{"report_id":"947b9637-0dba-4841-8cde-c4612ced79e6","version":6,"status":"done","tags":[],"date":"2026-05-28T12:32:04Z","url":{"schema":"http","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"104.21.15.90","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"title":"Georgia Department of Driver Services","dom":{"size":93838,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65489), with no line terminators","md5":"95b44dcd35ed47b9b422f61e155c9c62","sha1":"d17001de63c125cf644f9f2ee7fe79feb948775f","sha256":"e7afd76616f2c7eba7296970b7f9b530ece6aed45613e7cffba10e60eabb2985","sha512":"e784b3499f2ee050e2ddf68eb15cd1efea8bc5706762512b4fd1a295911e160b4cc612ee1c464864c54ba7f29699e6fede7708caeb315dc2d24d0835da2a296e","ssdeep":"1536:d+c2UTtScI3bjiV+EAiHgJsNp+Iozji/beL39YiUiVJPVmCsUYuVkv63S7G21zTh:sc2KK3DTWb6zSAh3Ps1KNPEc2wV4","tlshash":"269354f61d148e3d01134e8ad6ebd318d389887db9694c8bcaff5b76418bd90f4a3864","dom_hash":"domhash3eb670480d4b4d44f417a6adab72f4c1","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"104.21.15.90","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-02T12:32:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-28T12:31:46Z","timestamp":1779971506,"ip_dst":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":38940,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)","source":"{\"timestamp\":\"2026-05-28T12:31:46.937486+0000\",\"flow_id\":1453022696859519,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.2\",\"src_port\":38940,\"dest_ip\":\"34.117.59.81\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2025331,\"rev\":5,\"signature\":\"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)\",\"category\":\"Device Retrieving External IP Address Detected\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Linux\",\"Mac_OSX\",\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2018_02_07\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0043\"],\"mitre_tactic_name\":[\"Reconnaissance\"],\"mitre_technique_id\":[\"T1590\"],\"mitre_technique_name\":[\"Gather_Victim_Network_Information\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_09_19\"]}},\"tls\":{\"sni\":\"ipinfo.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":911,\"bytes_toclient\":3413,\"start\":\"2026-05-28T12:31:46.878463+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"georgia.org-fmn.one","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-15","domain_rank":0,"first_seen":"2026-05-28T12:32:06.55485Z","last_seen":"2026-05-28T12:32:06.55485Z","alert_count":87,"request_count":29,"received_data":1896424,"sent_data":13932,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Drupal:10","description":"Drupal is a free and open-source web content management framework.","website":"https://www.drupal.org/","common_platform_enumeration":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","icon":"Drupal.svg","categories":["CMS"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}]},{"fqdn":"unpkg.com","ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-01-06","domain_rank":1093,"first_seen":"2016-01-07T23:26:01Z","last_seen":"2026-05-25T07:23:13.533444Z","alert_count":0,"request_count":4,"received_data":501943,"sent_data":1802,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ipinfo.io","ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2013-04-23","domain_rank":1327,"first_seen":"2013-12-16T07:25:53Z","last_seen":"2026-05-27T18:05:04.167221Z","alert_count":0,"request_count":1,"received_data":539,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"4c8d90fb3ea4c2d57299eedb41a2e20d","sha1":"d22bd75e679fd93d69269939d855435b87453c0f","sha256":"7a0822eefcd060a8fa86ee2c2e778f59c5eb11e5cd41818f5059aea5c3da3f7b","sha512":"5a4cb1819a56e40527070a8e6613ca2f523a61e989f1c7148023c327f6eae3b124537880b1ad6678e1def808a0e4cbd3f58dea9c363675f3f7a876c81bb60075","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":1239,"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/card-refresh.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}},{"md5":"5e09aa53ccdb2de94e4093d3c52b466c","sha1":"b3d7cfc8788bc9a17a509bfbe34a097de7355554","sha256":"d77fe435701de13d2dac9cfc1f66ed1469a862e0c55a89a45db432652ba059ae","sha512":"bdf88bc17c1389d4650d572f01c01d4c1ab01b868a774863f3b56b535fb6acc9554ff4b586b74e145b6c875531b22438a35bb32e50816ff0c20410d10f96921b","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":2166,"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/amex-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}},{"md5":"a737c47eb9e414d0de0195b5c56a2c6e","sha1":"682755372ff57c42620bb9b7d453c9339df6dc36","sha256":"6cb862862fc8536523b9f6041c8e15ae015d64ce82e062297ec8662017b11819","sha512":"b07d00d705acccca7ac9169a4436c106305b9c720e23715cf630cb26a15680a1562666ab8870a26b8fbcff830dcf20a72686dc6acef0d885c4b1015c0e872d03","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":3638,"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/discover-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}},{"md5":"65e5ef6e1e662df2dfb177d738a34736","sha1":"52300d2f11f13d5ec7694b78951ef029eed486af","sha256":"ed2f990ced5ea2b6e51167148a75ec39a9c3e98e2e16259f31cbf3806d4403a7","sha512":"ee36269a8aecb4af648fbc8c5993f2489e0e0134080c6cb3afa2f365c6227ce8eccc3d21a07f6627bf38cb4e05c31cbd52afd8bccbe9a8bf497e364d9af60c8f","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":2052,"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/visa-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}},{"md5":"79a5f1fda4790f8900e278fa7c7d907a","sha1":"34624cbd1976f030b11e49811d02da1121593a4d","sha256":"2889851f4d97b538b546aa51a676dc2100c8fa5710187de45e2875bfbc21ee57","sha512":"34730569aa90502c0ad9238e3fa524af812407639f9c4167a635db169f7b49ceed8d0d499538f1501d21328921a4a2ac6901fa52b44ebaf58325884f976ad0d8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":2379,"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/jcb-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/common.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"67213e6a3389b07f0863a0d85ff11f66","sha1":"12ffc8146af0e98773ccdde9f3ec3242be9e0aa9","sha256":"ab72e374172cc19a36893951e9084cf413b57a91ad291874a5af1f39f691e992","sha512":"f29bbc7d3e8c2bb09a420eb2eb9fe12e4634dac5497bbe08630a6e68c657149ec5eae26100b7ef3534498b30e94a8e564f46272b5e1fef4c1f7dc37d5ba0979e","ssdeep":"","tlshash":"0711084469e34610819290bd39962412f2364457b93c7f2576be91457f8ca2d13f2bde","size":997,"data":"","first_seen":"2026-02-08T23:06:32.587229Z","last_seen":"2026-05-29T00:53:03.32576Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"b4c3548629f9e5e079ab9b3af0262d25","sha1":"c8c00ad2eff322f5f9ad9364058dd0b7b9c2ee67","sha256":"742149d7d3a95b318c8a1878870fec4cba7fcb7cb8fc7e6cca95bd80e30c21b8","sha512":"6a7367458863fe215b3eab367e6c526e06245f1d4c3cce533921e4398c5c96795b2e07a83440bfe69549b9a52117abcb49fc24dc948fc349a9a5c993a338b112","ssdeep":"","tlshash":"bb017b63395c6cb9f9de5db26109bab0600c3466b0a08ad9b9468d0490ed1754f0e716","size":709,"data":"","first_seen":"2026-02-08T23:06:32.606555Z","last_seen":"2026-05-29T00:53:03.373811Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2043a31532b1722c2d81ecdb69e3d858","sha1":"ece3ddfdc5f1ddf5594c40bff95a49f0cc29adca","sha256":"480ec57e991c4bf32e54ec81adf0523559c4275c38c858928eef9664b9c61c00","sha512":"23ec6e00ea9d767a692cb0ced8f2227c7b1873eaf67344d5069e22ac97f2dc16482d516b83e0180e8a98e011d6b2baa73ba680038f21c8bc7f958ec2f78d36b7","ssdeep":"","tlshash":"4ef09e11a01c7c79fdca0e3420ab7a22900b6821916be5d8aba25c04f0ea0354f3d102","size":497,"data":"","first_seen":"2026-02-08T23:06:32.613713Z","last_seen":"2026-05-29T00:53:03.368523Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/dotlottie-wc.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"05981be59a26970fbca1e5a8c7634336","sha1":"579e7098232d88c3a0cb8101b9ad9bd45a3c9f40","sha256":"71bd5d3c6e096c8a6e9a3a3f0acb0dcd5cfc610ac5706ff0251964ec34bc71e5","sha512":"4d31793eb824fbfec3447fd7a4a709d7605e7dcd276c710d599de8c2b059c3935922d3f78a3999ba095ed47eb92df069bbc5d9bb3a98a649aef2c15c4e54feac","ssdeep":"","tlshash":"31c0127be8f0eeb359728c5a80a6c3212a1a88d3d361037491881aac41208db9918ca7","size":187,"data":"","first_seen":"2026-03-07T22:46:23.632504Z","last_seen":"2026-06-06T17:16:15.531879Z","times_seen":8719,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"6f8eefc49879c3e361f61b9bea3fe51a","sha1":"22eaeaa6890dd43845f900633e325068a5b8f668","sha256":"304c0f8debc39d6c5da00dd53d9eec755a62af77fa285fccce076c635513d5de","sha512":"b77b8c4ab1968793dc7afec0f9094917b10170df976b9ec9d5e138abb36af40bf0ba34c98f0ba243fa3f26c088a07a3d2bbb8a60be1ddb9819ba62b16529ed80","ssdeep":"","tlshash":"dfe0f152f9ddbd70f5774c2053087f92b00c105230748ec4b291cd0480dd26d9b19326","size":418,"data":"","first_seen":"2026-02-08T23:06:32.605695Z","last_seen":"2026-05-29T00:53:03.37895Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"531dec080e6805d700411f87d61c9b20","sha1":"99e5322c32284f47927955a7533b0038cfc79a9a","sha256":"80abd1b1895eae4d056054d71206b781a4acf14d88520281eea146a04e50ac82","sha512":"3a2787be8bff4ef821c54c405ea13a641f0aab726467259d37f373c13c0e6fc15b363493d706a2ddd1b8a367eb7a8cbb93d2b89a8935ed0c504d686eec3acf5b","ssdeep":"","tlshash":"ff2180613d2c7c78fd5d4812112dfb70f80e24a2b2348aedba41cc1590de2654f0eb56","size":1121,"data":"","first_seen":"2026-02-08T23:06:32.607341Z","last_seen":"2026-05-29T00:53:03.369643Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"dcc367f449c7bdcb0f6d45317b112c02","sha1":"714544a62122de805fbd6357b585094ab398970b","sha256":"8f2b8e073a4556f7945c52b87ec289db8e2a8dc573d52a8910aaf36d1bc7208c","sha512":"ddcc6f62330e3c788bc90ca2c4031bbcc4b775fd584e6cb5a0e69ba0d569bbb8565e0760a329fb995e1c3202f565a89f7e9971e9dcdf7aa6050c9e6fe8731345","ssdeep":"","tlshash":"96218b62795cac3dfd5648511219ffb0f444a0a6b2b88ad8ba96cc28e4dd1a08f0e716","size":1172,"data":"","first_seen":"2026-02-08T23:06:32.608187Z","last_seen":"2026-05-29T00:53:03.370548Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/main.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5cf5cebedf8ec64d3161e568dc6a6bf6","sha1":"5c9dbbb4e83c72ca1adaf1294c47f2657bc01295","sha256":"6922b69f12163337cbd0ed8be71babe7a717c488e5db389f09618d8efd23a9c2","sha512":"2756056c50398b2d70e66f3f87a2cb333cb95a31b9d5ddad0ca92c4bebe7eeee6fc12113a2da9dccc751d0ed12a460989d2725821dde4d3eec8e80ab1e49bf52","ssdeep":"3072:N5i2qY4caSkTc4m8RB59oI5bkZj30lDGzDK1My5vU1izImNlTEmG2bwqm5RvWIyW:K2qY4caSkTc78RB59oI5bkZj30lDGzD1","tlshash":"e804a60125cc540223064efb765e76e5da293f9fb8090d9ad668bc34b9d6123fee9334","size":185481,"data":"","first_seen":"2026-05-06T14:21:54.430556Z","last_seen":"2026-06-05T01:47:59.127483Z","times_seen":2071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-F5EFWER6.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"e404af09dd04bf3f85ef25ff477f2235","sha1":"c01a359668d3860945f3c1ef49b66bd623ab25e0","sha256":"636ae4031f3d4cec06693504293bcd55d5ea42a0022e579d6c2d01620024054d","sha512":"a49dea23ac5ed1b82c7edaa62d0fbed4195bb48aff92378adcda6891c8d581aba45590892137f314a12e4f881daead6ff63d51696b1075c8f7e1041c1d694b00","ssdeep":"","tlshash":"1d019ecc78b8bef287d25859405feb02e6265451d56a405022edaed4d07c8d789a982f","size":672,"data":"","first_seen":"2026-03-05T17:25:09.886647Z","last_seen":"2026-06-06T17:16:15.547888Z","times_seen":8721,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-B6AP7WKV.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"aea1f7a12b77f053393b67da3d1b2d3f","sha1":"7e8a73d43eb55f2c71d13462612b76ff1ca25868","sha256":"616548b059f0f23b65788280822758eb77f06ef32e87bb5c0a5f095c551c8ded","sha512":"7e54a44f9323341e085f6fb3e9827317a02e6860ade964878538b7a61c2d86ec0ac519fa88b298d01445792e818db67e9f0b704e20240dc1e65d91b7627ec7a8","ssdeep":"1536:LRmQu62qGsOOAPqfsPSQVLOavQuwQh7qsu/2/eC//m1P67tOTcMUPvEsjJwyHiDr:VmQTuifsPbzw","tlshash":"c4a4e5b2738817a6e5480ae94164a20bd4fad42d342525ccebf6b797f43d9a2fc1c374","size":474281,"data":"","first_seen":"2026-03-05T17:25:09.904767Z","last_seen":"2026-06-06T17:16:15.556488Z","times_seen":8722,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/vue.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d510c12b589a26e2c72f65a1e726a347","sha1":"61131c8e8cc4151fdc2d89e21f95ee27a76710c1","sha256":"d535a5f003b5350e4753025226c81f30cf883edb0ddc01901a31e49f0a9740b5","sha512":"a31326ea137759a06e3c7d26f26ca4adfe31bcc7b96cf24710bf6ef0cc1ae778b883f2f838145e8c615dcaeff42fc8118bec25d83eff4077ed24e67a20ddb945","ssdeep":"1536:DUXY7qLtpHt2P0e1mZ8I6H82RaLPMBlo5VV2B/S/r:SYeJpN28efKMBlmV00/r","tlshash":"c29308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","size":93674,"data":"","first_seen":"2025-12-05T15:25:52.043787Z","last_seen":"2026-06-06T17:16:15.551972Z","times_seen":21928,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/axios.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1eb8e8e2284670dc214a3e70c25992b8","sha1":"94ece417aa560aa8de906e8f54c0985da90364cc","sha256":"96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455","sha512":"ae6cce74fa46a0ee1b00245f7da885ace7bd608d96152f3b4d9b2c1e66d53cbf5c1f298d1eb60cdf4a17a14296edc2fec63c22a7cf968025911ebe9272f7d49e","ssdeep":"768:iE/e1fRWqcYe4Q2q3jetDArR2d1mP2EduTgeIQN/s:VGoqcY22q3GASme1k","tlshash":"0a1385c6fbd57803b51630a98e8f754a76b4d05374046ca5bc4cb9e83fd883c86e6a89","size":42736,"data":"","first_seen":"2023-03-08T19:53:18Z","last_seen":"2026-06-06T17:16:15.523524Z","times_seen":25324,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"6bbe2424d1d7750ef4030b79956cb835","sha1":"9ec07ba0765af240dead5bfeff9d3f974a5a08a0","sha256":"3657ec39933edb81a5b39688d2470143b1918733d58f66a735182249d562eecd","sha512":"50bd1a7f6b3d10b01ad73858a2c3b6fd1dafd662d2b4a1e9b2a7c4ca8c7f74eac468becf6ddd183bef1bcb648fd7cf22b2a81cf32ff6c89e55c0f1169cc93a0b","ssdeep":"","tlshash":"23f0aca37c3da426fd0300a24515bbb3ea0c347832780aecb9909d4a744e0715f2f729","size":640,"data":"","first_seen":"2026-02-08T23:06:32.612725Z","last_seen":"2026-05-29T00:53:03.374825Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2fe2c701f217e8fd9884e070d9eb778e","sha1":"36216437f256209619b81bf2d6f44d2f48601130","sha256":"06fcee91f631d1269d3a3341b28fcca2ba46094312ddd904151fd5ca87842150","sha512":"02bc419d4288db6fc1aa6e0761beac7498a445a3e6a51a2b207b23e6e25df0ecebb295c15f88376f46325d4730145cc5afff00a0384ef6ae6e3210a88df10e41","ssdeep":"384:r3zRuvgyiJ73Ai6i+Ar1CmCfuisFASSEj2BbIJzLDK7Lqf79:r3zRuvgy073iiv1CjKn6n7Lqh","tlshash":"72b264f986bc94fc9a47565aeb376970d30e94f9b96085e0543ec9f0c0a3ba4cb0781d","size":25284,"data":"","first_seen":"2026-02-08T23:06:32.614738Z","last_seen":"2026-05-29T00:53:03.377843Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-SI7D3PZW.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"4915cbe555f5ca0aa6534f7592c55fd1","sha1":"01683f93f73717af0c3fbb9a6aba1c1cc72188e6","sha256":"30fd7438846b02993a472074e050860ad1b4638f5f36a9f07940fdd741aaab85","sha512":"eb5f9b688df0c4e82837699361394f865eb2736882f3b5d8f46fab3c58384c805ebe827297941144bbc2dc11dbf7f04c3429a53a8d774ee6e4f836c35b81ff2b","ssdeep":"384:fHOyHjPQ5GnHixKWPY1rVdeqGRUkKpvKtvV3jM4:vD3nHixKWP+rVdgrKpvKlVw4","tlshash":"16a2d88076f994b34ad582d6dc79460fe250349c682e846dfa7ca6ef1938f41a1ec732","size":23376,"data":"","first_seen":"2025-08-04T13:12:55.035191Z","last_seen":"2026-06-06T17:16:15.54522Z","times_seen":8841,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fcd570a1ba15887c26e102af88786157","sha1":"678eab1dec7276847531a9f2ac2a23f0bbee6d65","sha256":"968cd39817ee79faec4e30ead85701bea9423bacb9e04b899a535c291221c02d","sha512":"6d88a32eca50f74d2efbf2ca0765ef473050b377863b56d2133eda447a6c7d444f80386798e10507513d5eff8f8fb7439559c71d9dabc98431b459b1713679b6","ssdeep":"","tlshash":"aae08662ac54172cfce73dd9a463522a3431650238984865d8f8755a20d6c95d4bfac8","size":327,"data":"","first_seen":"2026-02-08T23:06:32.617854Z","last_seen":"2026-05-29T00:53:03.372621Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/font/img_174b494bf5bb_pkpfsy.woff2","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.443Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/font/img_174b494bf5bb_pkpfsy.woff2 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 122820\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"b201a2b2a1327d5b484b424b736937b4\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=71q20JEI0qjC91WGsIFgRXlnvR%2Bz9uHwni%2F7oUMxZyTbHUrimV5TRh7MhVgDQ76zKKN8O%2BaoksHxBTDrbFuNI1hIqkNOv0b2lfEMBEzz%2BatE0HWHjJsSm7EslPe6yg5IZ%2F%2BPFAit\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735093456bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":122820,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 122820, version 8.0","md5":"5b4370ea9799a250feb4ad2733a0640c","sha1":"04a91cf17814b49a4acd307727a34ac05c08315b","sha256":"30340b72c6991d891792731fb1dd492ff6a2c530adee3b22d13c5fbc522601e8","sha512":"48076a97d96a3cef07090e1c9c920a6a9ec129f24684268e22976632e0902149d3a9f60b48d863c94f13a3178e08ea0ddefe79f6239641f6c061658dac5fe92f","ssdeep":"3072:3GQ2nX+Hn11TMbkhRVNGGsOQEv+ZV+Cfo+MmzhvN+ddk:2QrbTMAyGlQK+39NB6k","tlshash":"49c3124bea7af418f01b23b984f4abb269dbcd44d6e1da2a530f06c51f9fd34121b119","first_seen":"2023-04-20T09:59:46Z","last_seen":"2026-06-03T20:38:28.206632Z","times_seen":363,"resource_available":false,"data":null}},"time_used":1135,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":789,"receive":346,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/img/img_2b9387ade84b_1c5iac.svg","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/img/img_2b9387ade84b_1c5iac.svg HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: W/\"287defa879b05ba4090291400d27b83f\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Xz49NERzu5F8YdQ2M68oisZ%2B3EIcrAKU2oAEBGYj82FkKJQpWCZdLMLisAUU5fCh2koB7ldRAsMg3GmlUTMyLASnfxGeOwHK%2B9n%2BFGQCCjNUlDSQ%2FQJTB9ZWgC9%2BVrhkmEzGeYwY\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735094e56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":344,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"57a8088f4ada1ff4746e612e093485c1","sha1":"aa13489d7b48dd14382408ed0c9e476da8565151","sha256":"0523b41191660f11968b2d29eb23a5184af9b2eda14355d4a67ff83275376c59","sha512":"55fac9becfc5e0bf23cd43937907598380e9aaaa67458e3cd815982de4aa0b1f87c7b11ebb248af6caaf39b88a8699c13f2f9fa593c4e306d87ff20df7c71d3d","ssdeep":"","tlshash":"1fe020f9640de014900c8a725d5e555b306fb0ee51cc545df3c15d06b848cd789187c4","first_seen":"2025-06-27T18:19:38.333639Z","last_seen":"2026-05-29T00:53:03.31883Z","times_seen":83,"resource_available":false,"data":null}},"time_used":829,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":829,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/font/img_cd85b73cb21e_fr100p.woff2","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/font/img_cd85b73cb21e_fr100p.woff2 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 68268\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"5eb1822a905b164d0161bfda92cf40cb\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U%2BwT2WREthi6WK%2FKC0x%2FSyIC8r3qWEl14ciNUk2wKefjzc4G2lOJ2uacnXHWk94pwnU0WH0%2FPMArustc2bJfsRIyak%2BV66bjl9Jgbl034pNESzMJKxCvf9TyB9FSYA3hxL8VprL1\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735398656bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":68268,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 68268, version 1.66","md5":"a588b6c6cd73da210cd852db686aec1c","sha1":"87cad6880220e7fda4c249a3059bd918a3030626","sha256":"ba4dede1060ef8d2ad69231ffe135ae4a60cbfade5dcc79b489a80ece8b97796","sha512":"eb99f0dfa100e105e4ab72a9afbc76bf698cc1ab4cf88bee7b42afe546bbd17ef50d30464652404e8edd79d29f54206478d3ccded1733c40e5a40fab1e82c7f8","ssdeep":"1536:lqRasOrFZMt8ciLiSPbRKioTiyx2Zx7jC4zhwFn:g4sOfS8cTSPbpVrl1w9","tlshash":"e663026ff03e91389a78ae4dd077a33c9ad902925e1da9044d016dd97909a7fd3738cc","first_seen":"2025-06-27T18:19:38.327625Z","last_seen":"2026-05-29T00:53:03.367476Z","times_seen":87,"resource_available":false,"data":null}},"time_used":1037,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":810,"receive":227,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/img/img_294c2a2cd2ef_ehpr3e.jpg","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/img/img_294c2a2cd2ef_ehpr3e.jpg HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 309768\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"93dcf6471b4d0a32c8618b4d9cfdc70d\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KqWEF%2FA8Xs9aukUPa1U4o3jVSP%2B7xGOSSFC7KEY5upSSL24aNbThT9kiAjTnMw5ZxFLdSslHyHCW4%2Fo3TbO3OYjChobmM3iY2BKR%2BLC%2BOaQ7KC04ahQ7o2JrIHGqhSsNvbmCfN4%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735297256bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":309768,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Copyright (c) 2017 f11photo/Shutterstock.  No use without permission.], baseline, precision 8, 1848x1488, components 3","md5":"5510325b32640fe5e8660f99a76ad727","sha1":"3c56b82cff7426847546c7dd454834b1e5827e52","sha256":"9d4e9782cacce13a6b44c9700024c1eed04800c6d798774e0e6375ac3759936b","sha512":"b1404d2d7af019be9d7789a66eedb941b64e7f6f2f25518c4fa100b97b74ca5e55d8fbe2a270adb760fa58d5f31289ec145a2fbf61f3e7e1e3922c91e98bc0f8","ssdeep":"6144:vF19iGMXDGW540ijpCTV6b1cb2XJj+i0/kBbFsG+Jk:vFfiGM6W5ZiQT0b1cbsf3bFsG+O","tlshash":"d9642309094becdb7d7296467c9a7c4cd0a79bb831a4db71f8236db4eca645d8023c4e","first_seen":"2025-06-27T18:19:38.314803Z","last_seen":"2026-05-29T00:53:03.359746Z","times_seen":83,"resource_available":false,"data":null}},"time_used":1217,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":809,"receive":408,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"georgia.org-fmn.one/dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:58.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://georgia.org-fmn.one\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: nIg6YYQPZEiYI5t1JPlVSw==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Thu, 28 May 2026 12:32:00 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: WWW-Authenticate, WWW-Authenticate-username, WWW-Authenticate-userid\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=x3YStZXqVYXl8yuFd3wBsraNYVr7UA5yCGe1rJIR1%2FjmEoxzJLNTbnDQDttjPd%2FVzqfSrD1VZCwBckkqiQaGH10Lw6da6y0l2rUX1dPpWbUxNhRA6PVI4M6Dn5UxVvcZFJnFmmFV\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: a02d47853ab556ab-OSL\r\nContent-Encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=617\u0026min_rtt=586\u0026rtt_var=219\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2348\u0026recv_bytes=1262\u0026delivery_rate=3956284\u0026cwnd=52\u0026unsent_bytes=0\u0026cid=d29ed7af34d8f042\u0026ts=2309\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T18:09:48.345789Z","times_seen":16186679,"resource_available":true,"data":null}},"time_used":2316,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":2296,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.436Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/css/dkmlpsbe5766.css HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/a_index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:45 GMT\r\ncontent-type: text/css; charset=utf-8\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: W/\"890996537c20f4510184beee593a5f41\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ijzSjZdsHN8MCj1E5oNwtmGj7Xr51uz5QvdXHcfhBtLNRygR4WuoZVFfJkWe8S7QtUzRmxO8dN4ef9K%2BfthMFnwC9%2FO%2FLrbSKOvFB6cwZMrgLWy%2F73DpuojO1A0diFix3iWGEc1K\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d472eaf6a56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":195002,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (13819), with CRLF line terminators","md5":"1e56a1eb1bf62097486d564590b3b0b8","sha1":"92f8d1c2fc57f6d976327881f16af3154354e703","sha256":"1b9d8ab0021af1c234589fe0e18f5358aa1e7642d5df8f9fc2bd561c824b5e50","sha512":"6590a640b16728cbed3147662296b9adbb7ade313a3fa7e965a40430b2e56588a0d1c887935096c0a6c2c0c7011635aa541a76acd0dea92451139c9a11bd3cdc","ssdeep":"3072:ilThLlTholThOlThllThtlThFlThclTh8lThglThplTh7lThqlThJlThvlThAlTq:ilThLlTholThOlThllThtlThFlThclT+","tlshash":"f414c915f414122d4223943df3a7ff98693cb0719d441abcfaa7525e83e7aa26bc7c09","first_seen":"2026-02-08T23:06:32.583031Z","last_seen":"2026-05-29T00:53:03.332412Z","times_seen":81,"resource_available":false,"data":null}},"time_used":950,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":834,"receive":116,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/main.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/main.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Wed, 06 May 2026 01:18:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7J1ARB0ICDdLk1kBQhg%2FhcWWiWKYr4NRdBkE%2BoJnGiy0wvG0D1v33bbDJx6AN0D%2Fk4l6dIoCird2cX7rbbsAybxk7%2FKFeFjQmJDIVH3FwL4c%2BGPBXZQFUKzlSf7dSv%2F83DB5mwOo\"}]}\r\netag: W/\"027c81f918e84c980cee0c16308374c0\"\r\ncontent-encoding: br\r\ncf-ray: a02d472ebf7d56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":185481,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65218), with no line terminators","md5":"5cf5cebedf8ec64d3161e568dc6a6bf6","sha1":"5c9dbbb4e83c72ca1adaf1294c47f2657bc01295","sha256":"6922b69f12163337cbd0ed8be71babe7a717c488e5db389f09618d8efd23a9c2","sha512":"2756056c50398b2d70e66f3f87a2cb333cb95a31b9d5ddad0ca92c4bebe7eeee6fc12113a2da9dccc751d0ed12a460989d2725821dde4d3eec8e80ab1e49bf52","ssdeep":"3072:N5i2qY4caSkTc4m8RB59oI5bkZj30lDGzDK1My5vU1izImNlTEmG2bwqm5RvWIyW:K2qY4caSkTc78RB59oI5bkZj30lDGzD1","tlshash":"e804a60125cc540223064efb765e76e5da293f9fb8090d9ad668bc34b9d6123fee9334","first_seen":"2026-05-06T14:21:54.430556Z","last_seen":"2026-06-05T01:47:59.127483Z","times_seen":2071,"resource_available":true,"data":null}},"time_used":2189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1850,"receive":339,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/font/img_c1d6012f40fc_3kq0me.woff2","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.525Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/font/img_c1d6012f40fc_3kq0me.woff2 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 162624\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"53a80c9b56d1b537ffac95ee5164a0e6\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=waDGh45H5rDw2Xv8YLACllguBjwYDSDZr4e5jwadcykXIrA55q6tUMk9tHpiUl9t6N11U3d0Rdw5qzKi1jdQPCR8C00m86hvlPTF7iZfMDG8u4JX8ToZGJNREbxT%2Fim11F7iA6%2B3\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d473589f356bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162624,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 162624, version 1.721","md5":"8d65d0412e1cc67140f2764d535d54ef","sha1":"6d43906f20ffd3f058761f322fc42f97b37888bc","sha256":"7e2948403dab5e623bd30983fb2bfdaa7f8afc32ca6c0c099e031b6027dc5385","sha512":"d6175994dacc7a653ba806eb2278de689993b720df2101d03267fbd6cd4daa79bdbbe38e74c1ef371ade2cd17802cafaf42d42c4b959665eac9f7ad70c0e771c","ssdeep":"3072:Zid3OSVum+twkpjxwcEUN9RgZXqoSMl+b2yjmfSU8zvmdlv3rQTZSVV8+DW:Zy+JiEjCcEmq6oS+byjmfSXC7QTZSVKj","tlshash":"e0f3127f660653c079c5c4657364e83b9f3c24521a9b98eeaee62d103bbf80234b65b0","first_seen":"2025-06-27T18:19:38.282132Z","last_seen":"2026-05-29T00:53:03.313977Z","times_seen":87,"resource_available":false,"data":null}},"time_used":1030,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":701,"receive":329,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/img/img_4591274bf4be_2l81wj.png","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.336Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/img/img_4591274bf4be_2l81wj.png HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: image/png\r\ncontent-length: 1638\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"14d0cacad9f71d9e13b2781ae6e38a7c\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U0hoiL8eOEcxMLNQgG%2FHmkbQXfT0Y%2BEkxXuD0DunLlJQ%2BI%2Byu%2F8xzhF1o%2BsajzboM%2FTZNeehbbrgjmW1daEqK5Ap0w92jpsc%2F5%2FzI7%2F%2Bn%2BF93jIZLfYnVVJOBsTJFIb6eSDM5bns\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4740dae856bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1638,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"fc7e0f5a19acce7d79467b8847fbeb49","sha1":"40bb81092e628f25608574d9e93183f13566367a","sha256":"955900f2f2bafaf5a992daac4fd0067ccd42395e545fee08e46165cc8873ad4c","sha512":"2a7f8fbeb99fe28e04a76ddf74dd22b2e8fdaefdb81af6f48ac64d777695788fa8d9691bc7e077f679ab48ffcb2b7446c1850e179bda6379e363922a9999c5eb","ssdeep":"","tlshash":"0a31ea8295f286b5d901136416bf8c1f8bf7cad8b83d6cea60aed9bb1d1118c1138466","first_seen":"2026-02-08T23:06:32.602388Z","last_seen":"2026-05-29T00:53:03.326407Z","times_seen":50,"resource_available":false,"data":null}},"time_used":920,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":919,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"georgia.org-fmn.one/dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:51.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://georgia.org-fmn.one\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 7WK4Fhkmgd66DsKHTVXN2g==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Thu, 28 May 2026 12:31:57 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: WWW-Authenticate, WWW-Authenticate-username, WWW-Authenticate-userid\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=eTs0%2FWPbkXVFGMrOFBI%2BQTlEyWt2LoVQtcK9z4qSCmKqBgWiK2XT1OvJ0zXqLCFM0qJjEQweHNus8WY4yy4OwmugqWV3cG4%2BwnYo0gaY8zuN5kBkRQgnijq1kWxM8mx8htzcvYrI\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: a02d475d4a42b4f3-OSL\r\nContent-Encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=530\u0026min_rtt=519\u0026rtt_var=166\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2422\u0026recv_bytes=1391\u0026delivery_rate=4967409\u0026cwnd=52\u0026unsent_bytes=0\u0026cid=6c3344c0fb9ecf99\u0026ts=5827\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T18:09:48.345789Z","times_seen":16186679,"resource_available":true,"data":null}},"time_used":5832,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":5816,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/common.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/common.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NSLasGbk11VH1WZ7JJSg0AexGBGz8Y8bE2lkfUXnuiIMrqRnp6gyqwzQ7sVafqaN8DJtkG0dTeqUqMUkdcxFSr%2BLLSOBIBHIdBHDPd3MShM%2FhORlzdeb4Td00zXhsTMYMZfZdqpF\"}]}\r\netag: W/\"03c0143b232679f257415fd44440e998\"\r\ncontent-encoding: br\r\ncf-ray: a02d472eaf7256bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":997,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"67213e6a3389b07f0863a0d85ff11f66","sha1":"12ffc8146af0e98773ccdde9f3ec3242be9e0aa9","sha256":"ab72e374172cc19a36893951e9084cf413b57a91ad291874a5af1f39f691e992","sha512":"f29bbc7d3e8c2bb09a420eb2eb9fe12e4634dac5497bbe08630a6e68c657149ec5eae26100b7ef3534498b30e94a8e564f46272b5e1fef4c1f7dc37d5ba0979e","ssdeep":"","tlshash":"0711084469e34610819290bd39962412f2364457b93c7f2576be91457f8ca2d13f2bde","first_seen":"2026-02-08T23:06:32.587229Z","last_seen":"2026-05-29T00:53:03.32576Z","times_seen":81,"resource_available":true,"data":null}},"time_used":834,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":834,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/card-refresh.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:48.326Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/card-refresh.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:50 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:51 GMT\r\netag: W/\"176365d5a62e8a175a3ae9085db64a6f\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F1GYO67cM6hjbo7tvdI0f79jsGM25%2FfjhV4H77PoDYCPSXLNl2APGgTpnK3kY8%2BG%2BCJa0nMVu9zt%2BWmEqPS4%2F1UbpQxg345Y942UXh6OCH3to8ZZ2gXQjSDjajP1uOAWRtDfzhMi\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47470c0956bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"4c8d90fb3ea4c2d57299eedb41a2e20d","sha1":"d22bd75e679fd93d69269939d855435b87453c0f","sha256":"7a0822eefcd060a8fa86ee2c2e778f59c5eb11e5cd41818f5059aea5c3da3f7b","sha512":"5a4cb1819a56e40527070a8e6613ca2f523a61e989f1c7148023c327f6eae3b124537880b1ad6678e1def808a0e4cbd3f58dea9c363675f3f7a876c81bb60075","ssdeep":"","tlshash":"3b31fa39e13a434cce4ae9b8301738c7b755c7012981204bd63b54a4d5e51ac37fdc21","first_seen":"2026-03-07T22:46:23.623456Z","last_seen":"2026-06-06T17:16:15.526661Z","times_seen":8589,"resource_available":false,"data":null}},"time_used":1977,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1977,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/dotlottie-wc.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:46.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 May 2026 17:38:50 GMT","end":"Tue, 11 Aug 2026 18:38:47 GMT"},"fingerprint":{"sha1":"85:3A:E3:4D:41:9A:40:A5:EA:4D:21:21:BC:8B:AF:E9:9B:B2:27:3A","sha256":"41:2C:5C:27:2E:1B:0A:16:BA:4A:09:22:08:86:E9:EC:B5:B9:C4:CF:94:00:3A:8F:52:77:35:8C:F9:C4:FC:A4"}}},"request":{"raw":"GET /@lottiefiles/dotlottie-wc@0.6.0/dist/dotlottie-wc.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 28 May 2026 12:31:47 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: a02d473dff225ebd-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1841800\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 28 May 2027 12:31:47 GMT\r\nlast-modified: Thu, 07 May 2026 04:55:06 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:cb1dPG4JbIpumjo/CssNzVz8YQrFcG/wJRlk7DS8ceU=:\r\nfly-request-id: 01KQM273C31QMZ7DG39842JETZ-fra\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":187,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"05981be59a26970fbca1e5a8c7634336","sha1":"579e7098232d88c3a0cb8101b9ad9bd45a3c9f40","sha256":"71bd5d3c6e096c8a6e9a3a3f0acb0dcd5cfc610ac5706ff0251964ec34bc71e5","sha512":"4d31793eb824fbfec3447fd7a4a709d7605e7dcd276c710d599de8c2b059c3935922d3f78a3999ba095ed47eb92df069bbc5d9bb3a98a649aef2c15c4e54feac","ssdeep":"","tlshash":"31c0127be8f0eeb359728c5a80a6c3212a1a88d3d361037491881aac41208db9918ca7","first_seen":"2026-03-07T22:46:23.632504Z","last_seen":"2026-06-06T17:16:15.531879Z","times_seen":8719,"resource_available":true,"data":null}},"time_used":522,"timings":{"blocked":15,"dns":1,"connect":1,"send":0,"wait":490,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipinfo.io/json","fqdn":"ipinfo.io","domain":"ipinfo.io","tld":"io"},"ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:46.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipinfo.io","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 03 May 2026 16:36:00 GMT","end":"Sat, 01 Aug 2026 16:35:59 GMT"},"fingerprint":{"sha1":"06:75:C4:FB:38:6E:E1:2E:FA:EB:1F:53:64:D4:A8:68:81:AA:9A:4A","sha256":"74:4A:07:24:C9:DA:4C:BA:4E:1D:C1:1D:2D:9D:6B:AD:65:55:3E:08:89:78:B2:E0:36:DF:14:3D:B1:7E:BD:21"}}},"request":{"raw":"GET /json HTTP/1.1\r\nHost: ipinfo.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\ncontent-type: application/json\r\ncontent-encoding: gzip\r\ndate: Thu, 28 May 2026 12:31:47 GMT\r\nvary: accept-encoding\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":280,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"adf22d9a8ca3a97a9ff78909b8702358","sha1":"f5046826566a7e98d6b5e5c7b0a65677c3bde708","sha256":"756edd1454b049c1370e83c864bc93dfdd82f44d8f9752b3068e5a11867a5de3","sha512":"182391c8c01e54481853a09aa4cf8072496850e45863b198721d0d572e3aa93d8fe11a90bfb24cf97fa64cc132f1594c379474db65db5a1d2207694f770443b9","ssdeep":"","tlshash":"c3d02b6621341b37aeed455c8406960622656e1f1642369f0fe72b0c100c87334f03ae","first_seen":"2023-04-17T17:28:07Z","last_seen":"2026-06-06T17:26:23.031306Z","times_seen":58737,"resource_available":true,"data":null}},"time_used":308,"timings":{"blocked":78,"dns":15,"connect":26,"send":0,"wait":151,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/amex-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/amex-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:51 GMT\r\netag: W/\"e8ae6611b3b32bed0bff1e9023d30cc3\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J5lxbXCAcd6NR28ZU2u%2FKpylHSqXbQ8Gya2ToQSDRFVh%2FLIyUXFg1JuBDBmQo9AKTuWAkRvM05K2qGPzwU4FXV169v53NW%2BaIxfpzhbfziwjAuICyIOJFycbPYCFk0UzkYNz3Fqd\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47424d1356bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2166,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"5e09aa53ccdb2de94e4093d3c52b466c","sha1":"b3d7cfc8788bc9a17a509bfbe34a097de7355554","sha256":"d77fe435701de13d2dac9cfc1f66ed1469a862e0c55a89a45db432652ba059ae","sha512":"bdf88bc17c1389d4650d572f01c01d4c1ab01b868a774863f3b56b535fb6acc9554ff4b586b74e145b6c875531b22438a35bb32e50816ff0c20410d10f96921b","ssdeep":"","tlshash":"0e5119984516d7f2c6a6a2b4e6b78a822d7c220096c2ac91f90dc755ab69d9d248f0c0","first_seen":"2026-03-07T22:46:23.63844Z","last_seen":"2026-06-06T17:16:15.55394Z","times_seen":8602,"resource_available":false,"data":null}},"time_used":686,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":686,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/diners-club.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:48.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/diners-club.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:50 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:51 GMT\r\netag: W/\"fc66052d25a8f8f77bd3232ddd28fbbb\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PDA%2F7C2gnQHQG1aVj3CtKQ63EFLrfHWHEPJJb%2BLqNsoL%2Fam9Wj%2BxRBihCByQpnp%2Bn2vwGlv8iY55XbZtB9jy1wmXXAgEaUZNg7kWW%2FlxdglZNGnoixtwqSTGd57zGFf5CsccOLHK\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4746ab7556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1438,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"aec125624de33fa15362b62be9a1f673","sha1":"02a558c2ff1a97d388042f0f9bbb4778dbe6e79d","sha256":"ae61a1834e7ba18e6abaf0316e33f743f711e2ca007f61ed1b65ccb77ca47c83","sha512":"8f05c54d359b19db112d14009603ecd3d9a1306e891a000e6a60ea953861cc69653a3479f70a02a8e3ef6f7c065eb41127bab60dacc47043fae27124365215a6","ssdeep":"","tlshash":"68410a66d918d395d4beb0f60b3a01e46224fb04a50e9c02c86b9d72796437e3f9f0b3","first_seen":"2026-03-07T22:46:23.616138Z","last_seen":"2026-06-06T17:16:15.562351Z","times_seen":8588,"resource_available":false,"data":null}},"time_used":2066,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2066,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/api/open/addClick","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:48.331Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"POST /dds/_frame/api/open/addClick HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/octet-stream\r\nContent-Length: 265\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:51 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 119\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: WWW-Authenticate, WWW-Authenticate-username, WWW-Authenticate-userid\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=if6hKBmcRYuVOgMiW%2B7XAhPQ2yt4VCa8JGloOjkcEGXQn7hFGJ8r6OB8Zd3CzsigCricLgxS0TJpxJAv3xhFDpm2EaqBhwDmGUfMSl9MOjAjgLUfJEwLb3r2pAnkLOBPwGrFYPPU\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47471c1956bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":119,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"be30f3e8709da72506db944462055f05","sha1":"cfb3c2be2dcde431fd65b710b4099880b0d05a2d","sha256":"43aebf29d5fdcfe7f0643f3b01c90213c73ca996970f08eb324dd3b85bc2f93f","sha512":"5b4eb0d7cefc5fcd1c8097cebafd1ba732f3809744348399759727e1496a5e7164f813abcea06cfc16a5f44fb689279d8615a2ae4a90698b8f5392ad6c4b3f44","ssdeep":"","tlshash":"c6b092d0a1fe6db18c89ae4894f4a42b0411b115ee900195808b85a697392653ad6a5a","first_seen":"2026-05-28T12:32:11.888317Z","last_seen":"2026-05-28T12:32:11.888317Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3041,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3041,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/ws-worker.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:48.329Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/ws-worker.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:49 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 05 May 2026 00:21:43 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qi7MqhOdfMqzxbyv%2B6WfXxQ3Io2qvq%2FhGbDHnqpntvtWoscNO8rWWcoD5ma%2Fq8SufGk9XgJV4xksvpFQdx%2Bd%2B%2FGJfLLCHCP4MSKiqF0ZXXmhcSebY%2BxrZsexNwxv78iENSo0bdFg\"}]}\r\netag: W/\"4c7b07cba5e23b6bc37f81be1b3d9b19\"\r\ncontent-encoding: br\r\ncf-ray: a02d47471c1056bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18325,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (18325), with no line terminators","md5":"a4b1d45c0ae50cc78fb95cd14ac5d729","sha1":"251f1ae04547d5e7963964a06dd662db269aecc8","sha256":"acb27669bdfa7c5e1fcfdc72c8e5ebf26ee6dd44ae754cd46477d291f237b6e8","sha512":"0eec215862b6249859c2ab7e9bddcaa37a400760c61de3a3b5166bb972b66c19d97a15b6ef9fdffd8c18a5b01519c2c120c632a02474bc19643bca4670019f3f","ssdeep":"384:oysQgbkJv8BnxLvM5N44G/5KDosMQ5sylkefA55bN2GJMT5R7zV2aIwRVR6e+ZJ2:oysQgbkB8BnxLvM5N44AKDosMQ5sylkQ","tlshash":"e782a8547fc035a037476fbbb13b70e0e92b0d8a3d49065fc618bc58ba6135ad5e2a39","first_seen":"2026-05-05T10:48:14.896087Z","last_seen":"2026-06-05T23:00:45.622791Z","times_seen":3187,"resource_available":false,"data":null}},"time_used":1090,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":985,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/maesteo-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/maesteo-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:50 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:50 GMT\r\netag: W/\"3ce76fca14aab23555370ce949f7129c\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9j426%2FB37dMwhqT8Kl8jFvGugXz%2BuzzgqOQA%2FGNkJZxil7oA5LTCYYoeKQ0KuL06RJ%2Bk4QMAQbhDIw1MHg04yJydkoFKvyIEz5y7k%2BFwiqaTH1vpkfNazbYRuKZ2LNhcepfh6nJq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47424d1f56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1558,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"0321fb9bd8d28f6be9155b77acf17796","sha1":"1302e19d1355d631045ce5baab59725c75ee7a3a","sha256":"042935812e0fb44617d7cbb2f32bd6693c6a33377630554ed79e1fad7d877d9c","sha512":"58a3e38ccdf76ab61b0348bcca5a7b9c181ffeaa5067b951ff917c3b0cf9c59f48742fd524df3c0c994b4a2803ee17b6c4f4737061e8ddb2c954adba1a85b5ae","ssdeep":"","tlshash":"c74109169be18f69e1d2273844e34c8358791351e0d6ec56dc45a414a936774ee8d234","first_seen":"2026-03-07T22:46:23.635014Z","last_seen":"2026-06-06T17:16:15.533615Z","times_seen":8609,"resource_available":false,"data":null}},"time_used":2759,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2759,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/discover-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/discover-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:50 GMT\r\netag: W/\"143d15061f3d07f0bda1b270f7257850\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=g87c51ASjvVwJnoULxhGeX5cnxc2Fsf%2Fb3BtPejaukG0QURiL2OmbZ1nu4De2wG0fZo6twNANvejeBqTCIsOp9I1Ma8SXuR7VkotPeB953Er0uXHj%2FO66xDqqWvjrdFd%2Fdt4KCjn\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47425d3556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3638,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"a737c47eb9e414d0de0195b5c56a2c6e","sha1":"682755372ff57c42620bb9b7d453c9339df6dc36","sha256":"6cb862862fc8536523b9f6041c8e15ae015d64ce82e062297ec8662017b11819","sha512":"b07d00d705acccca7ac9169a4436c106305b9c720e23715cf630cb26a15680a1562666ab8870a26b8fbcff830dcf20a72686dc6acef0d885c4b1015c0e872d03","ssdeep":"96:sa+YveJC78aX1ddhtn7FTgXTCYKsDmTeyMbXQuOllcPMl3minwE0oB:s/YD1Lbn7FELkNuOllrpNww","tlshash":"feb16d2306a0b725de0279b57c906efda09dadeed6c16707ea42902633231ec675dd48","first_seen":"2026-03-07T22:46:23.628415Z","last_seen":"2026-06-06T17:16:15.544245Z","times_seen":8586,"resource_available":false,"data":null}},"time_used":736,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":736,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/img/img_7975c58b6190_imrs53.svg","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/img/img_7975c58b6190_imrs53.svg HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://georgia.org-fmn.one/dds/_frame/static/css/dkmlpsbe5766.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: W/\"58ef12779272c6520c1e5e639735a5ce\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wU%2FHUQL6wB28nPIn2t4yYq4w3Sw2r5gd16hvXmhQFFgYPUl%2F%2BIvX0alfJ0WhACaE38D30Vez149HRMa5O5OJuCy9ExnF9uQSbI5AWPvGHD1o1G%2BOJMC1x9lQ%2BoDL83G87aTJrwoV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735094856bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":409,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e35bbd52fcf0fa05d47ac55d82d8c0b9","sha1":"d1dd4587052c79c87e828bf7857eb24b7686165f","sha256":"c540b9bad782ba4e6d127db57d0c23d4a6d8e060b1cb55e916cf981b600dacde","sha512":"d48bfe04ab319c9bfbca5a96b880c04288b05eeef2326addfb404a25ff27f707a1e6fd6781f2df918c384aa1d516d9f356b37cdc8a40980d17ac2b187bf700a0","ssdeep":"","tlshash":"bee02bf55289654c4b118db0c96862d4e33e863d2e64b0ccb144df345413b944d4cd09","first_seen":"2025-06-27T18:19:38.330184Z","last_seen":"2026-05-29T00:53:03.358001Z","times_seen":87,"resource_available":false,"data":null}},"time_used":814,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":814,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-F5EFWER6.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.398Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 May 2026 17:38:50 GMT","end":"Tue, 11 Aug 2026 18:38:47 GMT"},"fingerprint":{"sha1":"85:3A:E3:4D:41:9A:40:A5:EA:4D:21:21:BC:8B:AF:E9:9B:B2:27:3A","sha256":"41:2C:5C:27:2E:1B:0A:16:BA:4A:09:22:08:86:E9:EC:B5:B9:C4:CF:94:00:3A:8F:52:77:35:8C:F9:C4:FC:A4"}}},"request":{"raw":"GET /@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-F5EFWER6.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 28 May 2026 12:31:47 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: a02d47413cc95ebd-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1294345\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 28 May 2027 12:31:47 GMT\r\nlast-modified: Wed, 13 May 2026 12:59:21 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:Y2rkAx89TOwGaTUEKTvNVdXqQqACLledbC0BYgAkBU0=:\r\nfly-request-id: 01KPV1Y1CS5AH9PAS12WMRKQWT-fra\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":672,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (629)","md5":"e404af09dd04bf3f85ef25ff477f2235","sha1":"c01a359668d3860945f3c1ef49b66bd623ab25e0","sha256":"636ae4031f3d4cec06693504293bcd55d5ea42a0022e579d6c2d01620024054d","sha512":"a49dea23ac5ed1b82c7edaa62d0fbed4195bb48aff92378adcda6891c8d581aba45590892137f314a12e4f881daead6ff63d51696b1075c8f7e1041c1d694b00","ssdeep":"","tlshash":"1d019ecc78b8bef287d25859405feb02e6265451d56a405022edaed4d07c8d789a982f","first_seen":"2026-03-05T17:25:09.886647Z","last_seen":"2026-06-06T17:16:15.547888Z","times_seen":8721,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-B6AP7WKV.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 May 2026 17:38:50 GMT","end":"Tue, 11 Aug 2026 18:38:47 GMT"},"fingerprint":{"sha1":"85:3A:E3:4D:41:9A:40:A5:EA:4D:21:21:BC:8B:AF:E9:9B:B2:27:3A","sha256":"41:2C:5C:27:2E:1B:0A:16:BA:4A:09:22:08:86:E9:EC:B5:B9:C4:CF:94:00:3A:8F:52:77:35:8C:F9:C4:FC:A4"}}},"request":{"raw":"GET /@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-B6AP7WKV.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 28 May 2026 12:31:47 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: a02d47413ccc5ebd-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 575279\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 28 May 2027 12:31:47 GMT\r\nlast-modified: Thu, 21 May 2026 20:43:47 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:YWVIsFnw8jtleIKAgidY63fwbvMuh7tcCl8JXFUcje0=:\r\nfly-request-id: 01KJQ8X5ED1557NAS2RRARVX05-fra\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":474281,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (21615)","md5":"aea1f7a12b77f053393b67da3d1b2d3f","sha1":"7e8a73d43eb55f2c71d13462612b76ff1ca25868","sha256":"616548b059f0f23b65788280822758eb77f06ef32e87bb5c0a5f095c551c8ded","sha512":"7e54a44f9323341e085f6fb3e9827317a02e6860ade964878538b7a61c2d86ec0ac519fa88b298d01445792e818db67e9f0b704e20240dc1e65d91b7627ec7a8","ssdeep":"1536:LRmQu62qGsOOAPqfsPSQVLOavQuwQh7qsu/2/eC//m1P67tOTcMUPvEsjJwyHiDr:VmQTuifsPbzw","tlshash":"c4a4e5b2738817a6e5480ae94164a20bd4fad42d342525ccebf6b797f43d9a2fc1c374","first_seen":"2026-03-05T17:25:09.904767Z","last_seen":"2026-06-06T17:16:15.556488Z","times_seen":8722,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/master-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/master-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:50 GMT\r\netag: W/\"976282e8217350df0f06d540ec756257\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AtD7cqYG4GxVs7M62sGdQUmmLcWt1jt6bHMYRCiAHdQevjkCapE%2FzLS%2FhKw6W3VUotu5kYWSIHQBquV9DES7ienvuDJ4OVXwhQPu3Q8najJrv1GR1Lu2z%2B48euIfJIWXcwCSh3BO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47424d0e56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1551,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"d33ae09835512c6dda3a7e1410958d7c","sha1":"8991716009f54f23ef048250d6ca523bbfa8f56c","sha256":"ce6bc7ce48c390f25d28e6c2c490afd824ae644054b6f5e11c12db8ec1cc581d","sha512":"47b65e36a445cf66ee3ef42470caf83b275b35d3e024d00d043530ff9e0d6e0819ea293aa4539cd190fb8cfffde8c686e32d9ba7529590bfd3305b6e93215710","ssdeep":"","tlshash":"f5412bd34418138afc89953c7cff2a52ba2b8d2c039790ded546a550266d97c16ad1e4","first_seen":"2026-03-07T22:46:23.62688Z","last_seen":"2026-06-06T17:16:15.549033Z","times_seen":8606,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":752,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/xxxtpgbu7585.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/xxxtpgbu7585.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Thu, 28 May 2026 12:31:45 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sa9VdeNSeAtJR3ia%2B5%2FAyW1wYKfrk6NTb%2BhGpxsR5ggky3xc5go0GioM%2FObXl499CwdNrwVvS0FuDWccZgV%2FO%2FFqZYdvHI8%2F80zWgmy%2BVX%2BO6Jgp%2B7WUpyQCOTx9sfLyfRB8ongJ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d472eaf6f56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"689525ee6c812e73a44b6aa1036ab53a","sha1":"7350cb4703a96ea7c140bd30da9a6d1bcff36eb2","sha256":"37ec4665a8102d115ffd1ac20dae94c98b4dac64b0c1a68228aa2a531caeb35d","sha512":"da6deff19f0b2bf5e0ef17b3cae34a0d44c5d48fbf9f3ffedd00cea74f923e1a3e9c4c926a6564c889cca21041550f557e1ec00db9e35502ffc794a5f9e9722e","ssdeep":"","tlshash":"5770000820028acc0000e0e0208c202000003b002020802a0000c020820028e20ac008","first_seen":"2023-04-08T18:32:13Z","last_seen":"2026-06-06T16:30:40.340058Z","times_seen":10626,"resource_available":true,"data":null}},"time_used":818,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":817,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/axios.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/axios.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 05 May 2026 00:21:43 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=axgX74xRv5Qp95om058xKyfwynuAZwPnvJVh0QS2Xm%2B2sUuJ2d6w%2FFie0YxAQ6IcEoauorwfQHA3T%2BZqU2A4dlbt8Je%2F94QDe5%2FfH4BSiKp5vwVN72vwxvmLqtJ5d6hP8vWnuO1s\"}]}\r\netag: W/\"71dde40d8ba45ce99df015e131e46e85\"\r\ncontent-encoding: br\r\ncf-ray: a02d472eaf7756bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42736,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"1eb8e8e2284670dc214a3e70c25992b8","sha1":"94ece417aa560aa8de906e8f54c0985da90364cc","sha256":"96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455","sha512":"ae6cce74fa46a0ee1b00245f7da885ace7bd608d96152f3b4d9b2c1e66d53cbf5c1f298d1eb60cdf4a17a14296edc2fec63c22a7cf968025911ebe9272f7d49e","ssdeep":"768:iE/e1fRWqcYe4Q2q3jetDArR2d1mP2EduTgeIQN/s:VGoqcY22q3GASme1k","tlshash":"0a1385c6fbd57803b51630a98e8f754a76b4d05374046ca5bc4cb9e83fd883c86e6a89","first_seen":"2023-03-08T19:53:18Z","last_seen":"2026-06-06T17:16:15.523524Z","times_seen":25324,"resource_available":true,"data":null}},"time_used":1021,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":793,"receive":228,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/img/img_27c18b00c300_nz52rk.jpg","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:45.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/img/img_27c18b00c300_nz52rk.jpg HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:46 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 549963\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Thu, 09 Apr 2026 13:07:24 GMT\r\netag: \"ff3c732d71d6c9da9934b4e0aff4c039\"\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=suKRvuuby9888piWcDUxlduE1q8mBJy9FoirpsE6FYy5WNQKK8qIi%2FxNotDGM%2BTzHomXn7IrX9J%2BifENoff%2BcWHr19cA47pZBsbMyyz2IMKs3z1CyXYJUk%2B5pUbfonGw3a5BrPWf\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d4735296d56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":549963,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2400x1465, components 3","md5":"727036bc6d70cde867ee0f5239fa45ca","sha1":"d94c66eda3fc855861915d66e0dcbe11188c5dc2","sha256":"b6391353acecec5254b23afcffcd919d46107c0447b4d9a32b4a5d84760a015c","sha512":"f924e25980305843235aba9bd2063c2df75633bfe3d15b95bbf0142fe21607ef9fff3d99bbddd5e83fe8cd703f6e3598c45d96f2b6a027c325ec04a870c70a95","ssdeep":"12288:y0jIsiOX+A1Hub2Hh8yTLFRLbJuQOjmCzzd3UYOm+PZcIxb7i:XIzOX9hpLz/gQOaCFUm+hc+O","tlshash":"7ec423765e525242dce860fe58a516607a368666c8c1a0abff33cd7f2317e3c1f1648b","first_seen":"2026-02-08T23:06:32.593216Z","last_seen":"2026-05-29T00:53:03.312541Z","times_seen":81,"resource_available":false,"data":null}},"time_used":1346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":799,"receive":547,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/api/open/getSyncSettings","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"POST /dds/_frame/api/open/getSyncSettings HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/octet-stream\r\nContent-Length: 50\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 14119\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: WWW-Authenticate, WWW-Authenticate-username, WWW-Authenticate-userid\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QIIlW1TlwaefcVY216u8kUI6XbZmMxohBpodFRo%2FK3rmrdr%2F02zjlcGfaF1iY42pXYjo7A1FLwTBU35%2FpUZPFXawkndb5xWNJItWbwvX05PyUlnxFxqH8sovbJncL76ZoEqR249s\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d473f991156bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14119,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"6f084e4294ac1fd56f88eea6a8105dd8","sha1":"d407ea08019529ad254952acfc2254cac77d0b28","sha256":"c4241d98a2f19f65a5d1713fdba08e482223cca9a19721e81ef2c65fba300638","sha512":"edc834ac0a550d4ca462630d05ba7ed184ff6e487d2fe2c94e98ad7646074005739403d9b6af97a8023520e1293b493c6b4dc23fee6f68afacc69742677a4733","ssdeep":"384:fvs3+vO23Topp8QNl2mmNuaOOgu92DL/xiqP8:3suvOqocQXmuaOO/923p3P8","tlshash":"8752c0794842774dd19d8c237c8a63a387ea653c2ce491dc21cfbdd3a983319abd510a","first_seen":"2026-05-28T12:32:11.902012Z","last_seen":"2026-05-28T12:32:11.902012Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1162,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1161,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-SI7D3PZW.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.1.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 May 2026 17:38:50 GMT","end":"Tue, 11 Aug 2026 18:38:47 GMT"},"fingerprint":{"sha1":"85:3A:E3:4D:41:9A:40:A5:EA:4D:21:21:BC:8B:AF:E9:9B:B2:27:3A","sha256":"41:2C:5C:27:2E:1B:0A:16:BA:4A:09:22:08:86:E9:EC:B5:B9:C4:CF:94:00:3A:8F:52:77:35:8C:F9:C4:FC:A4"}}},"request":{"raw":"GET /@lottiefiles/dotlottie-wc@0.6.0/dist/chunk-SI7D3PZW.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://georgia.org-fmn.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 28 May 2026 12:31:47 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: a02d47413cd05ebd-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 4164014\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 28 May 2027 12:31:47 GMT\r\nlast-modified: Fri, 06 Mar 2026 12:30:19 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:MP10OIRrApk6RyB04FCGCtG0Y49fNqnweUD910Gqq4U=:\r\nfly-request-id: 01KK1J15SDHJ6GJXF8DE0SC2XE-fra\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23376,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (11535)","md5":"4915cbe555f5ca0aa6534f7592c55fd1","sha1":"01683f93f73717af0c3fbb9a6aba1c1cc72188e6","sha256":"30fd7438846b02993a472074e050860ad1b4638f5f36a9f07940fdd741aaab85","sha512":"eb5f9b688df0c4e82837699361394f865eb2736882f3b5d8f46fab3c58384c805ebe827297941144bbc2dc11dbf7f04c3429a53a8d774ee6e4f836c35b81ff2b","ssdeep":"384:fHOyHjPQ5GnHixKWPY1rVdeqGRUkKpvKtvV3jM4:vD3nHixKWP+rVdgrKpvKlVw4","tlshash":"16a2d88076f994b34ad582d6dc79460fe250349c682e846dfa7ca6ef1938f41a1ec732","first_seen":"2025-08-04T13:12:55.035191Z","last_seen":"2026-06-06T17:16:15.54522Z","times_seen":8841,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/visa-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/visa-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:48 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:50 GMT\r\netag: W/\"80142bea315608e5cc389ee8d42c347c\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5ZnNl8UuaIgTqZfaxr%2BUFGSZXmFeuoPdWxrUa7TsIgyEo2pETtJC0sriB1diHTcmq%2BfjEeKjXzvri6Inzokvvzokb%2BqPafS5RaXFWDcG4n%2BWZJ3PnrFXjQtDusqpAACEuMVoBx09\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47423d0256bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2052,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"65e5ef6e1e662df2dfb177d738a34736","sha1":"52300d2f11f13d5ec7694b78951ef029eed486af","sha256":"ed2f990ced5ea2b6e51167148a75ec39a9c3e98e2e16259f31cbf3806d4403a7","sha512":"ee36269a8aecb4af648fbc8c5993f2489e0e0134080c6cb3afa2f365c6227ce8eccc3d21a07f6627bf38cb4e05c31cbd52afd8bccbe9a8bf497e364d9af60c8f","ssdeep":"","tlshash":"c4515a181450b319e8b1a3ff38ca1d03f68fce46d5428d02d010d2f132ad70a8eeec95","first_seen":"2026-03-07T22:46:23.592793Z","last_seen":"2026-06-06T17:16:15.553102Z","times_seen":8609,"resource_available":false,"data":null}},"time_used":745,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":745,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/user-img/jcb-card.lottie","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:47.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/user-img/jcb-card.lottie HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:49 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 05 May 2026 00:21:51 GMT\r\netag: W/\"aba8d44326c3ca3820896d108d28c55d\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nLy2GcYCwJR%2FH2RMvVfW2d%2BOu0fg%2FuZAWk2qpg%2BoOp2tuxuL7AwMuJGObSGOp3hDjh6RZFBWVfsgC%2BrryKudSnvc5VJcoQR05xlJDb6BpdRlfmyIVeTDy%2FUmVv%2BIr6NZi077apVk\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a02d47424d2056bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2379,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"79a5f1fda4790f8900e278fa7c7d907a","sha1":"34624cbd1976f030b11e49811d02da1121593a4d","sha256":"2889851f4d97b538b546aa51a676dc2100c8fa5710187de45e2875bfbc21ee57","sha512":"34730569aa90502c0ad9238e3fa524af812407639f9c4167a635db169f7b49ceed8d0d499538f1501d21328921a4a2ac6901fa52b44ebaf58325884f976ad0d8","ssdeep":"","tlshash":"6c616b0a4ba4c324c0d5b076ea600673648904e636cbb8d9f539b48c5406ebfb5df2d2","first_seen":"2026-03-07T22:46:23.621023Z","last_seen":"2026-06-06T17:16:15.554784Z","times_seen":8615,"resource_available":false,"data":null}},"time_used":1736,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1736,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"georgia.org-fmn.one/dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:49.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/webSocket/QT/JWRCVV-1779971506787-i10jxtjsvoe-il9gvpz5o0n/khkjsahfjkwhakjlsdwdddddd88 HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://georgia.org-fmn.one\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: KDk/56vPxom6mHjkrcrBcw==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Thu, 28 May 2026 12:31:51 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: WWW-Authenticate, WWW-Authenticate-username, WWW-Authenticate-userid\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zC6%2FOpxEb5aYEjoT3x841K7cQyames%2BpZqmurhGWtn2BZ%2BnSnotbZvgJhWmXGK%2FOTjiSQcudCczCQoqYfPfND%2FZYr4w79SPE%2Bh1BA3s70ZGBJii0WkvsGfqvA1gD2%2B%2F0fDplXus1\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: a02d474e9d45712a-OSL\r\nContent-Encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=565\u0026min_rtt=541\u0026rtt_var=195\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2349\u0026recv_bytes=1262\u0026delivery_rate=4448540\u0026cwnd=52\u0026unsent_bytes=0\u0026cid=c31b1df5c026ad2a\u0026ts=1842\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T18:09:48.345789Z","times_seen":16186679,"resource_available":true,"data":null}},"time_used":1886,"timings":{"blocked":0,"dns":20,"connect":21,"send":0,"wait":1825,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/a_index.html","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-28T12:31:42.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/a_index.html HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 28 May 2026 12:31:44 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncache-control: no-cache, no-store, must-revalidate\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IDI7aU6TAwf%2FVJ69Yaz43mq14u17V1jhA54sCTDHjz7AN1whxgjRH4upY9DSw%2BCAPo5pT3cnl4kLUjO7umNieZ6PgQwt5vuZhFjTVgOo44LNtBABKm05b5RbYe32ZHBt2TXY%2FxV1\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: a02d4725395756aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Drupal:10","description":"Drupal is a free and open-source web content management framework.","website":"https://www.drupal.org/","common_platform_enumeration":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","icon":"Drupal.svg","categories":["CMS"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}],"data":{"size":92370,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65489), with no line terminators","md5":"e4ef4e21dd0f7a8cdad678bcc4095c22","sha1":"1fdd4ad28726cffa126e632cee3613066b8192de","sha256":"eb7d80ecc4c32c7d73094b211ea69fbdb6f24dd071c149e37edb0947eb1bd864","sha512":"80e5d89d62a6489aa5bd167d8ef4c3eb749fe34fe3c42503c0eb78509988c3974f3ef6569c2019d58059eaebc40a4a82216fa99b4a80ceac17b065be81aa3dec","ssdeep":"1536:ouHbc2UTtScI3bjiV+EAiHgJsNp+Iozji/beL39YiUiVJPVmCsUYuVkv63S7G21+:ogc2KK3DTWb6zHAK3Pa1K1jLc2wVy","tlshash":"fc9353f61d148a3d01134e8ad6ebd318d389887db9694c8bcaff5b76418bd90f4a3c64","first_seen":"2026-02-08T23:06:32.581978Z","last_seen":"2026-05-29T00:53:03.353382Z","times_seen":81,"resource_available":true,"data":null}},"time_used":1380,"timings":{"blocked":40,"dns":20,"connect":1,"send":0,"wait":1299,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"georgia.org-fmn.one/dds/_frame/static/js/vue.js","fqdn":"georgia.org-fmn.one","domain":"org-fmn.one","tld":"one"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://georgia.org-fmn.one/dds/_frame/a_index.html","date":"2026-05-28T12:31:44.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"org-fmn.one","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 11:07:03 GMT","end":"Wed, 15 Jul 2026 11:07:02 GMT"},"fingerprint":{"sha1":"96:FF:85:A0:C0:67:32:67:55:9C:7D:2C:98:80:BD:39:D9:6F:A4:E9","sha256":"5D:56:D1:D4:97:FF:50:71:14:4E:4D:2D:01:2B:29:44:A0:82:6C:B4:BD:1D:A3:7B:65:AF:99:FE:C8:33:2B:20"}}},"request":{"raw":"GET /dds/_frame/static/js/vue.js HTTP/1.1\r\nHost: georgia.org-fmn.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 28 May 2026 12:31:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 05 May 2026 00:21:43 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iZpVjbWY1VmP6D72ZIXgGudQgRGAe%2FqVC3yVG4QnRcNmZ771dIahhpt%2FeJ495YZ7Uf7IGU0zgUN52FEk6nJo1U4pqx7OsbgSoreVgQ%2BrMM9VLeMecM5CRo9WBlraMX28pQtx6sep\"}]}\r\netag: W/\"21d149b67435bd144d4f85b12280d12d\"\r\ncontent-encoding: br\r\ncf-ray: a02d472eaf7b56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":93674,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65445)","md5":"d510c12b589a26e2c72f65a1e726a347","sha1":"61131c8e8cc4151fdc2d89e21f95ee27a76710c1","sha256":"d535a5f003b5350e4753025226c81f30cf883edb0ddc01901a31e49f0a9740b5","sha512":"a31326ea137759a06e3c7d26f26ca4adfe31bcc7b96cf24710bf6ef0cc1ae778b883f2f838145e8c615dcaeff42fc8118bec25d83eff4077ed24e67a20ddb945","ssdeep":"1536:DUXY7qLtpHt2P0e1mZ8I6H82RaLPMBlo5VV2B/S/r:SYeJpN28efKMBlmV00/r","tlshash":"c29308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","first_seen":"2025-12-05T15:25:52.043787Z","last_seen":"2026-06-06T17:16:15.551972Z","times_seen":21928,"resource_available":true,"data":null}},"time_used":984,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":781,"receive":203,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-28","alert":"Phishing Block","trigger":"georgia.org-fmn.one","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"georgia.org-fmn.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}