{"report_id":"890dd2ea-f237-47aa-990b-233ccbdf5018","version":0,"status":"done","tags":[],"date":"2026-06-18T11:03:20Z","url":{"schema":"http","addr":"orveniqa-fr.com","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"orveniqa-fr.com/","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"title":"Orveniqa – Analyse assistée par IA pour les marchés crypto et actions","dom":{"size":33709,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (31173)","md5":"d8bb0affe856a1e252602effe4ea9505","sha1":"610301a5757e3096abbe26a6e3b728b01033595a","sha256":"68c96136ce7abd4dedda489a689601b58e5851ab74ddcc5fdef6087ee8db0e2b","sha512":"8a68e987c7345ca4b43af5cec4292e1cbd418de37c45debfb67817a516c9bcdb690c9904d17a2ffedad949d8f687a4619681b8690006b2ebca55d53e88749626","ssdeep":"768:sSWDTF8d1ThNyqRmmg6dnadN7oKtQgFtpsVCVh7m0lgoxp:sVp6tnyGmmfadGYQguCz7mu","tlshash":"05e24c7991a06523471b29e1ba75ab2fb5ab830ccf13490893fc8ac56fd2cd5cd161ac","dom_hash":"domhash016b8f51f11a445185f9e20742ef997e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"orveniqa-fr.com","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-23T11:03:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"orveniqa-fr.com","ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-04","domain_rank":0,"first_seen":"2026-06-18T11:03:22.194669Z","last_seen":"2026-06-18T11:03:22.194669Z","alert_count":68,"request_count":34,"received_data":556396,"sent_data":16987,"comment":"","tags":null,"fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.17.207.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-06-14T22:45:09.968061Z","alert_count":0,"request_count":1,"received_data":260070,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-06-14T22:29:33.380889Z","alert_count":0,"request_count":1,"received_data":425088,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-opportunities.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8bc11f354d28a47828366e5ed0170135","sha1":"84f0a8b5b7a7d288a40d113482693285dcfc84c4","sha256":"584c17b9f6bd2233d5cd69fb1e2b53339ed16e820dfe16bc957bd64ced812271","sha512":"13beac077df72c45814c5d6ef940b7615d9ffc7ffa1c4b2199fd363da6fc68f738ca98eb29ff8c6b996306efc0893a99e65caf09b8efdfbcdd3acde2efe7a68e","ssdeep":"","tlshash":"34f0500b30706036904f093d49ebea4ef7a5d0039804ba15f98c51099fddbbd94f29c9","size":621,"data":"","first_seen":"2026-05-29T11:19:07.323421Z","last_seen":"2026-06-18T11:09:57.579309Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-benefits.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8dbd35fd0037e320d43d218945f8874b","sha1":"948cbefcbc63b66d735502e83db7d11da289b1e7","sha256":"827de3e56f86d46f3624f5ade3700be6217b8fd710a0158b737806bf25c814d1","sha512":"24ee97be54894d6e98c7196521c542787ae70813482240e4cb34dc1a0311f132baced53a0a813bcf752caa52d6d356c9a2b08f080e83e8fdd8b416f8069a740a","ssdeep":"","tlshash":"80f0ed1704b16036521b141d1aaaea49b6d8c0079801ba01becc5a09afdea6e96b71cf","size":471,"data":"","first_seen":"2026-05-29T11:19:07.344329Z","last_seen":"2026-06-18T11:09:57.581908Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-KYENGGJQN4","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"42e3cd07b2548f9aa254bf42ce068505","sha1":"14de3cc59b9564479cf8698486ee11a6197c2ecd","sha256":"5916151512c3b967acf78ab23be7ae40ce28c8bed4902dd24792ed911d7f120f","sha512":"b7384802c6e0513a260a97c268c8fe8bf5ec5c79d65dbed776f435164de428d4ac3e5dd2cc6938d76d674aacec83dd90ece74a3bc5e2f8d82d7a80b83b34a335","ssdeep":"6144:AjKYSKDAFmvq/uYJycf7paX9Z08hdAYOyuInyBLJ81oK:QK5R/uYy86+4","tlshash":"cb94f9cdb3da74629392f478503f018ba17a69e2f448c899f186ccd42e746998277f7c","size":424484,"data":"","first_seen":"2026-06-18T11:03:25.995383Z","last_seen":"2026-06-18T11:03:56.35632Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/header.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1b1cb4df07c706865f9f3e1e87a5fe1e","sha1":"d0a99437af32bc85e451472f5270c468abce92eb","sha256":"6489e9e41e19b9b7693c57212863f0b3fcd805056339e7cc85b169d1aeff1e86","sha512":"16adfd45b8a53ea3e9dc12e2f2d45b44c763bd83d67734fea468dd8103941c786efcc0f866099a3d4ac708be1567a22a8de89bd7654df339b809835477752541","ssdeep":"768:/gA16IhTp6BfAVbxtMDKgi0rzjqU7Z+Nr8Vyq0RdCa5dcAXUj9gjUVLISSQzzmWr:L1FR4BQxiDK5u4ic5dcpj9EUVz8i","tlshash":"aa43a65966e13134d303b03b969fcd08b339945b564ace483d2ca6986f4983897b7fec","size":56838,"data":"","first_seen":"2026-05-29T11:19:07.331319Z","last_seen":"2026-06-18T11:09:57.575545Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a35af5fd7e63f3f0e43158f38f382992","sha1":"e7061ebd5fe7a42cdde50f212ec8d86e74b71bf6","sha256":"d636305442f165021bd236c303d194795bdd8b0b25f94010e3fe922def2b8ec2","sha512":"67690486fd4335f92ffd3a5aaeb3c4d0ce84ba6c80627d12ab881a84d0f4f8774cf743342415c02ace6acab1640f26a401d48147cd81d5d1fa27412eb35b5e90","ssdeep":"","tlshash":"45c09b8d21475d7155e71b410b6ff714b152722098915c350d1563445522c177754854","size":142,"data":"","first_seen":"2026-06-18T11:03:25.997834Z","last_seen":"2026-06-18T11:03:56.359757Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-hero.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7c2d08766df94c49ffbfb33ca3aaeb5","sha1":"649f951bd6cd3a9492f5e71dc8599da6ff4467c6","sha256":"8bc146b03f6083f6f19f33e314bc52270887407cca4345b09909af5952e83f11","sha512":"90ead8d0fc8cce98a011c51d33c5247962d400f40fd27b72e374f46ec3dd331b57a74d6e4e8c21725292071c0c93d27147142220f12f1c3047dae983c16a8dde","ssdeep":"","tlshash":"5b318f9a72f310708767a23abbaf5785253491033442ed9c7ddd42102f51d52a6f7fe8","size":1752,"data":"","first_seen":"2026-05-29T11:19:07.333343Z","last_seen":"2026-06-18T11:09:57.586074Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.207.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":258914,"data":"","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-06-22T07:36:21.3759Z","times_seen":1738,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/validation/intlTelInput.min.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"475fdc0630d2997afd1f230b7d5617de","sha1":"e57c798a7aac45a8a049481a330893ad9224e39e","sha256":"df2fca8c5e5a0a3455ceb3530594a8ff13548a5ced799d73c234012f05b3bf11","sha512":"ec662d5dafc77f1925bed23f0860675f33b5093b6f47031504fbb3596278ef79855b7b791e05476bd43ff709f47ef257c2b4ef84b6d8aeab588fb15a3d0e981b","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68ikl/7LOpQn2Vits8Zb:cDiIz8A4knYdYk9bs2","tlshash":"4cf209ae737116376abe82fa30e74503aeae34465604442d389c8fcd0b98ed571f6778","size":37503,"data":"","first_seen":"2026-05-29T11:19:07.321122Z","last_seen":"2026-06-20T07:48:12.717999Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-partners.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ffe7c551deb8250a1cc07cc442dc122","sha1":"4f9add75741d9bca4fe00e157daae6c9b0badb02","sha256":"06f965a8bffba0d054c5f78abedb30db7b5455fe6e46967680a6c7a0171c3a1f","sha512":"0ad46f632dc295a66d947b96a5dd8b9c829bac0cba4375823d5eee9aa60b2788d74db37fe44ad098bbc6286eee65f27a56b53ae868bbbeba4e2a0a7bc767d7c4","ssdeep":"","tlshash":"bbe07d0385711035550b282c09eef700269cc0038c04be417e5d4d044fce21e5af71cb","size":389,"data":"","first_seen":"2026-05-29T11:19:07.301011Z","last_seen":"2026-06-18T11:09:57.576609Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-cards.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c79a6e82ca664a022fe0ba27a3aa92a1","sha1":"5456648e933a8fb5764c05c00687af8dd2d4cabb","sha256":"710ab8e8b52be5f2338f028f9e60c41b7228905970305f20a55b9edb3776307b","sha512":"637c4e582589f43468f8c2f63a25e115e21408f2b9fe660ac4d0f752072275ff3d99576843d198df00919c7a9e3f0a2f95fe154d82fedd1bcfc40cd0d74ce7e3","ssdeep":"","tlshash":"7bf0e51700b05031515b203d4aeee649b7e490036808ba11b98c4109efd9b7a65f65c9","size":532,"data":"","first_seen":"2026-05-29T11:19:07.308261Z","last_seen":"2026-06-18T11:09:57.593813Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"orveniqa-fr.com/","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T11:02:55.348Z","timestamp":1781780575348,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncf-cache-status: DYNAMIC\r\npriority: u=0,i\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HFxN%2B8DnOvmGVL0MsYwnHo8EK0KPHVKtqFHTdfbe%2BmeZ9aqGeAUtxEyPzDfELtvUaA7sY8iK6Mux5bTz9NeJxyHmZVvuJSNpcC57Uw0CD%2F5RN233RE71rtUaBR8Tot3bKFQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncontent-encoding: zstd\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-ray: a0d9cdf42b5d1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33721,"size_decoded":8750,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (31563)","md5":"45b1251d40b086561f476683fdc70a01","sha1":"1bb3a2752bd1ffef64ab5e1126472a18ce7bd076","sha256":"16d3e9169975eda23402320e6c1392f6a89e588ad3460357a0d082e9abd50311","sha512":"1f4283b6f7b16bccc615125037e9757befc05b48c417386065478110a8df832a834620e9994372ca3f5e2b8288e5bb2923d7388849242005720cd2c2a7160100","ssdeep":"768:IloWbFsN9TlSil04qPNK1ND1eQoV1xM96lpb2Blgoxp:ItZKDSE0PK17eQo66zb2L","tlshash":"b3e20a7c90a0a523471739e1ba629b5b74abc348ca134818d3fddac47fd3cb5cd261a9","first_seen":"2026-06-18T11:03:25.974763Z","last_seen":"2026-06-18T11:03:56.349787Z","times_seen":2,"resource_available":true,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":10,"connect":20,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/validation/intlTellInput.min.css","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:55.841Z","timestamp":1781780575841,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /validation/intlTellInput.min.css HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-3bfe\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7zHkwojP%2BqZMIRZTtpAnfnHcKWSdwehd1WweKxreS0d%2BmCT82qEYGKcRJJDW7Bhi%2BNShnHWvhTWApuAp9uvxB4UpVZeoQ3%2FVRJvAaE%2Fg2I4Y8WRu9idw6W3pkYyBY98wu%2FQ%3D\"}]}\r\ncf-ray: a0d9cdf70c1c1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15358,"size_decoded":4152,"mime_type":"text/css","magic":"ASCII text, with very long lines (15358), with no line terminators","md5":"27f3ca4ca9a401438a0ce7df6b4fdb75","sha1":"ddf04596ee636e5af007dd41f26d224157612207","sha256":"504af9f2b61d09f92ce112c6a35100f32fcfc456a0e7e701a31a1ff1e71627b0","sha512":"68a83d4fed5935da504ce784fac4276b8ab3598a25497306ebd1b8f36205f9a826537d6540396ac9cbb97596e10b61e57b6f437be5f2900bd83f916ea89e48f5","ssdeep":"192:eRjvqrrF59XnX/zSuOhOFhs+bpmTYCM9oRZJiEnJWoCdsPyj9KKaJWRCl8:F93vIhOEM7egCl8","tlshash":"9862a8130308953ee716c1397072d5fd3fbfab4178d6cad5e6c8821f988798089aba59","first_seen":"2026-05-06T12:51:42.484911Z","last_seen":"2026-06-20T07:48:12.727386Z","times_seen":35,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/css/style.css","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:55.846Z","timestamp":1781780575846,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/css/style.css HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-318c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JyLeqg5AuFPMFpe5l3rb0FkKrOLTZaTr2kSAmFGIZLbI1NCNm7BPb1LqM4YhjEPYrUfUZdjGvtGF7tUkpspPfhj4X9aSHQoVv%2F%2Bo27K%2BzEMZ5k7IAPrMkqOO0%2FJTebBi3y4%3D\"}]}\r\ncf-ray: a0d9cdf70c1e1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12684,"size_decoded":3751,"mime_type":"text/css","magic":"ASCII text, with very long lines (12684), with no line terminators","md5":"10987acfda4791e45892c100fb3eb9fc","sha1":"d1059c6900632856fbb8910866b9b323d214a98a","sha256":"bc11191d335bd9bd4e0af727b83287e6ad03242380b49af7f8d24809555f24a4","sha512":"82cfb4c55b45d91491adc0acb4d685c7665f20f9d2e1ee72654612c3f19fb32d53dd451e4fa187e357338797c9cd062c048501b3a0e4daa6c2d998fb39aa4946","ssdeep":"96:1ojX+/UZ7pI4L1j4fXjRO4ReEn7lBNupEv/YD836oi0GNN3LL1vTeherZ7qx+5oE:MzM4JCsrEnOX17eIrZaEvbJvgFc","tlshash":"2642322572052304a61be158bfda4b1c533ca511e217d2febf9e3a0e96cf16416b2bcd","first_seen":"2026-05-29T11:19:07.294053Z","last_seen":"2026-06-18T11:09:57.576138Z","times_seen":22,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-cards.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.142Z","timestamp":1781780576142,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/block-cards.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"6a21475f-214\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NuQ8R21ZLQKUqwJRvqiLFb1B4Z30hquQzEhObkEP5HDQnBkm7UBLiaI8AsoPoKW5795Kr1q03naWF0%2BFTXtHdV7S50ysvBs8AczQT%2BO9jFKAmiDYqvpyCbpRy6pMnhxF%2Bjo%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf8ec721a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":532,"size_decoded":1009,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"c79a6e82ca664a022fe0ba27a3aa92a1","sha1":"5456648e933a8fb5764c05c00687af8dd2d4cabb","sha256":"710ab8e8b52be5f2338f028f9e60c41b7228905970305f20a55b9edb3776307b","sha512":"637c4e582589f43468f8c2f63a25e115e21408f2b9fe660ac4d0f752072275ff3d99576843d198df00919c7a9e3f0a2f95fe154d82fedd1bcfc40cd0d74ce7e3","ssdeep":"","tlshash":"7bf0e51700b05031515b203d4aeee649b7e490036808ba11b98c4109efd9b7a65f65c9","first_seen":"2026-05-29T11:19:07.308261Z","last_seen":"2026-06-18T11:09:57.593813Z","times_seen":22,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-opportunities.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.144Z","timestamp":1781780576144,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/block-opportunities.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"6a21475f-26d\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dGQCIQdhsGJw7f1O5mErSsoCQbLadq%2FwwkLdquWZXaX834KXSWMh5Kf96izqSzH3lkjbMWL3f0ejxXeapWuGG%2Bvhg4%2BfWNxP7kXpCmlxM70%2FqJBf9nbXD1gUSPFlOFIsU0c%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf8ec741a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":621,"size_decoded":1070,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"8bc11f354d28a47828366e5ed0170135","sha1":"84f0a8b5b7a7d288a40d113482693285dcfc84c4","sha256":"584c17b9f6bd2233d5cd69fb1e2b53339ed16e820dfe16bc957bd64ced812271","sha512":"13beac077df72c45814c5d6ef940b7615d9ffc7ffa1c4b2199fd363da6fc68f738ca98eb29ff8c6b996306efc0893a99e65caf09b8efdfbcdd3acde2efe7a68e","ssdeep":"","tlshash":"34f0500b30706036904f093d49ebea4ef7a5d0039804ba15f98c51099fddbbd94f29c9","first_seen":"2026-05-29T11:19:07.323421Z","last_seen":"2026-06-18T11:09:57.579309Z","times_seen":22,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/1-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.193Z","timestamp":1781780576193,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/1-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"6a21475f-1e6\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=5,i\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FcplF1fbFQpswmdgoamzYl%2BON4%2B2peyj5fB7PFmc02SbalZQe%2FvZBQsDBUx48zk58W%2BAY5C4xu7W4OUgTweGW49Vcqm8njZqbN3siUTK9gGiM6KUnevxg0TU7j1uhJ8tGxk%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf93c861a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":486,"size_decoded":997,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ac489bc5c3a0c31fda739db8195d2bf6","sha1":"afd67eb161da250eeaff7e488b40fa83be41bc92","sha256":"fc0435ed03a3ecce1cfb22a835bc7f22c709a67b06c1158029011a011c755eba","sha512":"9187198bb54b90ecddb30734784dfec4ba7378602cc27fe45d440f791394f833c79f453beb5c52a0ce6a8127cead65d30ceb853ec833eca411aca0241d362542","ssdeep":"","tlshash":"73f0e9f9b3088f88830347355f086576159f30fb668e156751402d87724ded6ded6dac","first_seen":"2026-02-01T05:35:27.983504Z","last_seen":"2026-06-20T05:04:37.016256Z","times_seen":82,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/fonts/RobotoCondensed-Bold.woff2","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.304Z","timestamp":1781780576304,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/fonts/RobotoCondensed-Bold.woff2 HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://orveniqa-fr.com/assets/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\netag: \"6a21475f-1029c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uagZ%2BkUV8WdTfG2%2BfYrr%2BoaXW%2F9wLU6z%2Bfo2SmoxVEqiqofK5CUPYQoAgQ8h0E%2FsjQHbiLLYFQUUyZM3XLQCG2jOzorNSl%2FmRgaHKiUZGkPTmFb5v41jI8q58KwzKqcvjDA%3D\"}]}\r\ncontent-length: 66204\r\ncf-ray: a0d9cdf9ecaf1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":66204,"size_decoded":66950,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 66204, version 1.0","md5":"eb3479e39688e6b86a926e32fbce8211","sha1":"fb4a169cf706b05db70496d4ee824b824513b5cd","sha256":"9b8b48a4569e96489a13cda60a878f0ef1e10cb987dd02e9845b12641354b988","sha512":"96bf1c97e9d8a8c10614a6295334d16c8f3406fb854fc9d5cff653487287173eb90b42ec958f7e35d6395882747c8ef68ea65cf454b14c291e1faf513847a458","ssdeep":"1536:iB7TVSmu0xY5/75fi+0nNpreJk/BxNYduWfQ8rN0tuIH0:iB3Imsjwp6axNPCQztH0","tlshash":"f35302676433681bf79a7290b981073059335efec2e8d0834458fa7dd25d2e150b2fea","first_seen":"2025-10-01T02:38:25.778132Z","last_seen":"2026-06-20T05:04:37.015232Z","times_seen":151,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":92,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/decrypt-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.343Z","timestamp":1781780576343,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/decrypt-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-2b2f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b7jzDzQKD6Z1GfmwLximvsfAxOW0TLcUVsyGv1I0bdUTk%2BzNlXDfWOdCugTBdDKAMTCCU0aFv%2BiROjD9B%2BrgBws5xTA72eNGenfqBlm87YTzr2nQkpaBi7JdYI8pnHv236I%3D\"}]}\r\ncf-ray: a0d9cdfa2cbd1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11055,"size_decoded":5745,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a0bfdb82b88bfdaca38a61b92992c6b4","sha1":"537966a938067e93b5a528d51a39d9a4acddb1e5","sha256":"84dae5d901c30dfd7212656608dc68da3880b37925e412ed231a31ce0379b3bf","sha512":"ff009f66936f92de9aadfc9a427744c393b2cbb749e8d054ac3503417c9bf0be873b26e2d1791753fb609e312373d1cef0180fda411011b577290bb61df95f09","ssdeep":"192:/W0rqAs/vpx++UdglW3ob5GBAhUDJ0t9VFkkTccJlPiWMFPA38pCNmf7aW0OA7iQ:+qIps4FxUS5kpcJlPOFPbpAbOATXi7WR","tlshash":"9132e9ddbbb462f8f940f3eec31268787a0668e73912ca6cc7ac1d06951244cd996cd7","first_seen":"2026-02-01T05:35:27.968664Z","last_seen":"2026-06-20T05:04:37.021537Z","times_seen":84,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-hero.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.139Z","timestamp":1781780576139,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/block-hero.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-6d8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zmpLwrD8X0XUjWaj%2FEScwdlIppXvxhI9jzUstXzceDiyTj%2BWVS%2BYHmmsp3AtPuIWMCHaaBt%2F7ONm4NDAzgpO%2FU7nlqPn00g9M240ZkaFc%2BsNnABCqyFPB%2FM2Mi3r%2BTmF63s%3D\"}]}\r\ncf-ray: a0d9cdf8ec6f1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1752,"size_decoded":1369,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"e7c2d08766df94c49ffbfb33ca3aaeb5","sha1":"649f951bd6cd3a9492f5e71dc8599da6ff4467c6","sha256":"8bc146b03f6083f6f19f33e314bc52270887407cca4345b09909af5952e83f11","sha512":"90ead8d0fc8cce98a011c51d33c5247962d400f40fd27b72e374f46ec3dd331b57a74d6e4e8c21725292071c0c93d27147142220f12f1c3047dae983c16a8dde","ssdeep":"","tlshash":"5b318f9a72f310708767a23abbaf5785253491033442ed9c7ddd42102f51d52a6f7fe8","first_seen":"2026-05-29T11:19:07.333343Z","last_seen":"2026-06-18T11:09:57.586074Z","times_seen":22,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/nansen-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.345Z","timestamp":1781780576345,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/nansen-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-7650\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1mEVlCSSbIlKRr6g11uHNTXLWLNpu1k%2FwqGOOVTf9NMZLQIS%2BrITJYyPVLDLs696VWdnX4E4XHlETWoNyC5fq9jGll%2BGbpzc6UTDS5r0Y5KHjHOjS3WTxG%2F%2BtHPO8pw2N20%3D\"}]}\r\ncf-ray: a0d9cdfa2cbf1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30288,"size_decoded":21661,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c92487a071ec8e517841d889a171d30e","sha1":"1b3711a1fd64d38374b60426b0202c7440216a3e","sha256":"546847d1e6ac7d68a88d48eaa30654ce3db328d647677611e0b7244208de0100","sha512":"b9eec3ddab5533900f2fe20fc4eec9d16f6f7beb828584f5f937e89c00c1f3c3facca900cb9d49adedb579d7f382d50215bd9dbd7cd9374d612a61ac1df92596","ssdeep":"768:QXhUJYmWWUkWhMnEED38PJtr0YeZEAFCNFbx:QXhUJT4M5D30JHemAFsFbx","tlshash":"9bd248622883cfbeefe54c20f656edf6ed6228ddc09b9148da1511614ba6240d6c0ff0","first_seen":"2026-02-01T05:35:27.994907Z","last_seen":"2026-06-20T05:04:37.007857Z","times_seen":84,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.207.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.574Z","timestamp":1781780576574,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nOrigin: https://orveniqa-fr.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 56438\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"3f362-QgRuJQx/Lu/0YZqJsL57g+AeXt8\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230139-FRA, cache-bma-essb1270049-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 2687886\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ktbs7y0acn%2F0lsldL6EdIHDfi7uWjLiQeS7LSv4ccMK7fZ3qTfEMeGhr2MJy1iaoQK%2B5cL%2Fz%2BAYx%2FX2rYoBpHggPEtgSSDYa3mfG4J9NjvJ9s6DAk%2BaQIe1CGl2aoWoLYas%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: a0d9cdfbbc8f49c5-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":258914,"size_decoded":57594,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-06-22T07:36:21.3759Z","times_seen":1738,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":3,"connect":1,"send":0,"wait":9,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/css/index-desk.css","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:55.852Z","timestamp":1781780575852,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/css/index-desk.css HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-3b95\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=16V%2BHNF9sjHTP7FyhgWtqGyXfj1M9FogsGOYac48Lq0BKUylrwA%2F%2BNpo10%2F2hyAn0Ny7loZFvjQ%2FSQmQlceeW4mgpgNSW1%2F3LBaark2BMGUjVm2LGFrpCOOV6f0uN8V1e9Q%3D\"}]}\r\ncf-ray: a0d9cdf71c221a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15253,"size_decoded":3205,"mime_type":"text/css","magic":"ASCII text, with very long lines (15253), with no line terminators","md5":"dc2f0f8acd342088b0e6d5876f73c3df","sha1":"8d82f24195867228a2a078db72f83c99e2fd09cf","sha256":"5abe5d5b844996e5b8537d508d28c24a361a77b2d7d9a548db3b35f9ae70de4c","sha512":"ccd0549c9d6e6dee700e1bd84943d960f378cb4a9892152d8e672314c4f9024d09995eed7517b0af4edaaf9e52aa49209ae749c43f181721542df672b1fc5cae","ssdeep":"384:gGcEzQEUm3qzw9Wby/v9XUqMyfUqwVdhMMQMCIAO6PWV:gG/QEUm38w9Wby/vBUqMyf0","tlshash":"a262b198a1103209e657e43b3c9f6e488617a230e777a5bda573311ccbde3a51063bde","first_seen":"2026-05-29T11:19:07.315021Z","last_seen":"2026-06-18T11:09:57.592782Z","times_seen":22,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-benefits.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.145Z","timestamp":1781780576145,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/block-benefits.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"6a21475f-1d7\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P4XnwuHSLqIe%2F36Ul%2FCxMTNsSRPLONjOPVKRJ8Vww6EpvizaARf4vS7h%2Fx%2FLumQHvHGdXLT4R9GZVQeIVW%2FpjG5vbpjyLF%2FW%2B9QXaSTv223%2BBfd4Vmoe7adiFe3QuHQG%2Bnk%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf8ec751a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":471,"size_decoded":1017,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"8dbd35fd0037e320d43d218945f8874b","sha1":"948cbefcbc63b66d735502e83db7d11da289b1e7","sha256":"827de3e56f86d46f3624f5ade3700be6217b8fd710a0158b737806bf25c814d1","sha512":"24ee97be54894d6e98c7196521c542787ae70813482240e4cb34dc1a0311f132baced53a0a813bcf752caa52d6d356c9a2b08f080e83e8fdd8b416f8069a740a","ssdeep":"","tlshash":"80f0ed1704b16036521b141d1aaaea49b6d8c0079801ba01becc5a09afdea6e96b71cf","first_seen":"2026-05-29T11:19:07.344329Z","last_seen":"2026-06-18T11:09:57.581908Z","times_seen":22,"resource_available":true,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/sec-b.webp","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.332Z","timestamp":1781780576332,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/sec-b.webp HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/webp\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=5,i\r\netag: \"6a21475f-6f86\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YsXCbqs7gdwNQ0oBG1N7WAs%2BruMGOVpVfLFekZrdYapKufaGLsmKXyBChvFtNiyvXU4MoJVq0%2FDXJK3cvZNHqyeXe6xU%2FlnBYX9nN7JOwJ0JWv0ianH99DPcToYkNNLHYqI%3D\"}]}\r\ncontent-length: 28550\r\ncf-ray: a0d9cdfa1cb51a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28550,"size_decoded":29284,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"47970bfc7e827a72c5144644617bf884","sha1":"10d90d462c590e9ca2240da4e99fb5034c04ba2c","sha256":"be1ec2a169b943a5297c2d04b74014b72763b06edd0d6a5da02584c60a8a1b15","sha512":"7a5630d58d7697318510757f869a62c2ab732fd9f61f447b3358cca4e24dcde01e7d950f6ad5a7c97165fd7bf702e6b21859596745c6d9e1265611486c30b3f8","ssdeep":"768:ESizQmpupxgHPrgYCz54lSeRFzgDMAMwOlSE:ESgQmp5PYdmDzgDM6ISE","tlshash":"d3d2e1b761d71f632c72c1b86e48e80976ec84be0f4a3886c360757e7615724d2f4ca2","first_seen":"2026-02-01T05:35:27.999381Z","last_seen":"2026-06-20T05:04:37.026988Z","times_seen":84,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/ledger-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.342Z","timestamp":1781780576342,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/ledger-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-d5c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AQgup6iaT68e00aN8aeKQOKoK7HcDUhMqT9TosrlqT7%2B9KShPplSMxB9dzqKd%2FRCyI7UKhJfyNcuGzec3UJrcq40oy1gUs9%2FKWD36OgrrMm43lK%2BX0uGwHH4kQs5OHhDfXw%3D\"}]}\r\ncf-ray: a0d9cdfa2cbc1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3420,"size_decoded":2313,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e2701dd236218c68e506257127151a98","sha1":"dbb9c8e8d180f2edb5caad16017adeb99ad24637","sha256":"a188ab0cb689c9d51976cced1034636b097d5bd4fbd49854cf3261c08e583db0","sha512":"928b21138b211639a30345ec3bda91164f8d727cb9e7e348b453da15469a37dc30cfa95932c313269a68d2c0993e7e10659e4eab0e496775eefc69f29fe8213d","ssdeep":"","tlshash":"b36185ce5fbb19e8f84ae3fddb0268bc341678bca562db50d3081a46f14245c8531d87","first_seen":"2026-02-01T05:35:28.000228Z","last_seen":"2026-06-20T05:04:37.007337Z","times_seen":84,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/header.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:55.844Z","timestamp":1781780575844,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/header.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-de06\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=540a3UKreMK3AGicw2ihUBb6GyKEgB13UdDEzitRQ9VQ082iLSKa%2BEMJpVbN7jfbLEuhtexm%2FWoPvV6%2FZwwLLckTgQs%2FP3ODu%2BwPJAleAGVdLAHn4UBJLCZ55N80ITzAJVQ%3D\"}]}\r\ncf-ray: a0d9cdf70c1d1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56838,"size_decoded":16172,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (724)","md5":"1b1cb4df07c706865f9f3e1e87a5fe1e","sha1":"d0a99437af32bc85e451472f5270c468abce92eb","sha256":"6489e9e41e19b9b7693c57212863f0b3fcd805056339e7cc85b169d1aeff1e86","sha512":"16adfd45b8a53ea3e9dc12e2f2d45b44c763bd83d67734fea468dd8103941c786efcc0f866099a3d4ac708be1567a22a8de89bd7654df339b809835477752541","ssdeep":"768:/gA16IhTp6BfAVbxtMDKgi0rzjqU7Z+Nr8Vyq0RdCa5dcAXUj9gjUVLISSQzzmWr:L1FR4BQxiDK5u4ic5dcpj9EUVz8i","tlshash":"aa43a65966e13134d303b03b969fcd08b339945b564ace483d2ca6986f4983897b7fec","first_seen":"2026-05-29T11:19:07.331319Z","last_seen":"2026-06-18T11:09:57.575545Z","times_seen":22,"resource_available":true,"data":null}},"time_used":131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/css/index-mob.css","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:55.848Z","timestamp":1781780575848,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/css/index-mob.css HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-3e43\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DQv8giSP1iuDZcD3%2B4QpGJ1OuVwiG3x3Eh1%2BAIzYNASVmveimiQ6P0FTmQRAYXRgza7f1awKLyCTCJI9IJ2WMdgbHJYdFBZ1vtMqPGeQzoFqwH5ylZA9izSgLsrGWSwR6LA%3D\"}]}\r\ncf-ray: a0d9cdf71c1f1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15939,"size_decoded":3699,"mime_type":"text/css","magic":"ASCII text, with very long lines (15939), with no line terminators","md5":"cec98a79a19bc73520c0fe6015402e72","sha1":"5aa3cf9414acf223f5d745b37d94502935e507d7","sha256":"ab55cc4546ada02e037c55d7beb9c27eaa5639d5da33027cd6f3754b4bf4a6eb","sha512":"d77f4708c2b29e93cd5074dbd05d7a871cd6ff3caf7b7fac455b1b876991554135859b22c1546e47f997e5275adc4a80268f6e17fcd3db61c95f00d09047ef07","ssdeep":"192:hCi9TdXhfvN3h/O7xtsMRZX0w7IFWQJa4zXKHwv8XYJcSxcniHlS/SvRuzL7yT1r:Qodx3FVLOuJJcaezw8uKQStPcBaIT","tlshash":"7762642892142115f293e8793f96bfc6d306e571a707e0bdcad9312dc2ce56606b2bcd","first_seen":"2026-05-29T11:19:07.339613Z","last_seen":"2026-06-18T11:09:57.585555Z","times_seen":22,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/fonts/RobotoCondensed-ExtraBold.woff2","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.301Z","timestamp":1781780576301,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/fonts/RobotoCondensed-ExtraBold.woff2 HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://orveniqa-fr.com/assets/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\netag: \"6a21475f-1010c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gKyHsJqqGkBYqySPcU8O5vLiE%2BU0RcanCkiGtJp5i6sN6g6vZsIJC4WYV3Vo41Hu4jyfa%2FNsxorGs61lmftqrielSy4HjZYzTz8UtVlVO3aKZdo33ByK9%2BER1fj7mKkOmk0%3D\"}]}\r\ncontent-length: 65804\r\ncf-ray: a0d9cdf9ecae1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65804,"size_decoded":66542,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65804, version 1.0","md5":"53069609c1d8fa3047a0c102c5391c2a","sha1":"2c4110fbf89c85ebcadb7501b9e52402824db4dd","sha256":"fb6a5fc89213242e7024a41384ebc611d31a9d7da67867c25bf033c7bad44174","sha512":"321d7f90a43c75fec00f503dfa27ac8e8fa089ba13f91007895ca2749df49dae9ca3f220abb7c96dcf922c710cccf8d3b56b31e04084a149421dc91bedce896e","ssdeep":"1536:b2n+VaO4AWR/0tMgc4jhgQhZboogEbg9X6eHGnD2vhj7e:bAwaOW9gc49RhZbooiMeOKvhjC","tlshash":"3f530190cfc2d39be6b02a375831ae4c2ed21d1bd82a7e9291fae446f4274e65490cc4","first_seen":"2026-02-01T05:35:27.976591Z","last_seen":"2026-06-20T05:04:37.01349Z","times_seen":83,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":85,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/coinbase-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.333Z","timestamp":1781780576333,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/coinbase-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-eff\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y46OhOV%2F0W4ZuYnUflozLI18BveiLwqgxGo1qtMDBlMJP2ViJkjimh9xzsUwNzTczaWRXnu7FdyDMThRZLDTWbof62xe2Rwl%2FWqeEY9KDprho4F8Yf8uvm80sWLu9xybd9A%3D\"}]}\r\ncf-ray: a0d9cdfa1cb61a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3839,"size_decoded":2478,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"28bd94ed1796c03e587a0a98a90e16dc","sha1":"651cd56ae54c37e8ceef0d94a61eecb6fe236247","sha256":"cc6b71738a6a1f8c4b55137201c8568470c0b586c4a542c2d1f858c338b4b0b8","sha512":"b1c22b60ca273873017296be230927129e7bf66da4b2f4d1cc578dd06fddb6c634b9a314cc7eab745bc215c99d63e9dc024b2f14edceb6901ab86490a942b35e","ssdeep":"","tlshash":"c78162ef23f855e9f0c5d3e3ef4340393d4aa1f20a58cb5453585e6793820ac686ad67","first_seen":"2026-02-01T05:35:27.993963Z","last_seen":"2026-06-20T05:04:37.025353Z","times_seen":84,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.514Z","timestamp":1781780576514,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=p974v2ihnaprtror1skh6uolrb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-48d\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zek2k65Kyel5vKut7N3fYtlmPFok61fz7tHEgpoRX%2BxZyz8NHJWg5hp4CyHqk17I%2Bo%2F29bwAwdT5%2F%2BXI15N02FO4J1aSFNIn0W2pm2%2BVvw3ifb0D4bZXwjemNnqaE8UB5eM%3D\"}]}\r\ncf-ray: a0d9cdfb3ce31a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1165,"size_decoded":1231,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2ecc52ba801200f4e6e07bce14f5b2c0","sha1":"22f3381961dda0a6f700233be04ab2e1dec173aa","sha256":"476889f1bd277c069ef21987bc4af168c0cf339d1f1c775ddcae5af482c7460a","sha512":"e059f288819e5d94ac593d24e90948529e4e8ab7541deac613b50833e008235c2a3ad87b72ab9bcc5fea6192114179242ee0cd58108273bec7c36530d0372af5","ssdeep":"","tlshash":"77216b66b22ca418d32383ce224638e9303fa0ea771603c4c5c42e6f96646c61c3f6dd","first_seen":"2026-02-01T05:35:27.974168Z","last_seen":"2026-06-20T05:04:37.006369Z","times_seen":82,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/rating-pp.webp","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.190Z","timestamp":1781780576190,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/rating-pp.webp HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/webp\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=5,i\r\netag: \"6a21475f-972\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DhS8l7W4syX%2BSw3D0Ma6mfNlvGaWVZt%2BJsFrplAZN9TP0xnMp2RXf9Kqp1zCOaJ8XA1G0NuKptiKh786T7av9cGyUADGzcNJrie3bay9wDNWVuSEAgEDRw%2Fw3GCw19ZR%2BYw%3D\"}]}\r\ncontent-length: 2418\r\ncf-ray: a0d9cdf93c841a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2418,"size_decoded":3152,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ecbfd9b2102df0bcbb14d9acc7e7287c","sha1":"125335a93ea3e114508002341f179497c5e27c2f","sha256":"ae280ad98a0105059fb781e96b09b40559b11c2bcd3367f6410ebd0379924e92","sha512":"22f56b4ad73f3673c4131e0fb8ebea0e6d42a304765819fdfb54ade5867e34b7fe60cd192214bfda0c24a0ec02bebd02592e178b1269a00315e133be7c715f7e","ssdeep":"","tlshash":"70413d44cef6ecf38db6ec6bd1365a727226dee51a75cd7600d18d20c07963149d4500","first_seen":"2026-02-01T05:35:27.996355Z","last_seen":"2026-06-20T05:04:37.006837Z","times_seen":84,"resource_available":false,"data":null}},"time_used":99,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/coindesk-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.338Z","timestamp":1781780576338,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/coindesk-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-1a06\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ad15raWKtsBX8g0f8xj1wbsqXJQWFi09uFX6Kb5h3238Q3Le680kowtFH85GURooHmiGqlb8063y5uY1LC6OPYmZY6atZWw3hd%2BHkhRLDj1eP4vWuntTI%2FUA6xXY5ZegalE%3D\"}]}\r\ncf-ray: a0d9cdfa2cba1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6662,"size_decoded":3505,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"98204686e236109e0306d0e23510cb67","sha1":"0a3a2a2832fe38f81ab58c3c97af79c1a35ae2b2","sha256":"fdb470fec4ed878417026c27211c08dfa773248688c135cd1fe4c5e7825ba259","sha512":"3a3ac622b85daf630a18d0db786e8b2faeaa5db7d95d62e4f487a695a4243ef01100dddefb9212610e59c65d2ec6010c103fb0dad15d1f14c6f03ed454e4144b","ssdeep":"192:8rg6THKrsJ2Fax+lSzJR+uyqsyPyT+DD9VZ/Naatg:gRr8F++lKR+uxpPyTykatg","tlshash":"6bd109ee63e4a2e4f002c3f5d917049a3ea73cf92b51c504cb808e69ec5959d4d98ed3","first_seen":"2026-02-01T05:35:27.99183Z","last_seen":"2026-06-20T05:04:37.016713Z","times_seen":84,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/js/block-partners.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.141Z","timestamp":1781780576141,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/js/block-partners.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\netag: W/\"6a21475f-185\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J7KJ9LCURvcR2v04VzKxkAUipfLI3bVsmptX0r%2BWzgzTGQg8WaeP288NiCXhwCottBPFqzGxhxbG81haTwvMyYybydlBMk8l6RbQEmIhKtTzlzOIx62r1zKbiaE0EQAzxAA%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf8ec701a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":389,"size_decoded":963,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"2ffe7c551deb8250a1cc07cc442dc122","sha1":"4f9add75741d9bca4fe00e157daae6c9b0badb02","sha256":"06f965a8bffba0d054c5f78abedb30db7b5455fe6e46967680a6c7a0171c3a1f","sha512":"0ad46f632dc295a66d947b96a5dd8b9c829bac0cba4375823d5eee9aa60b2788d74db37fe44ad098bbc6286eee65f27a56b53ae868bbbeba4e2a0a7bc767d7c4","ssdeep":"","tlshash":"bbe07d0385711035550b282c09eef700269cc0038c04be417e5d4d044fce21e5af71cb","first_seen":"2026-05-29T11:19:07.301011Z","last_seen":"2026-06-18T11:09:57.576609Z","times_seen":22,"resource_available":true,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":83,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/fonts/RobotoCondensed-Regular.woff2","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.299Z","timestamp":1781780576299,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/fonts/RobotoCondensed-Regular.woff2 HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://orveniqa-fr.com/assets/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i=?0\r\netag: \"6a21475f-f8b8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JyJTCG7l9yP9U6YQY3AQ8f%2FJUdedC7pELlakUaJCxC8Tz43xLAmz7mcSbiiXhOeWxX0JHFrvrP%2FOQGwc%2BJNm8f3p3GnRhcC%2B6oQGrzWEj%2FJnt7NCN7ak78XHz8T2yzqDP80%3D\"}]}\r\ncontent-length: 63672\r\ncf-ray: a0d9cdf9ecad1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63672,"size_decoded":64413,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 63672, version 1.0","md5":"e813ab562ab74cf2fea116f6573ec2a1","sha1":"3a5d2faa0d673b8839df26a76735aa1ee0c02bce","sha256":"07fe1001734bda1c26b3773008f02e54a9998bdb7c0592eabbc4e948bebeebf5","sha512":"07f1505bf8d636d373fd7780425aceddf78ba39f09e3733a9acd82dd39f5a41f6fc8d92a4ad3ff379180b87e09c6da8e8ba7c2718666dc57be2d7f54bbc41b80","ssdeep":"768:ovBaPod+pexZSKCbG0eOyDF4ZkNAjjmhDQEVo8mb8rJXErm+jvRfYOdRMgvV0Dzp:bq+pCubtyR4ZiD/GIXEC+Igqgy/b3Lv","tlshash":"7a530249b6d53a262a3fd2cc958280c3c419ba72e8383c7bf92dd6dac85dda264515cc","first_seen":"2026-02-01T05:35:27.981516Z","last_seen":"2026-06-20T05:04:37.008864Z","times_seen":141,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":82,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/validation/style.php","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.348Z","timestamp":1781780576348,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"POST /validation/style.php HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nOrigin: https://orveniqa-fr.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=p974v2ihnaprtror1skh6uolrb; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NB33prWHQzY2vubJ2f70n3bxYdHeaewbJaZLLLZL1Sz1lmIpF9Ca1Z67iO6A9PTHY%2BeHJGiDSRHNsglJNUqEeRislwtmJkc0odQOmSHcFT2VPpvt9ltfsVJx2sYJRD3iqOM%3D\"}]}\r\ncontent-length: 42\r\ncf-ray: a0d9cdfa3cc21a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22,"size_decoded":1049,"mime_type":"application/json","magic":"JSON text data","md5":"c7372a4a6110b1976517fc04dcd2592d","sha1":"d9c4a169b6bab06c521329062155fb00ecebd05b","sha256":"6806954ddd00827d88c138d8b6fc02329bfa0d7d8a67e2845d25a56e8206ffba","sha512":"50cc036e6c0c4f4bf4fc36a87e6731233a0a31f20ecbf9c99e359ee9d3f63f5b44a92785e186b5617f9b953f39ecfa3311aaeded09e6327ba3f225c6de910700","ssdeep":"","tlshash":"df70000008c008ab0300208b00880082820c8000800e3a88830e008880bb2002000082","first_seen":"2026-06-18T11:03:25.991336Z","last_seen":"2026-06-18T11:03:25.991336Z","times_seen":1,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/validation/imgs/flags.webp","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.354Z","timestamp":1781780576354,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /validation/imgs/flags.webp HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://orveniqa-fr.com/validation/intlTellInput.min.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/webp\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=4,i\r\netag: \"6a21475f-400e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JrsuuIykSCbQBsBv1sNFFAiiYVMwVLqVJ9oW5qDTdXPLoFx8FxthTNZpglEr0%2Fs14l3P%2BPW31MVQOsY3uVWUVzRzvM%2FNC5bSuZu7HKNxoPca0xoTIXE1scmjjNioqSx97lM%3D\"}]}\r\ncontent-length: 16398\r\ncf-ray: a0d9cdfa3cc61a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16398,"size_decoded":17132,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e04a429f047bf49a416645746b6ab9ee","sha1":"81f328617acadbd6fd07ab50977feffa2da3efca","sha256":"760f6774dabb35d9d7cdfb1c748ffd5e37eacf2c2dd4e750b53e66e3b9246ac7","sha512":"06dd1ace2a0776c044f5d8109db05e4fc4ee1d5b676a9da24b7178288f8baae7efc67232370baf3eba849789a93e5c92675354e6ec750fa452b5f8238252642b","ssdeep":"384:CpLvGfOAKQ6wUyvTOaqso3jEAgjZ50AxMD5enKY/M:27DQWUTPqso3YfZ5HCLYk","tlshash":"ea72d08d72fc585cfa36d9021277b18da086ce24b576d9394ac3f985b4b3c98f5cc492","first_seen":"2025-11-06T16:28:10.856082Z","last_seen":"2026-06-22T02:24:26.368251Z","times_seen":951,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":100,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/phone.webp","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.133Z","timestamp":1781780576133,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/phone.webp HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/webp\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=3,i\r\netag: \"6a21475f-420a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5Ug9TxwmhW1su%2FD2xiZU1mGcfmphrZhBqZwM%2BdzdXeiigW1LoYUFpPG5yiOw9Z8rckg5u7slXgzpqPFdEw4Iant5VYQSACE7WlF91CujNht4wGMdpJF7aDDfGr8Nn3JcNT8%3D\"}]}\r\ncontent-length: 16906\r\ncf-ray: a0d9cdf8dc6d1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16906,"size_decoded":17638,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c334ed25ee125a3a0acd8829568b9f9a","sha1":"8ce713ff656d9956f2bb9d0299b04e68201c2e21","sha256":"12b05a7ae2cc672765bc338b9756fa581d21fb7bb12690c4539e80949e071f8e","sha512":"c23b461315bfc48eaffb986a172d7e87f9a59d1dc40f424649a4a4eed171bbfc67f804330ce0fca099260d957e2e152ebb5a4cf33677ecb488179954a940fc72","ssdeep":"384:Y13qlNJOzV0p5cVX4OVelnIorrZtn670tJhuqG0:ASNCVqS4WeprrtJcj0","tlshash":"1472c0fe2b0a0076cd0a79f6c9417588ec8f264952e4c566d94d5cd2cbacc5e813bedc","first_seen":"2026-02-01T05:35:27.977673Z","last_seen":"2026-06-20T05:04:37.015708Z","times_seen":84,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/stars.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.192Z","timestamp":1781780576192,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/stars.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-1d22\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6zXZAQFzumKtBSj5p5XLzXW6%2Bvp%2Flq%2FUjQAvIV2LpB4idFyrpThdC7nEhLJ9dhiVxq2rY%2B%2BEH4DyOZpcoA9dlyv%2Bon0zLECIzGR1dRBaEZqBxI3XdPkZ7V170IXMIQ3bdCg%3D\"}]}\r\ncf-ray: a0d9cdf93c851a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7458,"size_decoded":2742,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"014a0e3b61fba37a9c6fc12662901ef6","sha1":"d54b604534f25a15a46beaadf4254ce5f88e15bf","sha256":"e90bf9cc25d153355a41b65e010557055032a2dedeb905362b340bfa267b10ff","sha512":"48a788a683542461581ef176642bebf818a7888cf87d99bf38b09ecf80181de494d92dec96ae36d8cbf56008f8f9966c9542dd2fa6a55e00b25e7c1dad54a4c1","ssdeep":"96:T53xYfmhdJbQep+MA0NoKlUR3t573bcIhue1fRqzlGNv5yDa/vt:d+gAMA0N83t5ncaJqzlGjN/1","tlshash":"e5f1a6f4159cb3a8c302dfc1cf6922f469ac76fd67de8b61e3b06896783819ac5448c5","first_seen":"2026-02-01T05:35:27.98436Z","last_seen":"2026-06-20T05:04:37.019726Z","times_seen":84,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/x-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.195Z","timestamp":1781780576195,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/x-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"6a21475f-164\"\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\npriority: u=5,i\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ql8PpZLznXJfNkG0XkxRWSZ7qG8PqePJRryhJjK3VtpoZyz2pVuKBvR3OY8OGLSsa7AnzkO%2FtCxCJkQ7%2BXeEztUwqr7L3b3AIc%2FQbVAXJ87qGQZe9Y2%2Fr%2BmoCalzInDTq9I%3D\"}]}\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0d9cdf93c871a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":356,"size_decoded":972,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f9d288b6a62efbb46adf6c414e894b91","sha1":"32d0325ebf05205f61a3d4cbf24532df4fa42855","sha256":"805f0ebb3ed4c45904f1b5b3dd4fb17ec8a13133d95f703f14e16278a860eaf5","sha512":"b5f06d02f99625d7f575fa9ea5f587c5a9b76a3ea1cb0d3a23764ac215178dcacb0b2ad9af1c053d012402f95917b305ec353295d438d95a0912238683768bb1","ssdeep":"","tlshash":"28e068e9114df384840d8ed04229333212da71e2abc4d34cc1526202f8841499c1d5d9","first_seen":"2026-02-01T05:35:27.974946Z","last_seen":"2026-06-20T05:04:37.025957Z","times_seen":83,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/yt-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.196Z","timestamp":1781780576196,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/yt-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-46d\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZrslNtsTnCOgyvZTz3xSNTo4UlU91JuihfWb18Gc5LtNhUvTfAw%2FJPQ2VYVXs9rtOJEr5dKBoagnDDX3GaBN2f3p2Z4w0qCTe5S1cqpa4GQmx5t4nKgmvRvkt10W0mziDDU%3D\"}]}\r\ncf-ray: a0d9cdf93c881a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1133,"size_decoded":1284,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4e0c0d2d22e110c402986b7bdf984049","sha1":"eec12524e6bd14bfde045ba21702eae55540bbb1","sha256":"b23575dea942fec2968ec7a483526046cda22064b11d489a690da9dcea47b3f1","sha512":"d8d8f321a0b64f4be55b8f60ddba121060481dc6ab253f9bfbea5f17c7f56bff2a1ccecf91c62c69595ac8896445167404361140fe989e3ed3839a7200854790","ssdeep":"","tlshash":"48218ef683268a60e90ddbf4d68e346c209637b2bb59c386d3587514f04b4dc9658c4c","first_seen":"2026-02-01T05:35:27.985538Z","last_seen":"2026-06-20T05:04:37.024729Z","times_seen":82,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/trading-view.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.339Z","timestamp":1781780576339,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/trading-view.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-e9b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9OgX%2Bn7Kcp5YiHDMS5EGse66zp6H28oYrUmNkPdFPXhdn7wEh%2B7hjHzcEHVnIcCjLD45hpViPuZ6CRLQveJzAJZ93s4PkKtBNQp9uN6a5CVDzAWiPnAGAhiPoBCBrgJ5Ld4%3D\"}]}\r\ncf-ray: a0d9cdfa2cb91a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3739,"size_decoded":2255,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"79b1b46b6609cfb200a845d186a4bd62","sha1":"8d65ce42eb0b3ae30e367db942849d55a58ae4e5","sha256":"44eb37cb71b7e5bc0f39d8f030dcde80db60544b1f2cb3e62a89c684d107fefc","sha512":"3bc573e38ce7006b7d795bd16783812d0d838e86c653ff53337d98e8b4076df279e5033600b55fa7907aea4deec0e406602e8bc4440f8433c170c767017f3b7e","ssdeep":"","tlshash":"207197fe97f4c6e4fe10c762a851252d3607437af537c99c82184eacbba449ca8458c9","first_seen":"2026-02-01T05:35:27.99094Z","last_seen":"2026-06-20T05:04:37.012532Z","times_seen":84,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-KYENGGJQN4","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.128Z","timestamp":1781780576128,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:36:26 GMT","end":"Mon, 17 Aug 2026 08:36:25 GMT"},"fingerprint":{"sha1":"B1:69:2D:8A:87:48:5C:47:05:41:5B:52:3B:0E:2C:E9:BD:CC:03:75","sha256":"91:1E:26:69:78:6C:F7:F4:05:E8:B1:07:F4:04:FB:66:B9:20:6A:EB:43:9D:02:70:C8:AF:60:8C:BB:58:30:4F"}}},"request":{"raw":"GET /gtag/js?id=G-KYENGGJQN4 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: zstd\r\nvary: Accept-Encoding\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\nexpires: Thu, 18 Jun 2026 11:02:56 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 149363\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":424484,"size_decoded":149967,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"42e3cd07b2548f9aa254bf42ce068505","sha1":"14de3cc59b9564479cf8698486ee11a6197c2ecd","sha256":"5916151512c3b967acf78ab23be7ae40ce28c8bed4902dd24792ed911d7f120f","sha512":"b7384802c6e0513a260a97c268c8fe8bf5ec5c79d65dbed776f435164de428d4ac3e5dd2cc6938d76d674aacec83dd90ece74a3bc5e2f8d82d7a80b83b34a335","ssdeep":"6144:AjKYSKDAFmvq/uYJycf7paX9Z08hdAYOyuInyBLJ81oK:QK5R/uYy86+4","tlshash":"cb94f9cdb3da74629392f478503f018ba17a69e2f448c899f186ccd42e746998277f7c","first_seen":"2026-06-18T11:03:25.995383Z","last_seen":"2026-06-18T11:03:56.35632Z","times_seen":2,"resource_available":true,"data":null}},"time_used":140,"timings":{"blocked":-1,"dns":8,"connect":14,"send":0,"wait":42,"receive":42,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/validation/intlTelInput.min.js","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.137Z","timestamp":1781780576137,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /validation/intlTelInput.min.js HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-927f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O5FJ1OtGTJLyQM6EBdyWWCsdwxaVqtsTHkYnzI%2BfNJZ9F0Mq98xB7MmjfyLEsAqydIYOOSQLyqHIQLbyOfbvMRhxWC2FcYZtT%2FJdfI4IMl%2Bm2LGuk3qHt3I0mUq41eQfbqQ%3D\"}]}\r\ncf-ray: a0d9cdf8ec6e1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":37503,"size_decoded":14034,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29515)","md5":"475fdc0630d2997afd1f230b7d5617de","sha1":"e57c798a7aac45a8a049481a330893ad9224e39e","sha256":"df2fca8c5e5a0a3455ceb3530594a8ff13548a5ced799d73c234012f05b3bf11","sha512":"ec662d5dafc77f1925bed23f0860675f33b5093b6f47031504fbb3596278ef79855b7b791e05476bd43ff709f47ef257c2b4ef84b6d8aeab588fb15a3d0e981b","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68ikl/7LOpQn2Vits8Zb:cDiIz8A4knYdYk9bs2","tlshash":"4cf209ae737116376abe82fa30e74503aeae34465604442d389c8fcd0b98ed571f6778","first_seen":"2026-05-29T11:19:07.321122Z","last_seen":"2026-06-20T07:48:12.717999Z","times_seen":30,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.188Z","timestamp":1781780576188,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-48d\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6xCsBUQqHQ8M5exFMsvsyUwRIEDTW1ZC0wqRls08RgBoDq8NkLYw4IhfdI43gOoxkE1Vcbdhghy%2BEsBmCPyUz41oOzQzRhufT0zjk5t%2FHLOJt9%2Bm%2Bl8gXwfduHir8HkWemo%3D\"}]}\r\ncf-ray: a0d9cdf93c831a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1165,"size_decoded":1217,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2ecc52ba801200f4e6e07bce14f5b2c0","sha1":"22f3381961dda0a6f700233be04ab2e1dec173aa","sha256":"476889f1bd277c069ef21987bc4af168c0cf339d1f1c775ddcae5af482c7460a","sha512":"e059f288819e5d94ac593d24e90948529e4e8ab7541deac613b50833e008235c2a3ad87b72ab9bcc5fea6192114179242ee0cd58108273bec7c36530d0372af5","ssdeep":"","tlshash":"77216b66b22ca418d32383ce224638e9303fa0ea771603c4c5c42e6f96646c61c3f6dd","first_seen":"2026-02-01T05:35:27.974168Z","last_seen":"2026-06-20T05:04:37.006369Z","times_seen":82,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/binance-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.335Z","timestamp":1781780576335,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/binance-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-118d\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iwkloUIBKkx%2BK9lHn5daNjZvvyxeZcHCL%2BYOMe4uScD8cfRffloaZBifb0Nt%2F%2FsNXDv8KdPtsQVLrlinexNA%2BCDxbaEIqplzgzMM9lSF%2Bf19i1wVViJQscbi6ZQVw%2BxX7K8%3D\"}]}\r\ncf-ray: a0d9cdfa1cb71a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4493,"size_decoded":2781,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"35a001dceb5d304e217ae7dcde7b9328","sha1":"756564a2c8c1eee3b30be5389524025e57c6f9c5","sha256":"744973c7abb9be82e61288f0dfd09338adba6076c6dbbdac4463755ac20a776f","sha512":"e99c6d04081a34e672fb23b806931d2c261d5a1338f09e4c81740969a711d0353d8b8a85eba1f003a298407aab72c842dbc8e26913903bec6fe5dfece9a60a37","ssdeep":"96:r4Na2W38JZDx1cvUGHW+cyeDtnIT2aNAS79XJJcQDkHij3bmMXSu:r4NSup82h5UmQp3bmc","tlshash":"c49193c87bec22f0e802abd7d917643a7d1727ff6b81c611c7d09e86549406d4c5adc6","first_seen":"2026-02-01T05:35:27.975741Z","last_seen":"2026-06-20T05:04:37.020228Z","times_seen":84,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":86,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"orveniqa-fr.com/assets/img/deloitte-logo.svg","fqdn":"orveniqa-fr.com","domain":"orveniqa-fr.com","tld":"com"},"ip":{"addr":"104.21.6.254","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://orveniqa-fr.com/","date":"2026-06-18T11:02:56.341Z","timestamp":1781780576341,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"orveniqa-fr.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 04 Jun 2026 08:35:05 GMT","end":"Wed, 02 Sep 2026 09:32:28 GMT"},"fingerprint":{"sha1":"6F:CF:A9:DA:E2:9A:1F:D4:46:3A:21:32:14:B8:7C:93:22:2A:84:4B","sha256":"3C:6F:15:9B:DB:78:B4:2F:B3:DF:EC:FE:1A:65:D9:1A:44:71:8A:6D:8F:A9:0E:7D:68:D6:BE:C5:31:92:30:13"}}},"request":{"raw":"GET /assets/img/deloitte-logo.svg HTTP/1.1\r\nHost: orveniqa-fr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://orveniqa-fr.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Thu, 18 Jun 2026 11:02:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 04 Jun 2026 09:37:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"6a21475f-114f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HUV9ZBcPqfpSEtSJd91fevO74jvkqNhjA%2BhrY9FMpQAA6ssVQRm%2BMJCYS4FyshHH2tVwZmle4vYD%2FAG0ACxBd4hgIkA%2FvevHTYyh6nxmEcGhwr6pSjxLbaUHbZxwZAAL%2BQo%3D\"}]}\r\ncf-ray: a0d9cdfa2cbb1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4431,"size_decoded":2732,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c6285a881129c28fdb30de641e1e0816","sha1":"c8b507f3d04b7f79b30dacfb19d83c9a2ab826b8","sha256":"13813c91955ef07765d51425c95d2e6acef3a7ce1556743f112325dcaafc85ae","sha512":"4b4e1a78eeb05c591bb2202c3f1eceb1b42298b79b5cb9d45ab06695588c7c2409c4936a6f58962783d759f47ff9db15ac3c6713f962efc8b1a7dc5e4d27e2c1","ssdeep":"96:QZa2bP+VaZKmCFIf7go6gVh3QJvvwwoQwS+e5Rm6dfHI0X:QZbFXJfXVgRYwolSHzhd//","tlshash":"4091a6fe4be9256cf908a7eef616846d3e822aec2751cb91c3185e4d345581cec21ce7","first_seen":"2026-02-01T05:35:27.986972Z","last_seen":"2026-06-20T05:04:37.021071Z","times_seen":84,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"orveniqa-fr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}