{"report_id":"9ccdd54c-21d9-453d-bd28-0e8a6cb54f67","version":6,"status":"done","tags":[],"date":"2026-01-26T15:28:54Z","url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":0,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"title":"Adobe Flash Player скачать для Windows 10, 7, 11 бесплатно последнюю версию, как установить","dom":{"size":39,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"086707e4369f60afedcafb16050a7618","sha1":"8216b0cc6876cbd44f01c158e7dff3833ceccd41","sha256":"a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e","sha512":"aade21843813e2cab329b99185c6f61db7907a556ea974e0315dcf3ad967cab20fee66d4f10db0d0ec43a71e086ce6d700d5524103deaefa3ce5f6be74ba5737","ssdeep":"","tlshash":"6a9000fee0a2000efc303bc00cc2238a0c28c3a830028e002ac038b8c80822bcc032c8","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":0,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-02T15:28:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-25T22:17:37.642954Z","alert_count":0,"request_count":1,"received_data":28197,"sent_data":525,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"adobeflashplayer.su","ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"domain_registered":"2023-07-25","domain_rank":0,"first_seen":"2025-08-13T07:41:19.973824Z","last_seen":"2025-08-13T07:41:19.973824Z","alert_count":0,"request_count":28,"received_data":725679,"sent_data":13552,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Contact Form 7","description":"Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.","website":"https://contactform7.com","common_platform_enumeration":"","icon":"Contact Form 7.png","categories":["WordPress plugins","Form builders"]},{"name":"Akismet","description":"Akismet is a service that filters spam from comments, trackbacks, and contact form messages.","website":"https://akismet.com","common_platform_enumeration":"","icon":"Akismet.png","categories":["WordPress plugins"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Gravatar","description":"Gravatar is a service for providing globally unique avatars.","website":"https://gravatar.com","common_platform_enumeration":"","icon":"Gravatar.png","categories":["Miscellaneous"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress Super Cache","description":"WordPress Super Cache is a static caching plugin for WordPress.","website":"https://z9.io/wp-super-cache/","common_platform_enumeration":"","icon":"wp_super_cache.png","categories":["Caching","WordPress plugins"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"a3 Lazy Load","description":"a3 Lazy Load is a mobile oriented, very simple to use plugin that will speed up sites page load speed.","website":"https://a3rev.com/shop/a3-lazy-load/","common_platform_enumeration":"","icon":"a3.png","categories":["WordPress plugins","Performance"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"YouTube","description":"YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.","website":"https://www.youtube.com","common_platform_enumeration":"","icon":"YouTube.png","categories":["Video players"]}]},{"fqdn":"newrotatormarch23.bid","ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2023-03-20","domain_rank":171744,"first_seen":"2023-03-20T09:40:51Z","last_seen":"2026-01-20T05:03:54.161444Z","alert_count":0,"request_count":9,"received_data":157271,"sent_data":4552,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fileloade.site","ip":{"addr":"134.209.192.77","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-02-07","domain_rank":3360010,"first_seen":"2024-03-09T10:21:17Z","last_seen":"2026-01-25T09:51:11.988329Z","alert_count":0,"request_count":1,"received_data":468,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-25T22:14:35.458366Z","alert_count":0,"request_count":4,"received_data":104092,"sent_data":2174,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sof3.site","ip":{"addr":"45.82.68.79","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2023-08-19","domain_rank":3984052,"first_seen":"2023-08-20T19:54:40Z","last_seen":"2026-01-23T15:16:47.000207Z","alert_count":0,"request_count":1,"received_data":30955,"sent_data":420,"comment":"","tags":null,"fingerprints":[{"name":"PHP:7.2.34","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"3803f4a6ae590ecc536d632644546d1b","sha1":"52efa7054f6ed1fc1b07e3115c02cd87043ef368","sha256":"faa6a1d396ea35db48267237a0e0821328752b483a34af5b043b400dbf29b764","sha512":"c4ffc4aa7c8e3fe36b38fc982d5982fff6bbc1b14ac5f6dad11e38c2ee47fb939b03e68c913d75abded4d189601bf63b2e2db64696512094936793e002e5d7ef","ssdeep":"","tlshash":"e7d02b20e4a8187765531125478d8128b581560fde044c8af4fcb1043f4946806cd177","size":264,"data":"","first_seen":"2023-03-07T12:01:45Z","last_seen":"2026-05-24T10:56:06.292987Z","times_seen":117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"53e0fbdc5d79d07d6d955e523f8d2996","sha1":"e830d0de78b481e31995d69bfda2e71f4cc1be56","sha256":"2b3c6f1d3cea37b4d8cc609a141b421a88bcaf2f3646965f9f95f4d4a683c949","sha512":"d4052967b14991377fcbd49d023aa944778ccb02e2f11257adfb0926a3d2944b50939c3f3708e126cf872a8492db57365a7e40a935c912371cb1720def2f6e7b","ssdeep":"","tlshash":"b351b4fd7102ba5139ab1136d11fe10a5232267fcb1a9d41b43e50a91ca49f3221beaf","size":3015,"data":"","first_seen":"2023-03-07T01:27:07Z","last_seen":"2026-06-08T17:55:45.589853Z","times_seen":2503,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/jquery-lazyloadxt-extend-js-extra","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"26fcdc89dab89f3375f7aea517168a0b","sha1":"95e194f6b6829a037a5f2dd0e041059c6adb21ee","sha256":"c3c388f7f6f120c6bb82d759b690c5779f1e89c713bdf723e92d89fd7dc9c45b","sha512":"da1904a52138f8a9a065aacf1327d2a2273a4d1ddaafeea8ba7d50c68a65938bc6712da259e9be67d00ac80c001ac62887d77eeff1ada543d237d50a2432e023","ssdeep":"","tlshash":"1b418ca4d586a9b4adb3a8b4876c81e3e6c9b1bbdd742824b4ddc0005fa0c01e190e40","size":2323,"data":"","first_seen":"2026-01-26T15:28:56.864703Z","last_seen":"2026-01-26T15:28:56.864703Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"f524138b23b304324b9b485abc49321b","sha1":"9e4d5176e48eec78bb8b6ad78d4f9e19382470a5","sha256":"5a4e5f73c95750b814406af66353ad3c7424d31320c89cba371a30b8929dddc7","sha512":"7f0458854bd2a7ace986a7d59fd6631360395b15d13c2f4befb2301504450357e4c695dbf44a1eaebcb9a6d5d79cb64c5c3b56fde8d78eedd8e4ce60e53fcce3","ssdeep":"","tlshash":"0611760c76f71483466b70be8b5fa11c682452271229cdaa7d2d21829f5453f8afafc8","size":1057,"data":"","first_seen":"2025-08-13T07:41:23.760582Z","last_seen":"2026-02-21T02:38:11.762606Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"cf700af91fd0ea361e1edb17a795f727","sha1":"ae363e2e5ee32e73ee84e00e11e934a0847a17d6","sha256":"0fd5cb56a48fc6724527a0c2d944c2f17397114a4e3e0576cef6cd4b25e0dad4","sha512":"bdc911d4b37c05031499428c2acb5c31a1ba273bc7c7e3b64697d732200c28fcb877f3eb767e26ebe33d2d394717f1b9c18ce05629d2cbe4e434e5527e96a20a","ssdeep":"","tlshash":"b58000802a8f2222e032200aa8020883200a0f0808203000300803af20c08e0a828028","size":31,"data":"","first_seen":"2023-03-09T05:40:44Z","last_seen":"2026-05-19T00:56:39.809614Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"b5dc13ef98256236cab6cb21621c6b1f","sha1":"5d6c19a106a96240e23bd1696cd08e4fb2322f6d","sha256":"952ace35adcb0748001726237262d9aad9fb977be9bae169dac234ff96a311a8","sha512":"f734dacd02427e07eeb8ec6243fc9789f6d3f6c603104f38be8774806278b424a5f7c9552a2f7795ee305f7605b149a32addff457c4f16943ba795b2981771a9","ssdeep":"","tlshash":"6d117b0c75f70483466b71be875fa11c683552271229cd967d2d21429f5453f8afafc8","size":1059,"data":"","first_seen":"2025-08-13T07:41:23.764066Z","last_seen":"2026-02-21T02:38:11.768892Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/contact-form-7-js-before","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f5d120c9b3589ad004e234ca84b40f21","sha1":"be561d344af36210d521b1ca8525d9a186a320a2","sha256":"b2f7d6eea35314546e7feacee5ec7b82e56ca214fd0b3911343d6231013a8237","sha512":"7d69ff220c50f31cc6e27d7b41dadc473e80c2e64fab9d15a18e117d9637c8644c8d34d4c02e5aa37be48cd0f1084f32ff0e973caec0917058c6a907fb15fc4f","ssdeep":"","tlshash":"6241a756d9e41c5924e581f801b81212b551651bcf2b5e55b50e414c1f68078e45468a","size":2354,"data":"","first_seen":"2026-01-26T15:28:56.868679Z","last_seen":"2026-01-26T15:28:56.868679Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/yelly-scripts-js-extra","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f57910b198ed11777306f84af9f63d9d","sha1":"12fda925fd3e4e56cc2058f76109bdde390df3ce","sha256":"88e800960c8e0a28ef6197e925e792210309dc351f8b966b318bde78edecb0d4","sha512":"a5aa424330593e9dc2d324c12cd7d8206c5b336fac8e0c06c2a47cd0a4e3ad0a54339fbc9cd95efba82cc673cf881d9567d87aa573205ab3530d2e4482fa7cf0","ssdeep":"","tlshash":"7c519783c4e16f4a02e2aaf5c9304bbb22f41442fd40ee08be59ca879e38442ae24604","size":2615,"data":"","first_seen":"2026-01-26T15:28:56.86977Z","last_seen":"2026-01-26T15:28:56.86977Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/jquery/jquery-migrate.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","size":13577,"data":"","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-08T20:35:30.620703Z","times_seen":825745,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"2c35b69ad72e7e329da4dd5d2a4f8085","sha1":"a461775e66627bf7648d6ebfef5ec014aab35990","sha256":"9b2dcaab5224edcec6d17569ec08140de2f60407b54ab322d854eccf7012d773","sha512":"f385fa71ebb5fa3209054c7538c64588e8fcca2d2350e7dcdf6e13c598b6404eedc892e80d3550284936536d209e338edbcdb0cd8c8aa9e53f2156eed3d7e6c2","ssdeep":"","tlshash":"3bf0502b2025ebe3c82050eb709dfa50e4b12170d855de3a961e681a2854e491a12d49","size":503,"data":"","first_seen":"2025-08-13T07:41:23.766038Z","last_seen":"2026-02-21T02:38:11.769703Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/contact-form-7-js-translations","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ce3ccd44c62c742db3337c57ee2c436","sha1":"ca889fbb99e61d5ad1d9693a8ef146db230cf837","sha256":"b346c5f2b74eca0c1319654522f37d2c79244b5af6f3a5073557212cabff4e33","sha512":"5f68fc93e361b5ba976770a9406c10ce4bf25b9c424d2f91394f1704adb01a5432c7355c209c9855c8326320fdefa1ac53c1593cb223661b0e7dee344ebd5763","ssdeep":"","tlshash":"c461c0e1dcb4561d448170f5e6757a4c309cf854e15adf266c1e0187da1072c9ad230d","size":3181,"data":"","first_seen":"2026-01-26T15:28:56.872354Z","last_seen":"2026-01-26T15:28:56.872354Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"3e6902b70ee52754121f017fd48175db","sha1":"0a5d8a5716c7b249eb5e0b02d04aa74c5b9948cb","sha256":"21dc21cf1cc77b458d114634e3775e70f229dc0c215b0c8958920e2079cb5a16","sha512":"3c3a2ef49c5af4b426a325adf79a86817e2c7454804180684290fbc71351841c13318e6d24e18636866c7e87904702ca809a810f35737005ce6ca3d146ab045f","ssdeep":"","tlshash":"ca311699fd5d3870011610e8a95eac06e1367553620bcc58cd38e48dbc78ce9794bb8f","size":1573,"data":"","first_seen":"2023-03-07T01:27:07Z","last_seen":"2026-06-08T17:55:45.529036Z","times_seen":2595,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1df599ebf78aeb437d195418b2d74dc9","sha1":"5dca3d41240e09dc1b8139df783e30562b0db2b3","sha256":"d1cb0e3c60de7a6e0f89d93fb02226c22e28e80b973c84e18b473d4ea0b26dca","sha512":"39c6a89742e9b9a373cf06b7ab280b47690aca14183f921f1c623f74dba0be1c20b1d50dbd40fc5990f52f6de3187a02f1de9fb90110447336dbe1d97c98ef08","ssdeep":"","tlshash":"3161964801791e9a46ae127ccdbc86e4b35084912560b4f8be1cbc2d9b6ddd33bdd36b","size":3254,"data":"","first_seen":"2026-01-26T15:28:56.873635Z","last_seen":"2026-01-26T15:28:56.873635Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1c696d7930d8fe8509689a72c94b7603","sha1":"b869d31d0f34443138bdf3d67b45ee39bfdb200b","sha256":"be2aaba39b55fee44e1d4b16f55ca623535e442b2a1fc88d057dbf8dd027f4a7","sha512":"db710e9b518219329aaab5978fbacc2dc6e1fdd5374c6b2d820c2e1419746e8fc187dfb50eabbfaf5372f00bcaaf49d3c6ca0f4a1048d03c2bf9f1c4a3cb878a","ssdeep":"96:t3NEByhoyiCXLyieJEl0SMxSKTCTUSC7dagaNChn2lTSnBxpN9Z1T3kCZi+:FNEBRyiwyiQK0SsSeCTUSC7dagGChDn3","tlshash":"83c1a07c59b60021237bb07a4f5f2049ba20a57781058dd5bcacd24c6fc9b2de9f7768","size":5621,"data":"","first_seen":"2025-08-13T07:41:23.770603Z","last_seen":"2026-02-21T02:38:11.771223Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sof3.site/uv2.js?u=438\u0026s=416","fqdn":"sof3.site","domain":"sof3.site","tld":"site"},"ip":{"addr":"45.82.68.79","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"662ddd835f3ad4a58a0be8acb46e6345","sha1":"00cec6afbc2366b5d2f01221ca0f5dd4bc79a86d","sha256":"5b6e5c247ebc6c423cb6f0a85761023cb7253babe1a1e61c04ebbe453ff69a66","sha512":"ad7730fbcc87d004a23778dffdbe4009569a15581c1173c601f1a16eb8606a82e118abeda5f859450e28d9d73e7468c0834efee66ea8b7c16daaf8698c773915","ssdeep":"768:bu5ZrELENuYPf6IVUSNNRaxjrDwN/qBXDB75f:izrEIuq5yUyFDpN","tlshash":"70d2e8d97643201aea77a319adab5b1cf7364123e00766757c6c9148aff481081b7fce","size":30668,"data":"","first_seen":"2026-01-26T15:28:56.844635Z","last_seen":"2026-01-26T15:28:56.844635Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"08a8877d81fb5effd70533d4a094bb70","sha1":"b637726503b78df8b06146ef2f7b96fdbdd6e320","sha256":"cb38a7d1fa0885d8193c07389e54787ccbb4fe1cdc25ea443aa300963272a309","sha512":"b0da6bbd405093a8d2f9d65c601127c3486d0fc6b0b5e1fd0e33a8c605845643f33fde2ef53b08caa23e3014ad3403d68688b6b7593a0986bebc6ff2c41226a6","ssdeep":"","tlshash":"60e09a5db1f4243122bf75ba0b6f40bd2038927302088e10bc3d92804f6d0bc6e93b98","size":419,"data":"","first_seen":"2024-08-19T15:42:48.405926Z","last_seen":"2026-04-01T00:02:35.300075Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"7aa9debbae0e716cc43c97b4e4a89f66","sha1":"ce6b2567a96716e2ebc839bcb3201bd6fa2d8cdb","sha256":"b0342db149c724211651bf22c6e9f976fecfb39ca7815645ff23b97616a51152","sha512":"aff7780c2ca6068bf1916f3feca87477470571ce4a917a9c7aa908d89693978033ea9960ffcee39afb3d689a6602ca518c0759a6d01f6e949f910cd011e39a2c","ssdeep":"","tlshash":"9ce07d48073250312245500a5da54feb99958511d325c1640ec0b80c73f8131968b3df","size":298,"data":"","first_seen":"2025-10-18T16:14:31.137961Z","last_seen":"2026-02-21T02:38:11.772835Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/isz5.js?ver=1.1.3","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddc2e47a290747e40a6657633a9006cc","sha1":"dd8718108b1f434afbd5662d42f63469acb417dc","sha256":"d9be6490b4b510322526bea21a050c61e238d629060e13c2b62fe47f4e997b88","sha512":"2dc8980c8ea2fc23ec958fc2468c95dd71d68dc297c533e0f33b6b3579f75d3c2dba0fb09ab10d1e9c64b053f5a0adda346d80d0e39e67b91104ba99102f2271","ssdeep":"1536:5SrDJznksXBlWlfiRDqP3CN1M7crLy1hJHOTjRSgrj0MxClG86X+esW/XfDhw/+e:uznvrWlfqqPwMYrLy1hJHOTjRSgrj0Mo","tlshash":"df73d7c66542729b93933232671f0162ff076d80b2c79b44d3c1b5849eafb71662afe4","size":76518,"data":"","first_seen":"2024-07-20T20:49:59Z","last_seen":"2026-06-07T08:59:53.191429Z","times_seen":207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fileloade.site/?te=hbrwkmrtmq5ha3ddf44dqnrs","fqdn":"fileloade.site","domain":"fileloade.site","tld":"site"},"ip":{"addr":"134.209.192.77","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f495e69f2e9edc75eeae7dd3ea78a747","sha1":"a89e38bbe70fa2de5db9d578975abd4e9dcda52e","sha256":"8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c","sha512":"3fd0afcb046ea60710b769bab0a70d6474af6fc6e881277b0b17964c74cb7edb539a758f4b87a689ce9a52a20674cc88fa8cb9c2a337785cd060d8a5bdefa85e","ssdeep":"","tlshash":"1e5000c000003003300003000f00c00000000c00003000000000000000000c00c00000","size":10,"data":"","first_seen":"2023-03-07T01:03:06Z","last_seen":"2026-06-08T07:59:06.689748Z","times_seen":3665,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/akismet/_inc/akismet-frontend.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"91954b488a9bfcade528d6ff5c7ce83f","sha1":"edf589eb28247c73ccc04e5b34ad107b90bd1b2e","sha256":"6bc5622bfab1a16855ad49b99a3f9ed8eb24f49da469a113f9000b866f109e2e","sha512":"d4772d5a06b400a7ec7250c85b5e5630f309b0876936de85bf3d24030fb2df55bb63ea5e4905325f41561996ebfc03bec95ae2dc48320273c894ffdca9943899","ssdeep":"192:YFRYlRfiAjGof8eGJsqSggUdgPzvi7Vp5d7Zq6:SRYlRfVjJEsKgUaPzvup5dF","tlshash":"693242a75b6c263f50b2730e695ca3c9763e9471d8005836bd7e996838c4d384336eed","size":11388,"data":"","first_seen":"2024-01-21T19:52:24Z","last_seen":"2026-06-08T18:36:15.05934Z","times_seen":14022,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"bd5f648f4fa75f28b17faffe66049687","sha1":"c9c2791b295684a919a2bfd7b7e2ef5aab3c178a","sha256":"1a4ba4a340b3f30596d32c1b272ddcfdbf3ccb8e89c2fa917ea60469017aeee4","sha512":"b5fb5df2a220f64f8fa7daae2a42e5682c5d17b9bae13cef72067688f1d85759fd46d8ca267458a27c6009707e5bbe131a1bea5f7ed5aa4704f694c87e019da9","ssdeep":"","tlshash":"00b012b7309574334c4630eb3a340244344091202c430724140cb9040608dc14a771c0","size":87,"data":"","first_seen":"2023-03-07T01:06:26Z","last_seen":"2026-06-08T20:42:31.604772Z","times_seen":27173,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/comment-reply.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"e4a49df71f8b98c1d9f9d8fce74d89e8","sha1":"b95fcda0c8c26305ad94e80343d0cfca8a048a10","sha256":"9d4687a19cab8f7442a3bda40c45be4d10e42488e091ddd706c3caed83c3ee1f","sha512":"42cd5f854779886f24c43ed14617380110c946d1b430b454060c3b391de6fbae6d0ed8ab7cdd7cfdc9726b2d6142a4e01c4448e36088dfcee7fdd00b60909f89","ssdeep":"","tlshash":"5051a7d437c95d762a83b3395efe930271712709a50805608826c86931bcfea63b67fe","size":3026,"data":"","first_seen":"2024-11-13T06:33:24.856382Z","last_seen":"2026-06-08T20:26:36.497739Z","times_seen":79818,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/jquery/jquery.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87553,"data":"","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-08T20:34:34.757289Z","times_seen":895912,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"dd18befbdf463e23ce79659069713f23","sha1":"bdb0f30b3cf079757f4cd26ecdb0d7db03c441a5","sha256":"cabee3356069d48626d515c0c00171845b06e23579c8255df1a8e4a9b3ef71b7","sha512":"2727bdd8ab1afc86a1b6e05008d2e188662784468a5b6ba4c49a566aa54698669cedb0a44038f299f71725c2538131194fd03a06ba4b3c6d15db05caf5967848","ssdeep":"","tlshash":"a0d0a737b31421799c1f71b5f94da244f4a311594813ac05484469956464b2b258ae70","size":224,"data":"","first_seen":"2023-03-07T01:39:52Z","last_seen":"2026-06-08T03:55:09.0029Z","times_seen":2403,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"37708ea40ce3ae26596a3f3f8f827e0a","sha1":"2d313fd36275c8fd4f94bfa1c82111e2771d76ef","sha256":"8dbe6ff17a98d08f0cc8b91951ea067dc02e2d980595ba0898f4174c113935a6","sha512":"9cbcabef96a4c5a76cedfd9be7bbef11d3fd19163f889f9cfaa0f7f503df343caf0e0543eb8842117c65759b49c191c6baa75817618b908593a6330e8c7ead51","ssdeep":"1536:LjmsFJYGD2KImcUtxX6otv26r+g47aHnNKAv8i+L1LlUWGkp/QIb+Ay:1EFbO","tlshash":"e0331d082af31479c19f713e5f8f401c766180275409ee58bc6cd608afadef896e5be9","size":54835,"data":"","first_seen":"2026-01-26T15:28:56.881728Z","last_seen":"2026-01-26T15:28:56.881728Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.min.js?91f13f1","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddc2e47a290747e40a6657633a9006cc","sha1":"dd8718108b1f434afbd5662d42f63469acb417dc","sha256":"d9be6490b4b510322526bea21a050c61e238d629060e13c2b62fe47f4e997b88","sha512":"2dc8980c8ea2fc23ec958fc2468c95dd71d68dc297c533e0f33b6b3579f75d3c2dba0fb09ab10d1e9c64b053f5a0adda346d80d0e39e67b91104ba99102f2271","ssdeep":"1536:5SrDJznksXBlWlfiRDqP3CN1M7crLy1hJHOTjRSgrj0MxClG86X+esW/XfDhw/+e:uznvrWlfqqPwMYrLy1hJHOTjRSgrj0Mo","tlshash":"df73d7c66542729b93933232671f0162ff076d80b2c79b44d3c1b5849eafb71662afe4","size":76518,"data":"","first_seen":"2024-07-20T20:49:59Z","last_seen":"2026-06-07T08:59:53.191429Z","times_seen":207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"df7d054210a7a7d0a4a0eeed82f40474","sha1":"45c2b1103bad89b577c680709b8ad95d80a4c9c6","sha256":"b4ab879a7c1ce5bd838cbe303ff889ee838f566c792e80eba05fb3df4dae673b","sha512":"8f10e68e5c20f07388e540fb4a5062623f96a3e9133486704d9080248288a086e90968e1a7558197e4b50ae7699b66fcf6e1875d433fdb48e0453114a9092014","ssdeep":"","tlshash":"3971125c46b714a255a7603f4f0fe114baa0163f4519cf84f8acd2016f5e47d91eef89","size":3544,"data":"","first_seen":"2026-01-26T15:28:56.882574Z","last_seen":"2026-01-26T15:28:56.882574Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"824988f7391f9241a437fdc9072fb392","sha1":"8a84976162548e3bfac73f1e272e74a8fcb097f3","sha256":"81d85da8cebd8f1222583c3147741b9a128db3a6dde420caff549dae1a067e40","sha512":"e475f7b5d2585109f625968cea659a9f97f2b72ff1e3a15617636ca4fc5a63e3081faeaa79504cc46019e6ed79ae0be8c9279a1ee0b77a784c077782d7facd7f","ssdeep":"","tlshash":"e8b02b8670973c80418b97705a23bd014541108b416e880424d8ca206b724c0f4c221f","size":125,"data":"","first_seen":"2025-11-18T20:07:03.944426Z","last_seen":"2026-06-08T19:27:32.016065Z","times_seen":20354,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/dist/hooks.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"90e932bd9e62583fc494c00498cfe7f5","sha1":"4f57e11bff609f90f49174187a0b5a6ba847ad28","sha256":"87cee5f49ba0d3017efc409579fc58b91a717f8f14751f7d804447ac9bcbaf4b","sha512":"ed9c129faf972ddfa705f05c3207884e5e9cd175baa45d49ce9d42bc0d01e4e8f36e627731bdd97214b1e2400fdd5012262a42f9800cd4f5565dbf183ba58507","ssdeep":"96:wXDE/3s/0EBM6ZUUCRTH+zl4NsBjcEmDtrGV2C2yics6w1RfGdzsvqZTq:wzg3kBFZYH+zhjngRw2cLzw1RfGdzsvx","tlshash":"56c153847983b970b2337057f0ff48d561baeba575298081964ec4a05d7388ee0a7abd","size":5661,"data":"","first_seen":"2025-10-27T08:47:54.273294Z","last_seen":"2026-06-08T20:42:31.54714Z","times_seen":193811,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-i18n-js-after","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"de4f1bb76b559300d063904a86412151","sha1":"5725c5fa5b8e91920864b94586f34f8f9b73ab25","sha256":"5a87109fc710faee06fce23474f686b72cb4ecb88d2e344cec87322fa382def4","sha512":"c8b0ef1ee524610fcc0bf2a2a20711fcf8d7fbc0002e43dfdf522d3be683612cfffdfcdf07a2c8ef4679f0236723b921eac8ca9b4cf64288223eea3c89d2c882","ssdeep":"","tlshash":"49412b86f0973c80418b97705a63bd024581208bc17e880424d9ca206b724c0f4c231f","size":2241,"data":"","first_seen":"2025-12-09T03:50:15.613475Z","last_seen":"2026-06-08T11:38:09.668254Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"624ebb44eb0fd0fd92d0a0433823c630","sha1":"44010ca531b82a13513375597adb4c08b77473fa","sha256":"a8a819d7548b9c102d7776cb645212ca1e324ac2de2170598699061e29bc6cbf","sha512":"6cd26435debf4d20b0726520df6f93adf971f1c6d43eb2e7d38faf0c477d09c178c5e60fbb5b5518cb81cd67be129da5072405c4fd9545673b2e2ff5c85683fc","ssdeep":"","tlshash":"dc118cacb99584baadbbb118f33f813ea62b766779042d55f1ec4d84aec0d342841844","size":1045,"data":"","first_seen":"2023-03-07T12:02:09Z","last_seen":"2026-06-08T17:55:45.535563Z","times_seen":2123,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"c50b16476b353121e0916f322f64ad1c","sha1":"02a66d7bfd7ef5eacf525b77b5a5bfaafc336b8d","sha256":"411b1684d1238d0a380708c41b18a8693f677cabdacc934e0724a0fdf7c2c370","sha512":"18546f34e13e75c58214e88d0184229778216b90a1be9aab651961bbf1e0ae359ff773ec250f1670335f7fef69130d9afac9979d32d453e3797625a85885b3a1","ssdeep":"","tlshash":"5011afe19cb45a2d5881b0c6fa75be8c309cf854e15edf67ad1e018bda1076c9ae230d","size":1058,"data":"","first_seen":"2025-12-23T02:34:32.003424Z","last_seen":"2026-02-21T02:38:11.778044Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/contact-form-7/includes/js/index.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"2912c657d0592cc532dff73d0d2ce7bb","sha1":"70a679e2769825236f83bcc56965a9d0bd86c4e9","sha256":"ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0","sha512":"9646384e65d09bf00cb20365f43e06dd41e7428e3fc6cc2737f4e69b50f006ebb25bd24a566fcd9faec2f0dcb24404e25d57ba7b8c6aba61797a29c515ad5144","ssdeep":"384:IsIRHeFJ1yQ7QdfnJgeYh7MXlsNqrBp1pgQpwOjNtqohIQ/5Z:IsIR+L1yQ7QdpYh7M1iqrBp1pgQpwOjn","tlshash":"0a52d7a1472955321eb506e391e513c1769075aef44b8aa1a898dc2e18bdcc328f3ff7","size":13452,"data":"","first_seen":"2024-11-04T17:50:00.022634Z","last_seen":"2026-06-08T20:41:24.83886Z","times_seen":205882,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/themes/ms/assets/js/scripts.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"9687060c77993e31070aa53b1a4e8a4b","sha1":"bd33bcd5ac8767b266dcfe914548a024923a89b2","sha256":"c544f4dc829eeca25b99a219eac92840ae7372c159a4321266ad45de202d96f0","sha512":"5e13a7201f8e0e0a8a1e8232e16673bffe9957c4227ae6b8dc0eee6db7386b9be9cafa553dc83ae574fc8dac55c977c1f7affcb6ea9dd51a40884a7345f6da5e","ssdeep":"1536:1bp1Xo9qhxukfys5AuFwuckVnben4Wgqk:1liAmO","tlshash":"9e339590724170b50aab11055ebfb30ff06a6b166cd6c404d06a9ea42f64fe7b067ff6","size":50188,"data":"","first_seen":"2023-03-10T18:05:42Z","last_seen":"2026-02-21T02:38:11.750343Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/dist/i18n.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a5838d1182eb0b11f5a58bfe26e2529","sha1":"920b2291e65d62eb55c1958911768540abaff5cf","sha256":"d4efe709c65438ae90dff385486421fea45762880f21fc4e0dca3fa96210f428","sha512":"bc41d50cd2e5c17c75ba737c303f2f498cc94e2c3fe402b2f15c5f10531e53633598093da98579b2dee65733dce0f763d77380ae35a9591d8bf91f975b7c6845","ssdeep":"96:L9emIWL7lnv93ssmAeGejQVnmggoC7arVCG0GXF730IQRDdlZq+SxSD3LmD:8mIWZVszMuinmg3rQ8Xd30DDdlZq+Sx3","tlshash":"2bb157dcb9d57022235121a0597fb409f3357d6470ebb8006ba9c4a47eb15cfb1a2fad","size":5314,"data":"","first_seen":"2025-10-27T08:47:54.280246Z","last_seen":"2026-06-08T20:42:31.543115Z","times_seen":190964,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/jquery-lazyloadxt-js-extra","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"60f54c057562da40a72c24db0d848703","sha1":"8a9d5b6523a91bd7acf8b98c3da75bec925249b0","sha256":"ff0fa186cb770d9709345aed527b56921f823d688f3420bd327ad22ada251c1c","sha512":"881dcc3334126608faf7a8eb1bf86983eb26361f91887db72e3ba90a0a6c1aef8431a516897a4aa630e00e92b7b60211b5345c1f6ee3b25954de60b38ffa4b0f","ssdeep":"","tlshash":"7d412bd0f0c36a901562bc38d569017390cdb5f2e5f44506f40e40100fb0c52e360308","size":2290,"data":"","first_seen":"2026-01-26T15:28:56.886399Z","last_seen":"2026-01-26T15:28:56.886399Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/contact-form-7/includes/swv/js/index.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"96e7dc3f0e8559e4a3f3ca40b17ab9c3","sha1":"d363d0291e92c233e828023583dcf6685f2da5a2","sha256":"29fdd17a7002a2e1bbd9b33adafc53457c64006b5aca8f6e4dbf907de35433ca","sha512":"851dcea59510a12dd72c8391a9ea6ffa96bcbe0f009037d7a0b6e27bae63a494709b6eee912b5ed8d25605fbb767a885f543915996f8a8aff34395992e3332dc","ssdeep":"384:wwuf8OQL0sARrAZcNWLq/+Ffm/hibLexa2VautyX2fsL3ZHO1O9H:wwuf8OQL0sAZAGNWmGcibLexa2Vau0XD","tlshash":"d34235e16197e0f0c7c338a48816c051f2bf866cb9898054fb5dcdd22d5de07626b77a","size":12512,"data":"","first_seen":"2025-03-11T19:47:45.42406Z","last_seen":"2026-06-08T20:45:51.815423Z","times_seen":198480,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"84ec51d30717199c2002eac4708bc98e","sha1":"7ab01a4dac332f4af3588ea86e0b1ff324ee6415","sha256":"bdc2cbc14b210991ad26a15e5b9ed3bb62f5cea0c2be4c83fd3018768b9ee2b1","sha512":"8b72782992ee7957c9999712924e82e49ff18a1f5108c64d188ad4733caf44623fef749f317d0829161885fc114633a84a868e43885680b23052b597ada74bcf","ssdeep":"","tlshash":"57c08c273a223077126060244d784fc69e258152972dc4602e04384db2ee05a379b2d7","size":148,"data":"","first_seen":"2025-08-13T07:41:23.758388Z","last_seen":"2026-02-21T02:38:11.7684Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/themes/ms/assets/fonts/icomoon.ttf","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/themes/ms/assets/fonts/icomoon.ttf HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://adobeflashplayer.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 7636\r\nlast-modified: Tue, 25 Jul 2023 07:14:21 GMT\r\netag: \"64bf764d-1dd4\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7636,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 14 names, Macintosh, type 1 string, icomoon    ","md5":"804d988f1228e5a5099f83ed98ba5dcb","sha1":"0e407b846ee7629f29889ea62d15caae7cf055b7","sha256":"89f8aad7725dc0794604a1118dd2f85e9fce51ae549ca5d645d06c846ff5ae8b","sha512":"0216b59580eb0b118ee2870855d53fda49f1a87572b7726e2a5563b99b18b2583fb40e4616d0834da3e07c875f5f73f6976eda7d11000f7868519a7e64a0909d","ssdeep":"192:B2VQslkL+idZ055cZ4WT+dE/nqAdYlPV2K:B2VQgcZ4Wq4qAud5","tlshash":"e6f1b75aaa79ea4fc77aa937ad1253319fe9903ac35fb3d38c062d115415cb84c083de","first_seen":"2023-05-17T22:55:52Z","last_seen":"2026-05-31T12:55:32.025208Z","times_seen":168,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/uploads/2023/07/izobrazhenie_2023-07-25_201752209-100x100.png","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:34.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/uploads/2023/07/izobrazhenie_2023-07-25_201752209-100x100.png HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 3693\r\nlast-modified: Tue, 25 Jul 2023 14:18:05 GMT\r\netag: \"64bfd99d-e6d\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3693,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"1dc293f709b74a197915183f78addf8b","sha1":"29383670b2de040541df014c29176b62c2ab8b88","sha256":"1ad60ce1b76bc0776afcc72a6ebe27984b9c255aec022541cb89eec9b00f7efb","sha512":"13081a96727ca29b626484917f5649ca92ed1064029e04b072d3fe3a8d3e55ab7603cbae919766bad72b0b993a51e466deee4232e322f2914ca84cc127d0a3ed","ssdeep":"","tlshash":"8c715c96a5a5edcc80e57faa0934a24dd9031c292296a9154f8de33bc0b9438c07e4c7","first_seen":"2025-08-13T07:41:23.730839Z","last_seen":"2026-01-26T15:28:56.830347Z","times_seen":2,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:34.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 211\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":211,"data":"{\"stat\":[{\"t\":\"fetch\",\"bId\":313798,\"extra\":{},\"ts\":1504},{\"t\":\"fetch\",\"bId\":313799,\"extra\":{},\"ts\":1504}],\"url\":\"https://adobeflashplayer.su/\",\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\",\"referrer\":\"http://no.domain/\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:34 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"06403cfd44d505e1cf7c1e01c2d62e23","sha1":"54f02bfcea8920ff8616f093d3c2f330f8ad2097","sha256":"61ba7ef6aa19de6d479baef4f084eadba7ea605537d28204a500da7f30e3ddd5","sha512":"36deb4d2fafb8a72442ddfc77a2abea245e1425a7004a1dff8ccb46dc358da3fc314c8a08a6f2370bb9e66faf8aeabe2a184ea9ac336cea800dc6de3626842a7","ssdeep":"","tlshash":"5ea00284c1c418475d133905cca1550442b1549838164e119bb5a07e549b065ca12604","first_seen":"2026-01-26T15:28:56.831438Z","last_seen":"2026-01-26T15:28:56.831438Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:34.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 267\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":267,"data":"{\"stat\":[{\"t\":\"injected\",\"bId\":313797,\"aId\":890429,\"sId\":42288,\"extra\":{},\"ts\":1564},{\"t\":\"injected\",\"bId\":313797,\"aId\":890429,\"sId\":42288,\"extra\":{},\"ts\":1564}],\"url\":\"https://adobeflashplayer.su/\",\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\",\"referrer\":\"http://no.domain/\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:34 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b7d3c5eca83edc0650699c1841a48a5c","sha1":"13315937ae4ab328b57a0a5630319d7e7e20ecea","sha256":"9dde948f788b9a679c404cc4da024fe43e93fc1e850a1cfb4b2ad6545dbda1ee","sha512":"aad4620d8ae6473e462f048ac92f1536c815698f37333ffc344b089851075aed5075bc251134295fbd07ac63b8de2363e23caefde219b6548db246b7d98b06b8","ssdeep":"","tlshash":"bfa00244d28818874d133905cc12950441b154dc38124e279ab4a06e556b065da03700","first_seen":"2026-01-26T15:28:56.832416Z","last_seen":"2026-01-26T15:28:56.832416Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fileloade.site/?te=hbrwkmrtmq5ha3ddf44dqnrs","fqdn":"fileloade.site","domain":"fileloade.site","tld":"site"},"ip":{"addr":"134.209.192.77","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"filesload.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 01 Jan 2026 18:59:39 GMT","end":"Wed, 01 Apr 2026 18:59:38 GMT"},"fingerprint":{"sha1":"32:55:92:76:A3:C4:0F:D2:9F:D2:D1:A7:21:1F:F5:FA:EA:70:34:3F","sha256":"DF:F6:09:87:BD:83:0A:BC:AF:5B:84:81:AE:9F:B7:79:9E:BC:C4:01:B7:EF:F6:F0:34:54:7C:94:79:B9:91:19"}}},"request":{"raw":"GET /?te=hbrwkmrtmq5ha3ddf44dqnrs HTTP/1.1\r\nHost: fileloade.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\nset-cookie: uuid=1a72f12c-aaae-40e0-92fc-761391c57d14; expires=Wed, 25-Feb-2026 15:28:33 GMT; Max-Age=2592000; path=/; SameSite=None; domain=fileloade.site; secure\r\nstrict-transport-security: max-age=31536000\r\ncontent-security-policy: img-src https: data:; upgrade-insecure-requests\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"f495e69f2e9edc75eeae7dd3ea78a747","sha1":"a89e38bbe70fa2de5db9d578975abd4e9dcda52e","sha256":"8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c","sha512":"3fd0afcb046ea60710b769bab0a70d6474af6fc6e881277b0b17964c74cb7edb539a758f4b87a689ce9a52a20674cc88fa8cb9c2a337785cd060d8a5bdefa85e","ssdeep":"","tlshash":"1e5000c000003003300003000f00c00000000c00003000000000000000000c00c00000","first_seen":"2023-03-07T01:03:06Z","last_seen":"2026-06-08T07:59:06.689748Z","times_seen":3665,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":61,"dns":19,"connect":23,"send":0,"wait":25,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.412Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 81\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":81,"data":"{\"stat\":[{\"t\":\"start\",\"extra\":{},\"ts\":525}],\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b7a901d6080bdb30e85b24c3d7f0de10","sha1":"2c44826af5f00e79e07be1802fddad58340a0aa4","sha256":"9b5e75e966ed09fd0b1f931be4d0b4c7e9e0848b3c53a2f3acc4042da08e71f0","sha512":"4d6ab1f348bc6aead5b8bcbd786d52a5551aa15f8ba8ade62f284fbb64c7935c889206f47be96a0eb4bedc65b1c0111abcba10f9e4a31798eb89ea4cc0a9467d","ssdeep":"","tlshash":"01a0024098881d478e133545cc51590445b154d838135e11a9b4a46e141b0b5fa02600","first_seen":"2026-01-26T15:28:56.833727Z","last_seen":"2026-01-26T15:28:56.833727Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.550Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:29 GMT","end":"Mon, 23 Mar 2026 19:52:28 GMT"},"fingerprint":{"sha1":"D2:3B:6C:71:A7:BD:CB:B5:56:D1:90:EE:91:17:19:0F:24:02:E5:93","sha256":"DE:C3:87:EA:0D:EF:DF:B6:5C:9C:CE:F8:48:EB:2C:CE:06:FC:22:FD:3A:57:71:FF:23:81:1F:16:8F:67:66:B6"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 23 Jan 2026 20:34:33 GMT\r\nexpires: Sat, 23 Jan 2027 20:34:33 GMT\r\ncache-control: public, max-age=31536000\r\nage: 240840\r\nlast-modified: Tue, 09 Sep 2025 18:33:06 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15028,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15028, version 1.0","md5":"42df88898bab0fab4c59cd7590f670ed","sha1":"5a31376aff3fbaad3396224b7157d1294273b326","sha256":"6285243909b5d0b7d12b5795a99e37355e361ebfeef01b6f8bc95fbe46aa611c","sha512":"6df2554d7064157913f8f19bce08248edb1daaed201da4efdae927d3742a55a3f6584d07c94c5772fbd5222978b6857951054d6699dcdc8e16ba1c7b5bb3c1ca","ssdeep":"384:TzdHStVe4OxNyweZXvvMrcOYVGPfSGOPhz:TzdHS32yVZ/vMzYQHrKz","tlshash":"6762c090cbfdb6e3e93c26b44748fa853dd2fa205837e3d1afc2885170c071a36a5526","first_seen":"2025-06-04T19:39:20.238119Z","last_seen":"2026-06-08T20:52:35.728151Z","times_seen":2482,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":145,"dns":1,"connect":28,"send":0,"wait":17,"receive":1,"ssl":113},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:29 GMT","end":"Mon, 23 Mar 2026 19:52:28 GMT"},"fingerprint":{"sha1":"D2:3B:6C:71:A7:BD:CB:B5:56:D1:90:EE:91:17:19:0F:24:02:E5:93","sha256":"DE:C3:87:EA:0D:EF:DF:B6:5C:9C:CE:F8:48:EB:2C:CE:06:FC:22:FD:3A:57:71:FF:23:81:1F:16:8F:67:66:B6"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35348\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 23 Jan 2026 18:42:01 GMT\r\nexpires: Sat, 23 Jan 2027 18:42:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 247592\r\nlast-modified: Tue, 09 Sep 2025 18:39:37 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35348,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35348, version 1.0","md5":"6e192bc03c1ec5b2ba6b1281ae4f4a71","sha1":"54dd8ad0f73f88eb7c28888d5582380a978f6571","sha256":"8fb387ef4c02189952d5644187a217863e71db410f9dfb3b0afd0ebc4447bec6","sha512":"412aec2aa07af44d4f5e889ddddb9af73b89cccb793aabbb1161583f3d13ff0adc2053edb329a039fa5bc7c9f5b4a69170365e3ad29cd95a8b81fe9997ae1f7d","ssdeep":"768:Dbm/Jw6U5CNNTG4IwnW0kpZ/NXBeh58pFpS0Lz6fihG4iW3lpsii3AYNb:umF5CN5GVwnONBV20Lz6fihGs33siiQk","tlshash":"97f2f1817ff58f13286ab078b5bf8f5b4778a348509674af92c3e7b48c851c85f12891","first_seen":"2025-06-02T19:11:03.283598Z","last_seen":"2026-06-08T20:12:49.456914Z","times_seen":29117,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":111,"dns":1,"connect":16,"send":0,"wait":16,"receive":18,"ssl":90},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:29 GMT","end":"Mon, 23 Mar 2026 19:52:28 GMT"},"fingerprint":{"sha1":"D2:3B:6C:71:A7:BD:CB:B5:56:D1:90:EE:91:17:19:0F:24:02:E5:93","sha256":"DE:C3:87:EA:0D:EF:DF:B6:5C:9C:CE:F8:48:EB:2C:CE:06:FC:22:FD:3A:57:71:FF:23:81:1F:16:8F:67:66:B6"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nFrXyw1W3fxIlGzg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 23 Jan 2026 20:34:33 GMT\r\nexpires: Sat, 23 Jan 2027 20:34:33 GMT\r\ncache-control: public, max-age=31536000\r\nage: 240840\r\nlast-modified: Tue, 09 Sep 2025 18:33:06 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15028,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15028, version 1.0","md5":"42df88898bab0fab4c59cd7590f670ed","sha1":"5a31376aff3fbaad3396224b7157d1294273b326","sha256":"6285243909b5d0b7d12b5795a99e37355e361ebfeef01b6f8bc95fbe46aa611c","sha512":"6df2554d7064157913f8f19bce08248edb1daaed201da4efdae927d3742a55a3f6584d07c94c5772fbd5222978b6857951054d6699dcdc8e16ba1c7b5bb3c1ca","ssdeep":"384:TzdHStVe4OxNyweZXvvMrcOYVGPfSGOPhz:TzdHS32yVZ/vMzYQHrKz","tlshash":"6762c090cbfdb6e3e93c26b44748fa853dd2fa205837e3d1afc2885170c071a36a5526","first_seen":"2025-06-04T19:39:20.238119Z","last_seen":"2026-06-08T20:52:35.728151Z","times_seen":2482,"resource_available":false,"data":null}},"time_used":172,"timings":{"blocked":63,"dns":0,"connect":17,"send":0,"wait":39,"receive":4,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2556-137\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":311,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"d4a56d3242663a4b372dc090375e8136","sha1":"7815fa6a775fd92a2399a791aaa50146d9d3aabf","sha256":"d982c4fff78c63ed84481eb36845e3b9e2753bfe996a3ba45835f75c6af1dc55","sha512":"6c1568145eb55ee1672830f98415ce0883719817a5b2f64d9da79f6e050a91d063a05f941055b936b3e0f3bbd613415030f4c95ebbbc51262563eecab38a1878","ssdeep":"","tlshash":"f8e0cd1518aa9d9e702b97dc993a52bc0a1ec20bb7ac4f7da227f0b6734c18080b7557","first_seen":"2023-04-05T13:28:44Z","last_seen":"2026-06-08T17:55:45.561312Z","times_seen":1396,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/uploads/2023/07/izobrazhenie_2023-07-25_193929427.png","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/uploads/2023/07/izobrazhenie_2023-07-25_193929427.png HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 2779\r\nlast-modified: Tue, 25 Jul 2023 13:40:29 GMT\r\netag: \"64bfd0cd-adb\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2779,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 53, 8-bit colormap, non-interlaced","md5":"0d08ce2e89453c3f7a7ebac3b6bb039f","sha1":"e0ac860967ffd7ba620c3190a3e3eb99ba22abf7","sha256":"2f2c94ec5b125993f5a84bbee7ecd5634f0f152217682a2b719e4cda6bfcc921","sha512":"f2c539034ae3e31ee0505b74007b75868fbff8df9d33b32afd07c81e5db361959807f30dd5ca416948e4e288c64971e0092bad261742397296d608eee94c71e8","ssdeep":"","tlshash":"13512ac12cd11ea4eecc7e3d64270fdae709f080f5cad1955e8347bb9c1a887a690b01","first_seen":"2025-08-13T07:41:23.719347Z","last_seen":"2026-01-26T15:28:56.836331Z","times_seen":2,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2556-625\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1573,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (1533)","md5":"3e6902b70ee52754121f017fd48175db","sha1":"0a5d8a5716c7b249eb5e0b02d04aa74c5b9948cb","sha256":"21dc21cf1cc77b458d114634e3775e70f229dc0c215b0c8958920e2079cb5a16","sha512":"3c3a2ef49c5af4b426a325adf79a86817e2c7454804180684290fbc71351841c13318e6d24e18636866c7e87904702ca809a810f35737005ce6ca3d146ab045f","ssdeep":"","tlshash":"ca311699fd5d3870011610e8a95eac06e1367553620bcc58cd38e48dbc78ce9794bb8f","first_seen":"2023-03-07T01:27:07Z","last_seen":"2026-06-08T17:55:45.529036Z","times_seen":2595,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.min.js?91f13f1","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"GET /isz5.min.js?91f13f1 HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\ncache-control: max-age=300\r\nexpires: Mon, 26-Jan-2026 17:33:33 EET\r\nduration: 905524\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76616,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63958), with no line terminators","md5":"ddc2e47a290747e40a6657633a9006cc","sha1":"dd8718108b1f434afbd5662d42f63469acb417dc","sha256":"d9be6490b4b510322526bea21a050c61e238d629060e13c2b62fe47f4e997b88","sha512":"2dc8980c8ea2fc23ec958fc2468c95dd71d68dc297c533e0f33b6b3579f75d3c2dba0fb09ab10d1e9c64b053f5a0adda346d80d0e39e67b91104ba99102f2271","ssdeep":"1536:5SrDJznksXBlWlfiRDqP3CN1M7crLy1hJHOTjRSgrj0MxClG86X+esW/XfDhw/+e:uznvrWlfqqPwMYrLy1hJHOTjRSgrj0Mo","tlshash":"df73d7c66542729b93933232671f0162ff076d80b2c79b44d3c1b5849eafb71662afe4","first_seen":"2024-07-20T20:49:59Z","last_seen":"2026-06-07T08:59:53.191429Z","times_seen":207,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":60,"dns":36,"connect":30,"send":0,"wait":48,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/uploads/2023/07/izobrazhenie_2023-07-25_202206117-100x100.png","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/uploads/2023/07/izobrazhenie_2023-07-25_202206117-100x100.png HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 7237\r\nlast-modified: Tue, 25 Jul 2023 14:22:32 GMT\r\netag: \"64bfdaa8-1c45\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7237,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"6b6660671f9eaf9bbbd565627d1cbbfb","sha1":"e9b2abf6fb155435fe186de43b66c4ab5eb51832","sha256":"c9cb62c49bc52a0c0946f2d5db33ddc61045c3b79a6d97b38163a55271b5f29f","sha512":"362d1c6cef5f5ecb2ec8003e0167f9891f571b72c64ce94221f89112bb7d21b3f9afde0fe13a00780e4784c3495ae33a3887fcaadf2e07e800520f52dfe01412","ssdeep":"192:0ZSIJuzL0UnzxwJ6cW0cn1xIqRUmowfbjNmV5RqNsNu:0MtN0Wh1xIVmJfQV58NsNu","tlshash":"c1e18dfaa2f92b33c6c949618427b453c525d82f148c7fa076d0773e8917d8a74d94c7","first_seen":"2025-08-13T07:41:23.717742Z","last_seen":"2026-01-26T15:28:56.838446Z","times_seen":2,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:34.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 298\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":298,"data":"{\"blocksId\":[\"313797\",\"313798\",\"313799\"],\"isAdBlock\":false,\"uid\":\"91f13f1\",\"lang\":\"en\",\"url\":\"https://adobeflashplayer.su/\",\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\",\"city\":null,\"region\":null,\"countryCode\":null,\"width\":1280,\"skip\":[],\"referrer\":\"http://no.domain/\",\"sessionReferrer\":\"http://no.domain/\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:34 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":755,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"dd083cd0496de46eae1ded89638fda1d","sha1":"37aa7c17fe5de6d38fd2e0641abbbc6fc8f5ec46","sha256":"d407f3127824ccbd16ee923b658b4a31fa899926edd15600c1a745a241211be4","sha512":"a3b83efc781d453ca8c8e42f0641392e267cf3aa1eb13bdc703cf8e89410f1cbec473d93e10805cf95fd05604f053aefeccc109065addef269db5e7862fb5f01","ssdeep":"","tlshash":"bc01fd641c3c2572d9428e48ec825a46c4cb51a5e7708ca88c88ec1ee3c848e9b023b7","first_seen":"2026-01-26T15:28:56.83954Z","last_seen":"2026-01-26T15:28:56.83954Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-26T15:28:32.549Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:32 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/8.2.28\r\nvary: Accept-Encoding, Accept-Encoding,Cookie\r\ncache-control: max-age=3, must-revalidate\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Contact Form 7","description":"Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.","website":"https://contactform7.com","common_platform_enumeration":"","icon":"Contact Form 7.png","categories":["WordPress plugins","Form builders"]},{"name":"Akismet","description":"Akismet is a service that filters spam from comments, trackbacks, and contact form messages.","website":"https://akismet.com","common_platform_enumeration":"","icon":"Akismet.png","categories":["WordPress plugins"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Gravatar","description":"Gravatar is a service for providing globally unique avatars.","website":"https://gravatar.com","common_platform_enumeration":"","icon":"Gravatar.png","categories":["Miscellaneous"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress Super Cache","description":"WordPress Super Cache is a static caching plugin for WordPress.","website":"https://z9.io/wp-super-cache/","common_platform_enumeration":"","icon":"wp_super_cache.png","categories":["Caching","WordPress plugins"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"a3 Lazy Load","description":"a3 Lazy Load is a mobile oriented, very simple to use plugin that will speed up sites page load speed.","website":"https://a3rev.com/shop/a3-lazy-load/","common_platform_enumeration":"","icon":"a3.png","categories":["WordPress plugins","Performance"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"YouTube","description":"YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.","website":"https://www.youtube.com","common_platform_enumeration":"","icon":"YouTube.png","categories":["Video players"]}],"data":{"size":170748,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8912), with CRLF, LF line terminators","md5":"3ff6b9cd172c94670059fae14b1e798c","sha1":"608383a149174adb65218995277062a21d770fcd","sha256":"6d65fd26883495d48f886624d8ce7ab27962d45f79cc8b35e70f0a86bd251fb5","sha512":"b8797d0d2eaff458a1475148f3190a36d5d8e928309a1d82fc73d7dc563f2fdf564dead95cf74376849dfa656c99debf3bafbca362300468ef344c59423a3514","ssdeep":"3072:FwNIrpKITFqH10rTtJ1MCv5DkwAQOlij/h4dZ72fM:FKIZqH14TnuCpffM","tlshash":"b0f3f92514a50039837bb3aeca55650cf5a1017bcb06c788b5ac644e7ff9ea182f7f6c","first_seen":"2026-01-26T15:28:56.840549Z","last_seen":"2026-01-26T15:28:56.840549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":361,"timings":{"blocked":138,"dns":61,"connect":37,"send":0,"wait":80,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/jquery/jquery-migrate.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Tue, 08 Aug 2023 22:41:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64d2c4aa-3509\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13577,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (13479)","md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-08T20:35:30.620703Z","times_seen":825745,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/gif\r\ncontent-length: 42\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\netag: \"687e2556-2a\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-06-08T20:31:51.15623Z","times_seen":941606,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/dist/hooks.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-includes/js/dist/hooks.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Wed, 03 Dec 2025 14:01:24 GMT\r\nvary: Accept-Encoding\r\netag: W/\"693042b4-161d\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5661,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (5626)","md5":"90e932bd9e62583fc494c00498cfe7f5","sha1":"4f57e11bff609f90f49174187a0b5a6ba847ad28","sha256":"87cee5f49ba0d3017efc409579fc58b91a717f8f14751f7d804447ac9bcbaf4b","sha512":"ed9c129faf972ddfa705f05c3207884e5e9cd175baa45d49ce9d42bc0d01e4e8f36e627731bdd97214b1e2400fdd5012262a42f9800cd4f5565dbf183ba58507","ssdeep":"96:wXDE/3s/0EBM6ZUUCRTH+zl4NsBjcEmDtrGV2C2yics6w1RfGdzsvqZTq:wzg3kBFZYH+zhjngRw2cLzw1RfGdzsvx","tlshash":"56c153847983b970b2337057f0ff48d561baeba575298081964ec4a05d7388ee0a7abd","first_seen":"2025-10-27T08:47:54.273294Z","last_seen":"2026-06-08T20:42:31.54714Z","times_seen":193811,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/themes/ms/assets/js/scripts.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/themes/ms/assets/js/scripts.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Tue, 25 Jul 2023 07:14:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64bf764d-c40c\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50188,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (50152), with no line terminators","md5":"9687060c77993e31070aa53b1a4e8a4b","sha1":"bd33bcd5ac8767b266dcfe914548a024923a89b2","sha256":"c544f4dc829eeca25b99a219eac92840ae7372c159a4321266ad45de202d96f0","sha512":"5e13a7201f8e0e0a8a1e8232e16673bffe9957c4227ae6b8dc0eee6db7386b9be9cafa553dc83ae574fc8dac55c977c1f7affcb6ea9dd51a40884a7345f6da5e","ssdeep":"1536:1bp1Xo9qhxukfys5AuFwuckVnben4Wgqk:1liAmO","tlshash":"9e339590724170b50aab11055ebfb30ff06a6b166cd6c404d06a9ea42f64fe7b067ff6","first_seen":"2023-03-10T18:05:42Z","last_seen":"2026-02-21T02:38:11.750343Z","times_seen":25,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/akismet/_inc/akismet-frontend.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/akismet/_inc/akismet-frontend.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:32:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e255a-2c7c\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11388,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text","md5":"91954b488a9bfcade528d6ff5c7ce83f","sha1":"edf589eb28247c73ccc04e5b34ad107b90bd1b2e","sha256":"6bc5622bfab1a16855ad49b99a3f9ed8eb24f49da469a113f9000b866f109e2e","sha512":"d4772d5a06b400a7ec7250c85b5e5630f309b0876936de85bf3d24030fb2df55bb63ea5e4905325f41561996ebfc03bec95ae2dc48320273c894ffdca9943899","ssdeep":"192:YFRYlRfiAjGof8eGJsqSggUdgPzvi7Vp5d7Zq6:SRYlRfVjJEsKgUaPzvup5dF","tlshash":"693242a75b6c263f50b2730e695ca3c9763e9471d8005836bd7e996838c4d384336eed","first_seen":"2024-01-21T19:52:24Z","last_seen":"2026-06-08T18:36:15.05934Z","times_seen":14022,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sof3.site/uv2.js?u=438\u0026s=416","fqdn":"sof3.site","domain":"sof3.site","tld":"site"},"ip":{"addr":"45.82.68.79","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"sof3.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Jan 2026 21:31:47 GMT","end":"Tue, 21 Apr 2026 21:31:46 GMT"},"fingerprint":{"sha1":"9E:6A:E3:04:35:2B:45:28:95:4D:F4:87:3F:5E:E3:5F:88:D2:E6:31","sha256":"51:7C:51:DE:32:C1:E4:FF:5B:7F:44:8B:13:61:66:A9:9D:5B:E9:32:FE:62:07:DA:EE:3F:83:14:1F:95:89:60"}}},"request":{"raw":"GET /uv2.js?u=438\u0026s=416 HTTP/1.1\r\nHost: sof3.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 26 Jan 2026 15:28:33 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=60\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/7.2.34\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.34","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30697,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (11160), with CRLF line terminators","md5":"662ddd835f3ad4a58a0be8acb46e6345","sha1":"00cec6afbc2366b5d2f01221ca0f5dd4bc79a86d","sha256":"5b6e5c247ebc6c423cb6f0a85761023cb7253babe1a1e61c04ebbe453ff69a66","sha512":"ad7730fbcc87d004a23778dffdbe4009569a15581c1173c601f1a16eb8606a82e118abeda5f859450e28d9d73e7468c0834efee66ea8b7c16daaf8698c773915","ssdeep":"768:bu5ZrELENuYPf6IVUSNNRaxjrDwN/qBXDB75f:izrEIuq5yUyFDpN","tlshash":"70d2e8d97643201aea77a319adab5b1cf7364123e00766757c6c9148aff481081b7fce","first_seen":"2026-01-26T15:28:56.844635Z","last_seen":"2026-01-26T15:28:56.844635Z","times_seen":1,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":47,"dns":20,"connect":16,"send":0,"wait":40,"receive":1,"ssl":51},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/isz5.js?ver=1.1.3","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/isz5.js?ver=1.1.3 HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 26 Jan 2026 15:11:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69778436-12b48\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76616,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63958), with no line terminators","md5":"ddc2e47a290747e40a6657633a9006cc","sha1":"dd8718108b1f434afbd5662d42f63469acb417dc","sha256":"d9be6490b4b510322526bea21a050c61e238d629060e13c2b62fe47f4e997b88","sha512":"2dc8980c8ea2fc23ec958fc2468c95dd71d68dc297c533e0f33b6b3579f75d3c2dba0fb09ab10d1e9c64b053f5a0adda346d80d0e39e67b91104ba99102f2271","ssdeep":"1536:5SrDJznksXBlWlfiRDqP3CN1M7crLy1hJHOTjRSgrj0MxClG86X+esW/XfDhw/+e:uznvrWlfqqPwMYrLy1hJHOTjRSgrj0Mo","tlshash":"df73d7c66542729b93933232671f0162ff076d80b2c79b44d3c1b5849eafb71662afe4","first_seen":"2024-07-20T20:49:59Z","last_seen":"2026-06-07T08:59:53.191429Z","times_seen":207,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/themes/ms/assets/css/style.min.css","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/themes/ms/assets/css/style.min.css HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 25 Jul 2023 07:14:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64bf764d-34434\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":214068,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (49294), with CRLF line terminators","md5":"c1b809a60a3571b111bae88bb44e39ed","sha1":"c6a8d89450ac456a983f047998d283f46481a623","sha256":"68a6fc54fcd2055b789c00ca4fa3bbec49216d45d5c613f68a35f89945c08575","sha512":"55d5593d2a9559c3ccd539154190048ac50470af12651934a5f019e98889b9eeabec55507cb55832c622817e748195a9a0d557e640807dd01202cd53197853de","ssdeep":"1536:L6ACWf65WQXcJyzI2KevTcsvS/YZ4TirBY5bsYBOrQXA24L:L6Ajf65WQXcJyBT/","tlshash":"1224fae029a024ec93178e3b2771b25c6d2481a1c61146f4e3f5da5ccbfafe6427764e","first_seen":"2025-08-13T07:41:23.736507Z","last_seen":"2026-02-21T02:38:11.752825Z","times_seen":12,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/themes/ms-child/style.css","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/themes/ms-child/style.css HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 21 Jul 2025 11:30:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e24e8-8c6\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2246,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"ce2956c1f8021f64dce990e6b35edb51","sha1":"d8a0af57f6fd9a97569cea2c77964105a34c8f9b","sha256":"20aa6fc3922897f389bde7676ccb05e6023fee37783516b825608248ed349d06","sha512":"215d1449a849aaa3d6590854b9ad2a824782c1beac35f1ebead0261b2d15540e978a0b32e343f6b6e6541107f53d46ceecd473e47ef55bb835299d604d73ca12","ssdeep":"","tlshash":"6441c9919261595075b6e0aa3bcc87043b889413c64fbb7ab9d134bc4bee6b740333ce","first_seen":"2025-08-13T07:41:23.711014Z","last_seen":"2026-01-26T15:28:56.847082Z","times_seen":2,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:34.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 163\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":163,"data":"{\"stat\":[{\"t\":\"fetch\",\"bId\":313797,\"extra\":{},\"ts\":1503}],\"url\":\"https://adobeflashplayer.su/\",\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\",\"referrer\":\"http://no.domain/\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:34 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"0e8e39022741a74eeae734b3ed602556","sha1":"c7906cf80eae54e8cc52e9ee9cb6c0327b5d2a30","sha256":"32149ef2392c671499222738d60e65a11846b02b101cb3c02b932190e9dafd25","sha512":"9d79d3d7dff050662e5f76967b7d8a1dc161ce64e2af57f587055d4a8a995514cf216975d070a2553aa72793c659a47d4bdace4138ebb961a900d6dac351c0e9","ssdeep":"","tlshash":"34a00244c2842c478f533905cc22590442b1549c38534e115ab4a06f141b065ca02640","first_seen":"2026-01-26T15:28:56.848241Z","last_seen":"2026-01-26T15:28:56.848241Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-admin/admin-ajax.php","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:41.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"POST /wp-admin/admin-ajax.php HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 109\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":109,"data":"action=saveAdBlocks\u0026type=blocksGethering\u0026data={\"data\":{\"0\":{\"id\":\"313797\",\"code\":\"890429\"}}}\u0026_csrf=cb1297f753"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:42 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 1\r\nx-powered-by: PHP/8.2.28\r\naccess-control-allow-origin: https://adobeflashplayer.su\r\naccess-control-allow-credentials: true\r\nx-robots-tag: noindex\r\nx-content-type-options: nosniff\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0, no-store, private\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-frame-options: SAMEORIGIN\r\ncontent-security-policy: frame-ancestors 'self';\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-06-08T20:17:18.911532Z","times_seen":114435,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/dist/i18n.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.172Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-includes/js/dist/i18n.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Wed, 03 Dec 2025 14:01:24 GMT\r\nvary: Accept-Encoding\r\netag: W/\"693042b4-14c2\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5314,"size_decoded":0,"mime_type":"application/x-javascript","magic":"data","md5":"3a5838d1182eb0b11f5a58bfe26e2529","sha1":"920b2291e65d62eb55c1958911768540abaff5cf","sha256":"d4efe709c65438ae90dff385486421fea45762880f21fc4e0dca3fa96210f428","sha512":"bc41d50cd2e5c17c75ba737c303f2f498cc94e2c3fe402b2f15c5f10531e53633598093da98579b2dee65733dce0f763d77380ae35a9591d8bf91f975b7c6845","ssdeep":"96:L9emIWL7lnv93ssmAeGejQVnmggoC7arVCG0GXF730IQRDdlZq+SxSD3LmD:8mIWZVszMuinmg3rQ8Xd30DDdlZq+Sx3","tlshash":"2bb157dcb9d57022235121a0597fb409f3357d6470ebb8006ba9c4a47eb15cfb1a2fad","first_seen":"2025-10-27T08:47:54.280246Z","last_seen":"2026-06-08T20:42:31.543115Z","times_seen":190964,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/contact-form-7/includes/swv/js/index.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:33:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2597-30e0\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12512,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (12512), with no line terminators","md5":"96e7dc3f0e8559e4a3f3ca40b17ab9c3","sha1":"d363d0291e92c233e828023583dcf6685f2da5a2","sha256":"29fdd17a7002a2e1bbd9b33adafc53457c64006b5aca8f6e4dbf907de35433ca","sha512":"851dcea59510a12dd72c8391a9ea6ffa96bcbe0f009037d7a0b6e27bae63a494709b6eee912b5ed8d25605fbb767a885f543915996f8a8aff34395992e3332dc","ssdeep":"384:wwuf8OQL0sARrAZcNWLq/+Ffm/hibLexa2VautyX2fsL3ZHO1O9H:wwuf8OQL0sAZAGNWmGcibLexa2Vau0XD","tlshash":"d34235e16197e0f0c7c338a48816c051f2bf866cb9898054fb5dcdd22d5de07626b77a","first_seen":"2025-03-11T19:47:45.42406Z","last_seen":"2026-06-08T20:45:51.815423Z","times_seen":198480,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/contact-form-7/includes/js/index.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:33:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2597-348c\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13452,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (13452), with no line terminators","md5":"2912c657d0592cc532dff73d0d2ce7bb","sha1":"70a679e2769825236f83bcc56965a9d0bd86c4e9","sha256":"ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0","sha512":"9646384e65d09bf00cb20365f43e06dd41e7428e3fc6cc2737f4e69b50f006ebb25bd24a566fcd9faec2f0dcb24404e25d57ba7b8c6aba61797a29c515ad5144","ssdeep":"384:IsIRHeFJ1yQ7QdfnJgeYh7MXlsNqrBp1pgQpwOjNtqohIQ/5Z:IsIR+L1yQ7QdpYh7M1iqrBp1pgQpwOjn","tlshash":"0a52d7a1472955321eb506e391e513c1769075aef44b8aa1a898dc2e18bdcc328f3ff7","first_seen":"2024-11-04T17:50:00.022634Z","last_seen":"2026-06-08T20:41:24.83886Z","times_seen":205882,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/comment-reply.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-includes/js/comment-reply.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Wed, 13 Nov 2024 20:09:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6735077e-bd2\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3026,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (2991)","md5":"e4a49df71f8b98c1d9f9d8fce74d89e8","sha1":"b95fcda0c8c26305ad94e80343d0cfca8a048a10","sha256":"9d4687a19cab8f7442a3bda40c45be4d10e42488e091ddd706c3caed83c3ee1f","sha512":"42cd5f854779886f24c43ed14617380110c946d1b430b454060c3b391de6fbae6d0ed8ab7cdd7cfdc9726b2d6142a4e01c4448e36088dfcee7fdd00b60909f89","ssdeep":"","tlshash":"5051a7d437c95d762a83b3395efe930271712709a50805608826c86931bcfea63b67fe","first_seen":"2024-11-13T06:33:24.856382Z","last_seen":"2026-06-08T20:26:36.497739Z","times_seen":79818,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"GET /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: application/x-www-form-urlencoded\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f1d8cfbfb1cd4c7ce9952e9b04ebd7d2","sha1":"5d1fa47251e439ca029411878a41e32ae5f8b5bb","sha256":"83e136d776e451aa3e0252e148de9815ef0bb92701dd909c8f167126ebb8aed3","sha512":"b170d712af4abdd08f3c0740d214e16edfcf2d7deb8c528ba492f1f904f3837d17428b119189b60f8b8c0efcd247197ff0187efc3b8177464ee1da615ad5bf76","ssdeep":"","tlshash":"36a00281d084184b4d173505ed11990481b2589838124f225db4f07e141b165ce02690","first_seen":"2026-01-26T15:28:56.8527Z","last_seen":"2026-01-26T15:28:56.8527Z","times_seen":1,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":69,"dns":37,"connect":30,"send":0,"wait":27,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.json","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"POST /isz5.json HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 183\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":183,"data":"{\"stat\":[{\"t\":\"loaded\",\"extra\":{},\"ts\":697},{\"t\":\"dom\",\"extra\":{},\"ts\":1345}],\"url\":\"https://adobeflashplayer.su/\",\"v\":\"2.2.3-952d263\",\"r\":\"qsiwtbojhr\",\"referrer\":\"http://no.domain/\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"fcb59312aa305f160ad9c2c65b38457f","sha1":"55beaa9a54affed796e92822f4f606319d9e7fba","sha256":"499ca7d7c7e8c12f52859080c54fd51c39ec178193e17dfb28ac79640dc0bac3","sha512":"abd6402d3422b5642b4e515acf641b6c3426d97811e39749e149f7ff8f416e86a5c5cc5e54fc0205e44ce078a0df0ce8fd1fa3057a578160993e95f395c90af9","ssdeep":"","tlshash":"f0a00240808418579d233605cc115d0445f154983c128e1169b4a06e541b065ca02a10","first_seen":"2026-01-26T15:28:56.853748Z","last_seen":"2026-01-26T15:28:56.853748Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-admin/admin-ajax.php?id=2\u0026action=wpshop_views_counter","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-admin/admin-ajax.php?id=2\u0026action=wpshop_views_counter HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:34 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-length: 48\r\nx-powered-by: PHP/8.2.28\r\nx-robots-tag: noindex\r\nx-content-type-options: nosniff\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0, no-store, private\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-frame-options: SAMEORIGIN\r\ncontent-security-policy: frame-ancestors 'self';\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"67a74587914348f48bfe9812a7386ca2","sha1":"86b2af8672cd2211c4058499f05bd70916651468","sha256":"22ea77466a8fab57b30f8057f644694a515763a1ca937eca267c888457895c9e","sha512":"78007213ef4d645323f8e50ab8d9e7e9466814a083ba6b775ad922e85f5f9e088e3f4e10b92de78c7961ed16ce1a89c63170563b3109435e41e1eb1350c26d37","ssdeep":"","tlshash":"da900413351155fdcc001544f434fd35745513177d10cf1c50dc5504c7340553443437","first_seen":"2026-01-26T15:28:56.855093Z","last_seen":"2026-01-26T15:28:56.855093Z","times_seen":1,"resource_available":false,"data":null}},"time_used":710,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":710,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:29 GMT","end":"Mon, 23 Mar 2026 19:52:28 GMT"},"fingerprint":{"sha1":"D2:3B:6C:71:A7:BD:CB:B5:56:D1:90:EE:91:17:19:0F:24:02:E5:93","sha256":"DE:C3:87:EA:0D:EF:DF:B6:5C:9C:CE:F8:48:EB:2C:CE:06:FC:22:FD:3A:57:71:FF:23:81:1F:16:8F:67:66:B6"}}},"request":{"raw":"GET /s/rubik/v31/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35348\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 23 Jan 2026 18:42:01 GMT\r\nexpires: Sat, 23 Jan 2027 18:42:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 247592\r\nlast-modified: Tue, 09 Sep 2025 18:39:37 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35348,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35348, version 1.0","md5":"6e192bc03c1ec5b2ba6b1281ae4f4a71","sha1":"54dd8ad0f73f88eb7c28888d5582380a978f6571","sha256":"8fb387ef4c02189952d5644187a217863e71db410f9dfb3b0afd0ebc4447bec6","sha512":"412aec2aa07af44d4f5e889ddddb9af73b89cccb793aabbb1161583f3d13ff0adc2053edb329a039fa5bc7c9f5b4a69170365e3ad29cd95a8b81fe9997ae1f7d","ssdeep":"768:Dbm/Jw6U5CNNTG4IwnW0kpZ/NXBeh58pFpS0Lz6fihG4iW3lpsii3AYNb:umF5CN5GVwnONBV20Lz6fihGs33siiQk","tlshash":"97f2f1817ff58f13286ab078b5bf8f5b4778a348509674af92c3e7b48c851c85f12891","first_seen":"2025-06-02T19:11:03.283598Z","last_seen":"2026-06-08T20:12:49.456914Z","times_seen":29117,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":62,"dns":5,"connect":14,"send":0,"wait":31,"receive":10,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/uploads/2023/07/cropped-izobrazhenie_2023-07-25_193728082-192x192.png","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/uploads/2023/07/cropped-izobrazhenie_2023-07-25_193728082-192x192.png HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 16556\r\nlast-modified: Tue, 25 Jul 2023 13:37:34 GMT\r\netag: \"64bfd01e-40ac\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16556,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced","md5":"687667343720935f4e0d84ab94e92225","sha1":"dd3537764b13e780c7b0cd185e9c7469d1c351cf","sha256":"bd2a132fc0a9a0244e88253a4bda32f3e88fa4969cbbc1ef7407cbfbe5f93b52","sha512":"2eefd7e1323bea58f49e2f2b89b30f254ed93228b309f94aa41f2934061da6cdaa2f8d27e097e06ba4bc2476e227993b51de53e4cc4a6adb6fcfbe9723106b39","ssdeep":"384:oE4D46QkvzjOJZ5WvKRQq1HbioWCsfNNUaGuLd6gPMBjvRbay9ufe:odN7j8fWvKRQOHGNZf0Xs0Bjwne","tlshash":"b472d08f37234512ad2e3509c51493f470f428566f4612bd28c65fd2bf4ae1c7a2f696","first_seen":"2025-08-13T07:41:23.722297Z","last_seen":"2026-01-26T15:28:56.857103Z","times_seen":2,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newrotatormarch23.bid/isz5.min.js","fqdn":"newrotatormarch23.bid","domain":"newrotatormarch23.bid","tld":"bid"},"ip":{"addr":"46.4.104.244","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newrotatormarch23.bid","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 04 Jan 2026 18:38:55 GMT","end":"Sat, 04 Apr 2026 18:38:54 GMT"},"fingerprint":{"sha1":"26:A0:43:3B:28:54:09:04:8B:89:B4:4E:2E:AF:D2:03:E9:BC:16:1A","sha256":"1A:2A:D2:8B:85:1D:40:82:D7:29:84:BF:6B:04:02:69:5C:8E:BC:15:F0:B0:A8:7C:B2:AC:EB:10:26:89:25:61"}}},"request":{"raw":"GET /isz5.min.js HTTP/1.1\r\nHost: newrotatormarch23.bid\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: application/x-www-form-urlencoded\r\nOrigin: https://adobeflashplayer.su\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\ncache-control: max-age=300\r\nexpires: Mon, 26-Jan-2026 17:33:33 EET\r\nduration: 967123\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76616,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63958), with no line terminators","md5":"ddc2e47a290747e40a6657633a9006cc","sha1":"dd8718108b1f434afbd5662d42f63469acb417dc","sha256":"d9be6490b4b510322526bea21a050c61e238d629060e13c2b62fe47f4e997b88","sha512":"2dc8980c8ea2fc23ec958fc2468c95dd71d68dc297c533e0f33b6b3579f75d3c2dba0fb09ab10d1e9c64b053f5a0adda346d80d0e39e67b91104ba99102f2271","ssdeep":"1536:5SrDJznksXBlWlfiRDqP3CN1M7crLy1hJHOTjRSgrj0MxClG86X+esW/XfDhw/+e:uznvrWlfqqPwMYrLy1hJHOTjRSgrj0Mo","tlshash":"df73d7c66542729b93933232671f0162ff076d80b2c79b44d3c1b5849eafb71662afe4","first_seen":"2024-07-20T20:49:59Z","last_seen":"2026-06-07T08:59:53.191429Z","times_seen":207,"resource_available":true,"data":null}},"time_used":228,"timings":{"blocked":69,"dns":38,"connect":30,"send":0,"wait":49,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Rubik%3A400%2C400i%2C500%2C700%7CRoboto%3A400%2C400i%2C700\u0026subset=cyrillic\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:30 GMT","end":"Mon, 23 Mar 2026 19:52:29 GMT"},"fingerprint":{"sha1":"86:D6:34:52:EB:68:D5:4F:25:44:58:CF:88:1B:C8:55:D6:9A:23:A7","sha256":"4D:67:BD:08:81:96:64:4A:7A:02:51:95:46:0E:60:D7:FA:5D:84:3F:53:29:E5:C8:84:87:AC:12:B6:97:C2:8E"}}},"request":{"raw":"GET /css?family=Rubik%3A400%2C400i%2C500%2C700%7CRoboto%3A400%2C400i%2C700\u0026subset=cyrillic\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 26 Jan 2026 15:28:33 GMT\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27511,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"ad587466ad2b35b7d0c0bf4abff553a9","sha1":"71a670c21e4a8039e079d0969d67fd9d758be24d","sha256":"6c7ce1a1471573b17a0018332a2349da839a94104ab321de5bfba769cb2cca47","sha512":"322b1184f3ee7c20c4928078a676e5de9b285909a7dd8adb989c24c6268c07fb9618ef8aa3b589ae6380307c856ad17214adee5ef2d626bcc4e42ff593f1be56","ssdeep":"768:zaVyIAa3LZlmTcfFBhiEymdmtC0BQiVPTj2XEg:96KQ","tlshash":"37c21de1081b5040bb475cd223ce6e36fe0ea2553081d179abfd5b9bacdbc62636439d","first_seen":"2025-11-23T17:58:54.020225Z","last_seen":"2026-01-26T15:28:56.858253Z","times_seen":4,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":191,"dns":0,"connect":15,"send":0,"wait":35,"receive":0,"ssl":207},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-includes/js/jquery/jquery.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Wed, 08 Nov 2023 00:54:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"654adc61-15601\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":87553,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-08T20:34:34.757289Z","times_seen":895912,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2556-bc7\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3015,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (2976)","md5":"53e0fbdc5d79d07d6d955e523f8d2996","sha1":"e830d0de78b481e31995d69bfda2e71f4cc1be56","sha256":"2b3c6f1d3cea37b4d8cc609a141b421a88bcaf2f3646965f9f95f4d4a683c949","sha512":"d4052967b14991377fcbd49d023aa944778ccb02e2f11257adfb0926a3d2944b50939c3f3708e126cf872a8492db57365a7e40a935c912371cb1720def2f6e7b","ssdeep":"","tlshash":"b351b4fd7102ba5139ab1136d11fe10a5232267fcb1a9d41b43e50a91ca49f3221beaf","first_seen":"2023-03-07T01:27:07Z","last_seen":"2026-06-08T17:55:45.589853Z","times_seen":2503,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.181Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2556-415\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1045,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text","md5":"624ebb44eb0fd0fd92d0a0433823c630","sha1":"44010ca531b82a13513375597adb4c08b77473fa","sha256":"a8a819d7548b9c102d7776cb645212ca1e324ac2de2170598699061e29bc6cbf","sha512":"6cd26435debf4d20b0726520df6f93adf971f1c6d43eb2e7d38faf0c477d09c178c5e60fbb5b5518cb81cd67be129da5072405c4fd9545673b2e2ff5c85683fc","ssdeep":"","tlshash":"dc118cacb99584baadbbb118f33f813ea62b766779042d55f1ec4d84aec0d342841844","first_seen":"2023-03-07T12:02:09Z","last_seen":"2026-06-08T17:55:45.535563Z","times_seen":2123,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/css/loading.gif","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/a3-lazy-load/assets/css/loading.gif HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/gif\r\ncontent-length: 1690\r\nlast-modified: Mon, 21 Jul 2025 11:32:38 GMT\r\netag: \"687e2556-69a\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1690,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 32 x 32","md5":"265808cc54404f22de9785c713e0cb7e","sha1":"bf3d1b71957caee1c6273061ad00c99c5d785a0f","sha256":"b6e4dff920e21e3f436a014140d01d43c97177e007556ede69f772f08cb7a7ec","sha512":"125e05c1da5bf67b0eb643230be29a209d5f143e546fc4aeceb69bf3f3ce85a0cdc986095d9551cd9d89e2eea5b163ecf32376430a6e4ba3bdf651feeec6708e","ssdeep":"","tlshash":"2d31928fe8629627f6ede2b6417e5e1c0cc094b0b2b8c19b100de154393372fc2c862e","first_seen":"2023-04-05T13:28:45Z","last_seen":"2026-06-08T17:55:45.536225Z","times_seen":2091,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/uploads/2023/07/cropped-izobrazhenie_2023-07-25_193728082-32x32.png","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/uploads/2023/07/cropped-izobrazhenie_2023-07-25_193728082-32x32.png HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 1226\r\nlast-modified: Tue, 25 Jul 2023 13:37:34 GMT\r\netag: \"64bfd01e-4ca\"\r\nexpires: Wed, 25 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1226,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced","md5":"0736de8043c4a17dd4486cb333a37335","sha1":"266a4984866a7f6a76cf1d6c10005879f25f35e7","sha256":"4f7e6a7f0c9d8dfc05f19ee658268bd4e434895b7b44adf4366a88f0e71cb29b","sha512":"7ecdc2c9d3e131c9397b72d5f47b2831df438488367f112b090dd458b0d5cde6b8a7e7be091cff6a3e388337ec1639bef5167a6a718631439c3125b087f360d0","ssdeep":"","tlshash":"ef21e7c2c03800a933a17e3bcd0a27a519811cdc75216a781e5fb183bb37234802a7f7","first_seen":"2025-08-13T07:41:23.745301Z","last_seen":"2026-01-26T15:28:56.862118Z","times_seen":2,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adobeflashplayer.su/wp-content/plugins/contact-form-7/includes/css/styles.css","fqdn":"adobeflashplayer.su","domain":"adobeflashplayer.su","tld":"su"},"ip":{"addr":"45.130.41.88","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://adobeflashplayer.su/","date":"2026-01-26T15:28:33.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adobeflashplayer.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 25 Jan 2026 03:06:25 GMT","end":"Sat, 25 Apr 2026 03:06:24 GMT"},"fingerprint":{"sha1":"A0:23:C7:44:1A:4A:0E:D7:23:B9:07:B6:29:1A:97:3A:E2:54:52:BD","sha256":"56:1F:B1:5B:D7:D8:87:B5:BA:C8:31:39:05:19:85:39:41:2E:76:C7:DE:DF:B1:C8:89:CF:38:3F:CF:5E:10:6B"}}},"request":{"raw":"GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1\r\nHost: adobeflashplayer.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://adobeflashplayer.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Mon, 26 Jan 2026 15:28:33 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 21 Jul 2025 11:33:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687e2597-b83\"\r\nexpires: Mon, 02 Feb 2026 15:28:33 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2947,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"64ac31699f5326cb3c76122498b76f66","sha1":"cc0a5a1741b8257001f89b331378d8aa7c30094a","sha256":"4048fd0e6c44412465449ba4f5c7272349ee1574401cec755d6b8d9c0ccc28dd","sha512":"23ad865e63544ee039221161083510346b01b8be56fa7a83540036c51dceb3f0171adf8f932cf77a457240427c0c3ccbad1f9f371e977c5b6a01e9fe316a878f","ssdeep":"","tlshash":"d0510164660028504bff92db6ea9db047b6e7481cd1faf97b0c21a7c5b782851223e5e","first_seen":"2025-06-26T12:36:15.124007Z","last_seen":"2026-06-08T20:45:51.795801Z","times_seen":131775,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}