source JavaScript module bundler.","website":"https://webpack.js.org/","common_platform_enumeration":"","icon":"Webpack.svg","categories":["Miscellaneous"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"dc.js","description":"A multi-dimensional charting library built to work natively with crossfilter and rendered using d3.js","website":"https://dc-js.github.io/dc.js/","common_platform_enumeration":"","icon":"dc.js.png","categories":["JavaScript graphics","JavaScript libraries"]},{"name":"Next.js","description":"Next.js is a React framework for developing single page Javascript applications.","website":"https://nextjs.org","common_platform_enumeration":"cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*","icon":"Next.js.svg","categories":["JavaScript frameworks","Web frameworks"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":10521,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (10521), with no line terminators","md5":"dba728f5e938d445604eb966bfd7dbce","sha1":"8d83a20ea60fcffb449898eb4e2286c898023f04","sha256":"89dca6bc60c08dee30076ff80ed5965239c4533956f7ec5141bc55ce3af6e6e0","sha512":"2112609d1466faa549ef54d132922ecd25957adfa3440236e0b485e0a1de1ddb6530036e6a055762520ea13b5391b28b45ee6520234b9b290d9ad18e9933ba5f","ssdeep":"192:CYfUOg7WnvVkWSzHk5ZMgnqzcpmlqzWX4X9k:CYMOg2vVkWT5Z1A4X9k","tlshash":"41225536a805ed0afd6b6d6c403ead3b20cd857f86749d78929dce5807824ba17d7ec0","first_seen":"2026-02-13T11:19:48.882011Z","last_seen":"2026-02-14T10:59:53.085125Z","times_seen":2,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/eyes.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/eyes.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 2757\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:14 GMT\r\netag: W/\"ac5-19c1d0a8290\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X2YtjbR7Ukpjtvv%2B1rr1OtSgSxdkdgT0pyzAkgte324Xzjh1yDRFqQDKsTiwo6Q%2F%2BCTyHAlL0r1frMgNbNwCgfIBnjNYEX0h\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60caffe07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2757,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"6de9f11b2fbd2e0989bbf8f501bad942","sha1":"4f874bf54d2aa2f4fe2c33345766d8f8b8b0f20b","sha256":"c78d6a0fcd93110f29927c50aee04558f21c1e9aefef490cc60fbcb783d8c8c7","sha512":"64784f4b075f1796e5b169658ed6ada869140906dc1ff7f6e56aa70bb751e7cd1ac8767dfd4006102dd5da3133be872468d1c4b748b267fac330e7bae57b12c3","ssdeep":"","tlshash":"36514a2cf568a53042eb11979734e87137e87a2bf0eb83b145b18d3702eedd603609a0","first_seen":"2026-02-13T11:19:48.899391Z","last_seen":"2026-02-14T10:59:53.087011Z","times_seen":2,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/43e526e080420ed5.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/43e526e080420ed5.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"a537-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VSbwMQ352trC9jLjgThAz%2By9Umu7JtEpZGke77USWvX8mhF8lHCxvfmb0dCb6T0mKlVj1P4RS8R8%2FeOFbcolyVLc6sDSBgIP\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a09a2e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42295,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (42295), with no line terminators","md5":"63f96a474862e8af8350f5fdb8785674","sha1":"c731fbe4b57c6d9fd6c778d213bd145b3d812584","sha256":"4e7896979a65b17e29c3f585ed49c93a6384f271f695cae7b570ef3be4c758f7","sha512":"17866398245a136de6e1b354599e3673f1fa7bc74147324dabb35dfc51b8293f460b3dfcde3309df8cf2e393becf7595a983bfc45d9c83d0a2a8962deb8ff0bd","ssdeep":"768:aIBWaLuCG4Kcozd+aVgFgsAxc9++Xd5OPSMNHYgrXlB6LSx+HqGsGp:/oD8oztgFPAxc9+cdQPSMN4OCQb/Gp","tlshash":"b113f9cd74a5b0910bb395b2802f501bf23e1d37189d48a0d3a2dde9b8b85add237f59","first_seen":"2026-02-13T11:19:48.89327Z","last_seen":"2026-05-30T22:54:07.83702Z","times_seen":13,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/cdn-cgi/rum?","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.375Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"POST /cdn-cgi/rum? HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-type: application/json\r\nContent-Length: 1002\r\nOrigin: https://r1ot.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1002,"data":"{\"memory\":{},\"resources\":[],\"referrer\":\"\",\"eventType\":1,\"firstPaint\":0,\"firstContentfulPaint\":888,\"startTime\":1771066765881,\"versions\":{\"fl\":\"2024.11.0\",\"js\":\"2024.6.1\",\"timings\":2},\"pageloadId\":\"fbfce99c-c912-4d5a-9e24-4c6aa23ccf68\",\"location\":\"https://r1ot.app/\",\"nt\":\"navigate\",\"timingsV2\":{\"unloadEventStart\":0,\"unloadEventEnd\":0,\"domInteractive\":895,\"domContentLoadedEventStart\":1006,\"domContentLoadedEventEnd\":1014,\"domComplete\":1439,\"loadEventStart\":1439,\"loadEventEnd\":1439,\"type\":\"navigate\",\"redirectCount\":0,\"initiatorType\":\"navigation\",\"nextHopProtocol\":\"h2\",\"workerStart\":0,\"redirectStart\":0,\"redirectEnd\":0,\"fetchStart\":1,\"domainLookupStart\":19,\"domainLookupEnd\":53,\"connectStart\":53,\"connectEnd\":91,\"secureConnectionStart\":64,\"requestStart\":92,\"responseStart\":286,\"responseEnd\":287,\"transferSize\":14366,\"encodedBodySize\":13415,\"decodedBodySize\":87205,\"name\":\"https://r1ot.app/\",\"entryType\":\"navigation\",\"startTime\":0,\"duration\":1439},\"siteToken\":\"ac4f8b67e0eb43eebd180ad22fbfa3f8\",\"st\":2}"}},"response":{"raw":"HTTP/3 204 No Content\r\naccess-control-allow-origin: https://r1ot.app\r\naccess-control-allow-methods: POST,OPTIONS\r\naccess-control-max-age: 86400\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pSGgn6e5B5gEhpkUh%2FECygtMHC6hVYczFu%2Brg2bp0uYGxn%2FMKjpYJjki0l3DHmz%2FKGgVadtBFU%2BCYReIauBiG%2BU5jmViffrN\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 9cdc0e601adbe07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T12:09:44.754124Z","times_seen":16177101,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/6ad1cda2f16975ee-s.p.b58dc1ff.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.426Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/6ad1cda2f16975ee-s.p.b58dc1ff.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 21412\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"53a4-19c22871cf0\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AC4DzkBavEqAerTVxzItX%2FbhoPYcang2pXO29A%2Bftwz%2FGrTbxKB4WAbBLXuovnn9yn7FuTr65B565I01nhLCMKciLy%2FOp21j\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f991e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21412,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21412, version 1.0","md5":"0243e05f3f8d9f938cd458997047c975","sha1":"85df1eb074ad13b33e9c3e247a30b57b5c973cac","sha256":"9dde3797547520f762f4ba3a822d417a0872b962bc78753a7ee9f955382b6b85","sha512":"83dea033ea95cc38cc8c26799487d3bd95833b250867185b2a346303fb54decd726ac2d0e29b55a6e7209a6af894b74fb79248e8cf6bc414d48886cf3a2f4c57","ssdeep":"384:bbSiq+2ISVZvebduTuI1bQPodHo1oQ+ZV977VIsl2k:bbSBISVZvebAnc2IuLZn","tlshash":"a1a2e1bd0845202a0d1a2ab94db56fc5e0b357dbe4df1e01bdf935239a83f14863e5a3","first_seen":"2025-09-26T15:32:26.13653Z","last_seen":"2026-06-06T08:01:52.132864Z","times_seen":493,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/r1ottemplate2.webp","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /r1ottemplate2.webp HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25490\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Sun, 01 Feb 2026 18:30:12 GMT\r\netag: W/\"6392-19c1a783720\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9WyVQ23yl%2BEDAvZN1XU9xHBQv27KwTKajxRPx%2FJ99utZwFLaTRJd6qLoMJm3%2FVMaVsQ3WlUvxtuPQRTlopX1c%2Bo%2Fvf6lhOzI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f999e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25490,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1272x618, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"16958792cce7e0fcb5aaf8ac20df7c48","sha1":"4509cb181e03afa8049465b80bee7ecb4731d03c","sha256":"28f4274b3ace15b256c5bbf0eb0b32774301ed4b8003a9e41ee3dd482c608ba3","sha512":"dfb3d346f26b397e5fb30bffa2f18a36ddfb6bda868cf950099582eddfa9ac058deb2b8c4903b87542594ecbb8028aadb921d3dc0bc65de817beeb92be138b0c","ssdeep":"384:pkLs9Y2cbZBj3oRbTH7oc0yftwUo+LAv11hafSVWg2ReNUwOTKf9llcLt:pkeFC3oNz7oQjAhafSX2ReNUwYKf9jEt","tlshash":"3fb2d12227ac25def542417557a44297e788e82b346c47cdc1d2a3e98ae4835b50af4e","first_seen":"2026-02-13T11:19:48.902556Z","last_seen":"2026-02-14T10:59:53.090757Z","times_seen":2,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/b1022140b5107b3e.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/b1022140b5107b3e.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"1ece5-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P6erKN4mHC2uad1PT%2B5xtASVjXizWLcqHMYQ2LnAjxuZV88THjTUyQ5hoHL6%2FMSZAGM%2B4SvIakWvj1%2FUEoBSojs5yE%2BNlSGO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39bae07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":126181,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b6210d13b4c542a4a29583d55aae0cbc","sha1":"618accecac63ca704e5305e8a20a2e99a104ebcc","sha256":"718deb279d888dc61e8f6c3132b0fa6b21bd374746bf08f73003087f322b9166","sha512":"803651f9b8d90ddd077b5f665cddc8a80bef0a98fea3daa05daafd0ad5d4d8a8911885fd60870f733ed1ababec80f16a92bd3a01fb385145a7104661fcf22f83","ssdeep":"1536:LeORl5/GgDtLUS9Cy1vtjpJ/hVVskJbLx6Z964r9XVaYxx29jVI5b6m0+UmzGMWW:iOf3LnLLJ/hw91rJLAHyavA","tlshash":"51c309ea73517521d3cb5199c0ae4b41b33b58d82409443cb6bdaccb296099962fff3e","first_seen":"2026-02-13T11:19:48.883878Z","last_seen":"2026-02-14T10:59:53.092178Z","times_seen":2,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/favicon.ico?favicon.1ccd3ccf.ico","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /favicon.ico?favicon.1ccd3ccf.ico HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: image/x-icon\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nx-nextjs-cache: HIT\r\ncache-control: public, max-age=14400, must-revalidate\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jgppgzaTWpfG88KBcBpvhxSMQXeEr4h%2F0L8rSxehY2wBLtxgerBek1ws3NpwLNP00eLQ1fCNhq9l%2B65GPMLnorLE1mqFqBW9\"}]}\r\ncf-cache-status: MISS\r\nlast-modified: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e5dda6be07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"2e594aebedd3b8236460d2a9e7a24863","sha1":"f6d101beac9369e46751b36d527ac90363190d74","sha256":"74257ac4e5d0bd3b9b8264430c3b4a74ee5ec81b3af9c2e5ab8cbc20e81591ce","sha512":"5e814344af3254339a507f93c7ecc9e72278cc0956d76e4bff8dd2badabb8ce4e380cf54de27544f58a71a1f511ded72a3b0fba249aa5adce447766ad44d0a16","ssdeep":"192:ZUDLBXSEMraQySYkboWaZjzN5tDsDzuV9SlSWWX:+/cNboW4FwOSlSWWX","tlshash":"2962fa5bee185e97c4b157f85354e6b512829da8e2fbc702a4f2fc17bb80b936d100c2","first_seen":"2026-02-13T11:19:48.895493Z","last_seen":"2026-02-14T10:59:53.094233Z","times_seen":2,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/moneypot.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/moneypot.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 36639\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:15 GMT\r\netag: W/\"8f1f-19c1d0a8678\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tyRZ6VmPUYINgEUcJg9rdkCe8qboKPsF3QcCbKTauoOu0yiZDEWSVlXiydwveVuKxJrzJR9dySB1KrDsuO60iUOYxqU1oeRp\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60cb02e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":36639,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"8050f60c855fb0e9f06432df1f3db4fb","sha1":"e485130329c3a35ba95df8c1feabbb977d7383ad","sha256":"28eb6e5d92721f6ccf6f88ddb1f085b15100abfff22679587bd76259107c0674","sha512":"59042176f98419693e75509544af8804fa17c682de354df1c1b75b15bf7e85972f148aa64397681a9330c0ad69c9f8ececb67ab65ea6a9e258ef26897f67cdc1","ssdeep":"768:hx8ao0Olui9EP363DjH9t8dFtZj6cuLF7XKLl3E9NsoS4MDxK:zjo0JoEPMDwpZGcuLlKLJEsoS44K","tlshash":"eef2f12dccdc285798ef391adf5f3141cfd89200a7ad22896fb5075852661b425ce3af","first_seen":"2026-02-13T11:19:48.907512Z","last_seen":"2026-02-14T10:59:53.095757Z","times_seen":2,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/dashboard?_rsc=1r34m","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /dashboard?_rsc=1r34m HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_tree\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 307 Temporary Redirect\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\nlocation: https://dashboard.r1ot.app/dashboard\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x8IuZ%2FOqtDZuDakd0ZNxgZ4QzFSEJ72zZ0cTg332%2F7qDueVRqxj0h9UdCE7VsBH6eGASKk3LIPTsYJ2Xg1QUrun9fcTV03tr\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cdc0e611b0fe07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T12:09:44.754124Z","times_seen":16177101,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dashboard.r1ot.app/dashboard","fqdn":"dashboard.r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"172.67.217.18","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:28.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"OPTIONS /dashboard HTTP/1.1\r\nHost: dashboard.r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: next-router-prefetch,next-router-segment-prefetch,next-url,rsc\r\nReferer: https://r1ot.app/\r\nOrigin: https://r1ot.app\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 307 Temporary Redirect\r\ndate: Sat, 14 Feb 2026 10:59:28 GMT\r\nserver: cloudflare\r\nlocation: /login\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R%2BUF38TUkZ35kB5d5BafeSM5Q14Ygpet9qFk1Z%2F7l4n9z3cb2KlJM%2FXuoE6AKb%2FD89pUahSI4p0E1byDOHQr5oF%2FgmhkXTfsfmnOTWDtqv4t2Q%3D%3D\"}]}\r\ncf-ray: 9cdc0e649e777dde-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T12:09:44.754124Z","times_seen":16177101,"resource_available":true,"data":null}},"time_used":327,"timings":{"blocked":82,"dns":36,"connect":8,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"dashboard.r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T10:59:25.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nx-nextjs-cache: HIT\r\nx-nextjs-prerender: 1, 1\r\nx-nextjs-stale-time: 300\r\nx-powered-by: Next.js\r\ncache-control: s-maxage=31536000\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=6,cfOrigin;dur=173\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lESLVjkkX2fYnbjFJK5rxtL6turkZeQy069mFkk8Gdxti5qGCmDOtvMbt2HiMHgk1Ijxrf2mLosd62CfEaZNOWkoPmNJxSwp\"}]}\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncontent-encoding: br\r\ncf-ray: 9cdc0e575e9d1f50-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Webpack","description":"Webpack is an open-source JavaScript module bundler.","website":"https://webpack.js.org/","common_platform_enumeration":"","icon":"Webpack.svg","categories":["Miscellaneous"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]},{"name":"Next.js","description":"Next.js is a React framework for developing single page Javascript applications.","website":"https://nextjs.org","common_platform_enumeration":"cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*","icon":"Next.js.svg","categories":["JavaScript frameworks","Web frameworks"]},{"name":"dc.js","description":"A multi-dimensional charting library built to work natively with crossfilter and rendered using d3.js","website":"https://dc-js.github.io/dc.js/","common_platform_enumeration":"","icon":"dc.js.png","categories":["JavaScript graphics","JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":87205,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators","md5":"e7d96dfe517ff746289f5be6ba65e35b","sha1":"e22a87a2a271f68d31656085b16640146981f73f","sha256":"28c81c8d3c52e8819f85da76e15a2b55db7a7ae10df4e19768a3aa735c5aaade","sha512":"89aa220d318713ba5a83190f7edc6a5d574c8110e9d8af1290d1a0261420f75fcd2c6b317a85998061ee658017159ead31f4d5c354989dca28849aee8537c4d6","ssdeep":"1536:rHwovIqxpK5DrhU8/6Q1H7scGT9m7AKz82lQOtCOtXH2:rcem7AKzi","tlshash":"e283953063006d7999278fe0f2b5bb7950eda38dda27845df3bd42661fc6ca46a423c4","first_seen":"2026-02-13T11:19:48.888364Z","last_seen":"2026-02-14T10:59:53.097315Z","times_seen":2,"resource_available":false,"data":null}},"time_used":333,"timings":{"blocked":65,"dns":35,"connect":8,"send":0,"wait":194,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/media/a079e02bba5bf7ab-s.p.7367eab7.woff2","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/media/a079e02bba5bf7ab-s.p.7367eab7.woff2 HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 8964\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"2304-19c22871cec\"\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rOyUEeqnQacg%2Fft%2BL1vIvPjvHIqnHgMvAKwao%2FF3TpLeDPxdjt%2FpTZFjPptPeRoNLUnkleR6RseQsdjymyWiCDYGHS74Yhhq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e59f992e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8964,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 8964, version 1.0","md5":"4883a1f599375473dfd43469e77b92d3","sha1":"c6dd2c160a141f5e71f748d963012c07d1a9dddc","sha256":"4745b75b6e92d917e2402925dc1a6c1c6300e6e0f607a1ce286da54b33d80d3b","sha512":"a4b6226740eb2328d8b9ddbd02eab25dec490e2a7e049a9188ffa5c023d59fadb4218556c083cba501da25f1ea44fa39e0c29178fcc9062dc63ed329a45ae301","ssdeep":"192:1+1V5+dmM4exdKteqkrJLlpWOaxj4GkDhn0sqaaV9O6:1+kmM4ex8v6plpT24JDh+aQ9X","tlshash":"d702a022840a6600d7493a378df8631fe96afb9020f6c101cd12f79379b21cb9d6358b","first_seen":"2024-12-17T21:13:25.256509Z","last_seen":"2026-06-05T17:12:57.785773Z","times_seen":137,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/82abf2d65f5428ae.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/82abf2d65f5428ae.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"8213-19c22871ce8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eZvcO7dUbPQyPHzRbnrrCRCFIPDMH7QW8ysMFwaVs2oifLQEsWdoyH70eZ8fGbVmwFt1gYNRp78E0YICegXS9%2BmOy02zvBNi\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b3e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33299,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (19587)","md5":"19622580859b19b23901b9a7be2f7937","sha1":"c06faadd6f342879b808413390376b59f7e0b20c","sha256":"bbc0826384faf59b3d35a439a95f7787cd19280ee35469c84cd0b213bc306f11","sha512":"defe2216a1fb2d9b3670710dd2ec27e23fac86ce5e8cf438ddc8038d513c145fc333c0afd051cbf6f1a83d62beafaa5dfc378bbccf26f7eb98bc59c9912f856a","ssdeep":"384:uj/7DGGRPR+rTfIVZ/X+0o3NkOG4+Z47aJUSwT4WGFJl:M+/8Z/X+0o3KZzZ47amy","tlshash":"bce2c7b572d5faa2129341f0c43f2017f3680d7521acb470a7e8cc9b755888da6bafd9","first_seen":"2026-01-19T06:24:39.223584Z","last_seen":"2026-06-06T10:03:57.433825Z","times_seen":4222,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/31e5a05563f3a1c9.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/31e5a05563f3a1c9.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"2e93-19c22871ce4\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N%2B7BKtk1cpKEuqgjEcmsC%2FAag3IrfCIML65epfapHsmIiaswe2Cc1X6rgcTayAXietxsPCC22mXq%2BUhxIKUG3nkL6e3CZrZ%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b9e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11923,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11923), with no line terminators","md5":"9bce5552c65865dc1096bd27b0410282","sha1":"37ebbbc693f06010ab2eadfe7396d9e1cc3f4ac3","sha256":"91e6150245170683bcf743c584c2e184395f13740a8666bebdbb56297e7b716c","sha512":"7fcca5070d4ecf1ac368bb0402e2cb20ef6a4abe6dd8209fb7cc0025111fb3c59f2f2893f065a9fac935ea2a0f3c3f8eba0c9f16e3db24609e1ec4202bf102ad","ssdeep":"192:xbl2vi+IPLV32qH+FOh4AJo+7189Uc6AAK9duG7FvrHhQyTlFeMj7H0qJOfzpBk:L2vmQojL1Y7YAduG7pzlT573cM","tlshash":"b132c6a572e5b4da839791c4842b000af37e0e74746e6094e7ed8cfb652094dd1f3faa","first_seen":"2026-02-13T11:19:48.886443Z","last_seen":"2026-02-14T10:59:53.100558Z","times_seen":2,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":142,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/ff1a16fafef87110.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/ff1a16fafef87110.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncache-control: public, max-age=31536000, immutable\r\ncontent-encoding: br\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"11a-19c22871ce8\"\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Zj%2BLI47%2BSa%2Fsw94xOxRIjAkgIqNQzx5loXTkO8JaX5La06eBa4S4eZidhmAoLmWcy5Kfap3vdPXdnXzzMwjMi8ddmhWfd1VR\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b6e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":282,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with no line terminators","md5":"5458632ee5cb3da028baebb11d5f70dd","sha1":"57e264834d3635e52fbbd3d93135842c09ce8525","sha256":"e9786b1305894e4119bb9811a816dac9cf576755596dd989ee15b455749fc35e","sha512":"28ae4e3a3828f99d64b7d4bfc7238d56c9ad910ce267dcb6c01e53be00c88f8a7f024640680d2bd66240a9972322744ee9147883a12ff8c92717c27ebb3fef50","ssdeep":"","tlshash":"63d02b702150f8d84086a4cc8836424bf52928b262fe3895d7ae8cb16174f0c51e1e55","first_seen":"2025-08-20T23:30:20.185011Z","last_seen":"2026-06-06T11:40:41.405796Z","times_seen":22254,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/_next/static/chunks/d2be314c3ece3fbe.js","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:26.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /_next/static/chunks/d2be314c3ece3fbe.js HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://r1ot.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Tue, 03 Feb 2026 08:03:26 GMT\r\netag: W/\"77d9-19c22871cf8\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nage: 85208\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qcI%2BLyYdb0cOnK2sVnBYgve%2Ffm43MOVD2s9x3aPe6GHjT23KTHrPHkdoB%2B%2Fn7hMbP0d0nli%2FcyazEWBkay15Tfk8LmTpJ4f7\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: 9cdc0e5a39b7e07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":30681,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30679), with no line terminators","md5":"e189b2054d05a586f4fd6eec2888c203","sha1":"7d92609e0338be85a1f0085efa31f699878f269c","sha256":"a6248517cd3ee53a8186b51c59e1e764e3dc0c512f4acbd50e818f9884663e21","sha512":"1c0e250e62e070ed252776fbd469b27c9c19dc68e695b9e90003b746e3ab6f9c919b39ed1890d581bc0bec54a0b8b2b8a68a415db186d4d278121cbe124a8ad6","ssdeep":"384:735z75Bq9E0m1YmRDQ0cJ3tn79Fg/Ag8qWtOPSNxErV:D5z9BX0ZMOx3ErV","tlshash":"fed2e8717395f9a352db85d9d03a0015f2290d3530ae24b07394dcef368dc89a1fafa9","first_seen":"2026-01-15T14:11:00.285057Z","last_seen":"2026-06-06T10:03:57.451569Z","times_seen":5963,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r1ot.app/assets/tgs/bsc.tgs","fqdn":"r1ot.app","domain":"r1ot.app","tld":"app"},"ip":{"addr":"104.21.38.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://r1ot.app/","date":"2026-02-14T10:59:27.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r1ot.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 15:57:58 GMT","end":"Sat, 02 May 2026 16:56:37 GMT"},"fingerprint":{"sha1":"A4:7C:EE:83:C4:01:B2:94:25:1F:20:C6:9B:B5:7E:97:F1:E5:9D:E5","sha256":"CA:B4:3D:FE:86:90:6E:B3:4A:97:51:28:BA:54:07:35:08:87:AA:E4:2F:4A:F4:F9:13:E9:F1:F0:C4:16:35:D4"}}},"request":{"raw":"GET /assets/tgs/bsc.tgs HTTP/1.1\r\nHost: r1ot.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://r1ot.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 14 Feb 2026 10:59:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1509\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Mon, 02 Feb 2026 06:29:08 GMT\r\netag: W/\"5e5-19c1d0a6b20\"\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yacw1fCwgrWmftjabiOLC9nw0P0ir3XkEarl62WbKBC7ZXYOiPcoLdV5%2Bc3HF7Xa%2FnARQUZkoqkTrGKhcB0E3GjyStx1Hvo9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\ncf-ray: 9cdc0e60bafbe07c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1509,"size_decoded":0,"mime_type":"application/octet-stream","magic":"gzip compressed data, max compression, from Unix","md5":"d499d5aaed9b987e096c94ebc8fef354","sha1":"cc422a1515344d2ec0c9dbbf08c1a98dccb18c0c","sha256":"5353c21f4a08b8f0f0fbfcc797791edd4b9e610e2337acb54cb7efba9124de86","sha512":"bc9779e2361be86492edfd5500b8c1f213cbb60e1a41ecc239f954d4103b116da3f6c8c6af69da2b3e34e910853dffa25880a9d468955f059a002472c7566b55","ssdeep":"","tlshash":"7e31292385a99db493a79f085ac0958c104413806f64b1713d0006b922130aebdde97d","first_seen":"2026-02-13T11:19:48.906205Z","last_seen":"2026-02-14T10:59:53.103811Z","times_seen":2,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"r1ot.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}