{"report_id":"9db29cb9-d93c-4f7a-a8e0-2735af02d9a9","version":6,"status":"done","tags":[],"date":"2025-12-24T06:30:48Z","url":{"schema":"http","addr":"baiastorepiercing.com/","fqdn":"baiastorepiercing.com","domain":"baiastorepiercing.com","tld":"com"},"ip":{"addr":"74.63.219.251","port":0,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"title":"Alitools - Smart Shopping Assistant for AliExpress","dom":{"size":146409,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (12895)","md5":"3a4767cb9f95bb4e67e8e9d50b749acc","sha1":"50adb843ec10ddfb8b919361502dd19255910f1e","sha256":"eb955a8c51134be3c38f185a07b0129e3854a0daec13ecfa18c9fee54b226e60","sha512":"cd4ee18d0570cd7a8adc51a4a0f33918ecd070fd06ab28176a89a613be3f3b95a9cf61e644a91e090e4de9de3b8900cd7298baa8fc78ee58e9e3e5e4ad26a3cb","ssdeep":"1536:ZhCs1aGNVDIZbQXYgU4xmSJqyZkHllOAtMPq5TI3s3L3T3X3J3b3o3USC7R/NJsY:ZhC6pzIZmnU8xZQMW","tlshash":"aae3c63834fa1139255341fbfbc76589f620e047f41aec593aad43442fc6a658ea33e9","dom_hash":"domhash8fa474e91ebef73dbfd710b672248873","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"baiastorepiercing.com/","fqdn":"baiastorepiercing.com","domain":"baiastorepiercing.com","tld":"com"},"ip":{"addr":"74.63.219.251","port":0,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-28T06:30:48Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-12-21T22:26:30.244656Z","alert_count":0,"request_count":2,"received_data":322915,"sent_data":1003,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"click-for-preview.com","ip":{"addr":"168.119.149.123","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-05-14","domain_rank":0,"first_seen":"2025-02-26T16:34:36.560046Z","last_seen":"2025-12-14T20:02:58.019677Z","alert_count":0,"request_count":1,"received_data":135485,"sent_data":823,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-21T22:14:03.270461Z","alert_count":0,"request_count":1,"received_data":33115,"sent_data":537,"comment":"","tags":null,"fingerprints":null},{"fqdn":"public.readdy.ai","ip":{"addr":"52.84.50.91","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":4222982,"first_seen":"2025-04-17T11:46:56.905111Z","last_seen":"2025-12-16T03:19:12.300898Z","alert_count":0,"request_count":1,"received_data":103029,"sent_data":473,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"baiastorepiercing.com","ip":{"addr":"212.92.105.212","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":1622,"sent_data":1892,"comment":"","tags":null,"fingerprints":[{"name":"Cowboy","description":"Cowboy is a small, fast, modular HTTP server written in Erlang.","website":"https://github.com/ninenines/cowboy","common_platform_enumeration":"","icon":"Cowboy.png","categories":["Web servers"]},{"name":"Erlang","description":"Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.","website":"https://www.erlang.org","common_platform_enumeration":"cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*","icon":"Erlang.png","categories":["Programming languages"]}]},{"fqdn":"altwi-zgs.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-12-23","domain_rank":1513681,"first_seen":"2025-03-06T13:55:17.156026Z","last_seen":"2025-12-16T23:14:12.187448Z","alert_count":10,"request_count":5,"received_data":139507,"sent_data":3260,"comment":"","tags":null,"fingerprints":null},{"fqdn":"alishopmart.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-10","domain_rank":0,"first_seen":"2025-10-21T10:07:12.727223Z","last_seen":"2025-12-16T23:14:12.082475Z","alert_count":0,"request_count":4,"received_data":152630,"sent_data":1957,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}]},{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":117330,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2025-12-22T01:13:25.712556Z","alert_count":0,"request_count":1,"received_data":451873,"sent_data":414,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-21T22:17:07.06462Z","alert_count":0,"request_count":1,"received_data":2542,"sent_data":456,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"readdy.ai","ip":{"addr":"52.84.50.63","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":115549,"first_seen":"2025-04-19T12:06:12.061603Z","last_seen":"2025-12-17T20:04:51.466394Z","alert_count":0,"request_count":1,"received_data":102923,"sent_data":1012,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a5351b97f80217e56e919e1852602341","sha1":"ae549bd655d458e83da515e538284250392e41ae","sha256":"46ea8db436cb46515f852d0be8e0c514987f819d35ba6d135adb3fe65695d3e7","sha512":"0d9bd6b171ef78c2df73a9e8bc67ca21d984aa2276fad402ac004b9951d4c97f4890a6126727668dece148d6556084fd7e7240604d0d9d16fda8e1caf6e3945d","ssdeep":"","tlshash":"70d05edf6156ae3bb73fda4f4b6188eb9ac7ad58e0059833345ad8e071cb2048741515","size":266,"data":"","first_seen":"2025-07-17T11:53:52.426918Z","last_seen":"2026-03-25T12:03:56.382763Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d1f64ea858e9a975b96f6cb8e3e9f27f","sha1":"12f5b4434ba5ed9ada86d3fb570fe2b91d1ebc67","sha256":"be923cb15df5102c11c996eaaf10b676eda060bf88bcdd930bf6f0a537be639a","sha512":"46b0afdd6dc980b565e8988e3c285c10fdd351658a76a3c9fb18f1ebcae7435492e6bfef3fffb8018a52bbf0cbbd275dc25f828410fcea10992f9aacf48d1355","ssdeep":"1536:xSJqyZkHllOAtMPq5TI3s3L3T3X3J3b3o3USC7R/N2:kZQMF","tlshash":"ab43203834fa1538211791bfdbcba089b120b047f445ec593aad57186fc97a4cae36f6","size":58165,"data":"","first_seen":"2025-07-17T11:53:52.430536Z","last_seen":"2026-03-25T12:03:56.383441Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"198a1da7728368dbcd7d02ce41862885","sha1":"8ba0571343134a233f2dc6f6bb1105f9c7449b93","sha256":"24c8679cc7dcd2dc18be51c3d9183e03e9e0b0228f3ecfcb2bcbc14416e8d125","sha512":"cbec1efc538758caa69a862c6aa22976e885d68a68cf8b54c4902364a4ac6038d3d3f6dd3b1b9fe1fe71f8295391b379d2397df96a329f194ae9107ffae8f2e8","ssdeep":"","tlshash":"bf51aa357abe5634122702ebf3d973c6f460801f744ae8ae396c07882fc2e6646750da","size":2710,"data":"","first_seen":"2025-07-17T11:53:52.433595Z","last_seen":"2026-03-25T12:03:56.384057Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a3ef625630e2177d5c319aec9676490","sha1":"0c331926f7a03a338d7b4c7ea781a4a60c8721d8","sha256":"e56e3f6ef20a7bd2d6ffa44befbca38a11c141249c6977fdbfe41cffe775a6ba","sha512":"63e80a74f2a77d7e616dd545a6d3e3bbd48f6ad651499fa9602e3e4404e45ded904e03db5efcbad972d2443c52a13e9cf44670790873e8e36266e86fe714ff19","ssdeep":"48:w7DBlgOiR0lQJMlyVFZsW3tTqIOwAVvMhwmilUDVBvv5GRjQYyYF4Yzzm5jSNxR1:ADS0lAMlgFZ33usbwj1BmOnQDK","tlshash":"df91dc74387e5035022306fbb7d7b38ae520500b7456ec6e398c06882fc3ea58b765ea","size":4216,"data":"","first_seen":"2025-07-17T11:53:52.434841Z","last_seen":"2026-03-25T12:03:56.384634Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"61ee167465e712d12a67037cbffc0068","sha1":"7be4ba889188723091aac05f60aad7671fd07f03","sha256":"903803d36340fa19311ca93ea422e479090e90a5fc69bc9558aa0eaf88f13a6d","sha512":"3165beb76c2e48a5a4043800b9b7b79f99ec79b43cbfddd2e9344d694bab61d03b8be41e456bc92e7c600aabf1e48d24c33b11ede928333311f6134496d87382","ssdeep":"","tlshash":"f95120755a7224706d2f240db73ae20a727a5233290bd4417cae99080fb0e57716ebed","size":2818,"data":"","first_seen":"2025-12-24T06:30:54.72328Z","last_seen":"2025-12-24T06:30:54.72328Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-07T11:14:05.489603Z","times_seen":294792,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.16","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f25d89531f6bbb2141c328dd1b204d45","sha1":"2810894e4a21f0a96d8981a1be4bbf5e4c65d0f5","sha256":"3f81aa7f6ecdb1acc14c202e513dfee00b6c7703cd81ce1be25bf5215a92e8cb","sha512":"0d21fd77b8996eb962ef38c62c55e2f873cba408bfca96b4c5d59908ca1656769dcf41ca59baafc4d9e0c019085484806e9d968da1c5a760424becc0ccba11cf","ssdeep":"6144:RmhCTrBHIbPWB53MBy6KLk5oYnq5514vMf7DiGjZO0s:EhArBHIr653MBy6KLkXG1lDiuZO0s","tlshash":"cba45ba57396743647ef91d850ea1102f27eaa28900c44acf7ddd5da39e4e4840fbf3a","size":451131,"data":"","first_seen":"2025-08-01T13:32:45.26881Z","last_seen":"2026-04-07T11:01:58.250072Z","times_seen":1189,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"80e121f84bb9e41544c14251f7426eee","sha1":"17c9342b02b4936fd0d6822093fc8dc9b148fc53","sha256":"eeb26e3712baca93ca30f54ac7bde342ba6cf3545fea33fe447fc417ea775f3a","sha512":"5bab5587efbc04474bf7d59d580002910ff6a77a2eedd7c55c7ae22f674b37bce4a3635b609a88d5d78b47255b0e59f0fcaa4f253c5142a12a8b3a3a94a720c5","ssdeep":"","tlshash":"9331682639fa61bc2133006ae7db3242e07541173594ed5cfd4c03886fd5f6a6da2b9c","size":1634,"data":"","first_seen":"2025-07-17T11:53:52.436148Z","last_seen":"2026-03-25T12:03:56.385202Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1dee0fd6a70b5ab445fcfae7f21de58e","sha1":"849586dd9c6784e8f52a6212d66b863c4f0a5f48","sha256":"5e71380d669667d96612aa3aaae017df88b82f68a97e9f45e97f837705430bab","sha512":"0c37bcee2b30746e9108533983885e8ccee91208880879eaa8a4e376198eecda6d397643e6d6fd1e9de365c35d68e48d51554511e4e567f694d63c1043dea632","ssdeep":"192:VQJ0V5xsoBxXWw3jWV5xsYA7gW+gHytuOeDv3ic4nPNjiyVnrefUCc+CzY7ayRTq:SqLso1SrsLygzcFO5Ub4Uo2D","tlshash":"e802ee3c39be0128122711fbebc796c0b134e41b7056fc6d399d87592fc1aa86eb21d6","size":8557,"data":"","first_seen":"2025-07-17T11:53:52.437028Z","last_seen":"2026-03-25T12:03:56.385801Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4590f9f6d1e8299dcf40182b759e8827","sha1":"eb44a71ac4c844436a9f724ac8f6457351a44d59","sha256":"84da3e39b596fd69591da4db21068c86ca62f600fea271f956d8fbd113202140","sha512":"1e71efbf57b82e19a0ce30b03e347d3d9b652c176bd95148a78478853a93569c236d1be4e1d432caa6d2274079ea8e6fe3708aca65da4d8a07aa647d95aafb55","ssdeep":"192:eQf8I6RfL36GHV5RsH3kn937DmzxGn3q9SuScSlnBVKs/FWcc0Sfy+j6TX0Lz4xB:DCr7sOKsY2IElAUDjWEH","tlshash":"5c52fe5838fe2225162b32b7bbcb284db029d443b066ed597d3d43486fd06258aef785","size":13968,"data":"","first_seen":"2025-07-17T11:53:52.437924Z","last_seen":"2026-03-25T12:03:56.390566Z","times_seen":868,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0159326d77eea6c1d4096123efd083c3","sha1":"c28404b956410de135f4c2942b12604108412aa0","sha256":"68f5a218b51607413d1c86fdb091630806187c91c928a25810419e88d19e775a","sha512":"e986a1afe8b253050ec4e5c8d68eb1a43b7b0e5708ef525546d7cadbd6100e2db6e44e2881123234034940e11f7b7c8f2a77a60272c31fc0b982c45b7173d025","ssdeep":"192:iQ0x0nTtgCQ9UamjvF3f13Us1vUVCsO0SzdsWy7:nbgbtGhfiCsV","tlshash":"89e1ab66a5fa237671d3112f7fcb3066b394c06fb049f9183e9d42482fc263682f6695","size":7196,"data":"","first_seen":"2025-07-17T11:53:52.439187Z","last_seen":"2026-03-25T12:03:56.391785Z","times_seen":866,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"baiastorepiercing.com/","fqdn":"baiastorepiercing.com","domain":"baiastorepiercing.com","tld":"com"},"ip":{"addr":"212.92.105.212","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:25.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baiastorepiercing.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 04 Nov 2025 03:05:15 GMT","end":"Mon, 02 Feb 2026 03:05:14 GMT"},"fingerprint":{"sha1":"DF:CB:1C:EA:D2:23:CE:83:96:8E:DE:B2:02:56:71:CF:5A:D9:83:8F","sha256":"39:47:55:23:2E:99:1D:F7:8A:DC:9D:7B:59:E3:66:13:01:92:A4:87:F7:4E:E2:ED:8B:DB:B4:01:BA:65:2B:C0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: baiastorepiercing.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 483\r\ncontent-type: text/html; charset=utf-8\r\ndate: Wed, 24 Dec 2025 06:30:25 GMT\r\nserver: Cowboy\r\nset-cookie: sid=08410f72-e092-11f0-a2d3-b40f649e7fbd; path=/; domain=.baiastorepiercing.com; expires=Mon, 11 Jan 2094 09:44:32 GMT; max-age=2147483647; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cowboy","description":"Cowboy is a small, fast, modular HTTP server written in Erlang.","website":"https://github.com/ninenines/cowboy","common_platform_enumeration":"","icon":"Cowboy.png","categories":["Web servers"]},{"name":"Erlang","description":"Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.","website":"https://www.erlang.org","common_platform_enumeration":"cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*","icon":"Erlang.png","categories":["Programming languages"]}],"data":{"size":483,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (483), with no line terminators","md5":"a8fd03b8f96fc1288519d0fcec8d9f3a","sha1":"217a3a5492373dc142f2b8cc277f588f1334d469","sha256":"96ed4af4450a409273b94b020199ad851234ead50261f4f08942157a31e98f5c","sha512":"48831ed9541f37c92f4f21408360c6f7a259643e3043f069d49e3b937872af4d4f39d9e62ac531b94256c06843454bccc2218e599f241241dbbd9e2d60f31594","ssdeep":"","tlshash":"74f0d4b74c8bdba9f9502d40ce5553d4998c5154195ad45df0e83d98343535f4c020b8","first_seen":"2025-12-24T06:30:54.695925Z","last_seen":"2025-12-24T06:30:54.695925Z","times_seen":1,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":103,"dns":56,"connect":17,"send":0,"wait":21,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"altwi-zgs.com/zclkredirect?visitid=086ec6d0-e092-11f0-8521-12d62259476d\u0026type=js\u0026browserWidth=1280\u0026browserHeight=1024\u0026iframeDetected=false\u0026webdriverDetected=false\u0026gpu=Mesa%3B%20llvmpipe\u0026timezone=UTC%2B00%3A00\u0026timezoneName=UTC","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:27.823Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /zclkredirect?visitid=086ec6d0-e092-11f0-8521-12d62259476d\u0026type=js\u0026browserWidth=1280\u0026browserHeight=1024\u0026iframeDetected=false\u0026webdriverDetected=false\u0026gpu=Mesa%3B%20llvmpipe\u0026timezone=UTC%2B00%3A00\u0026timezoneName=UTC HTTP/1.1\r\nHost: altwi-zgs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":198,"dns":0,"connect":93,"send":0,"wait":0,"receive":0,"ssl":107},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/remixicon@4.5.0/fonts/remixicon.woff2?t=1730118419915","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:29.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/remixicon@4.5.0/fonts/remixicon.woff2?t=1730118419915 HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://alishopmart.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 174156\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: font/woff2\r\nx-jsd-version: 4.5.0\r\nx-jsd-version-type: version\r\netag: W/\"2a84c-ix8g6pFfFpjMLASRaLllefi3XCA\"\r\naccept-ranges: bytes\r\nage: 1204905\r\ndate: Wed, 24 Dec 2025 06:30:29 GMT\r\nx-served-by: cache-fra-etou8220183-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":174156,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 174156, version 1.0","md5":"a481a7b6812d68e4db92065320d9e5ad","sha1":"8b1f20ea915f1698cc2c049168b96579f8b75c20","sha256":"ec86084d77574ecad2c6674a6c989040db918c3fc0a9f02a53cb75ccea474139","sha512":"582b365b48c70eafa7f02ce05b391fe4b9cedc607f30496daabe046bbfd2bc0eba81d5eb6f2b76a9e141b07f7bae4af82d02a501d306cc2890b15a0867d04be1","ssdeep":"3072:Ap4Z4748Hga/raS2/r7u/4TFmDGK5k5sHyRNHOiGdHG6dZtBU9J:AAKHB/rSnuwsCKK5sSRUisdRUP","tlshash":"72041394e72cb04be436b15af62bf496915e4166b302f69e103fdf482a307cd1ae9c53","first_seen":"2024-12-10T20:09:17.840468Z","last_seen":"2026-04-07T07:47:59.039238Z","times_seen":1240,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":37,"dns":1,"connect":0,"send":0,"wait":27,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:28.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alishopmart.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 05 Nov 2025 13:35:45 GMT","end":"Tue, 03 Feb 2026 14:32:44 GMT"},"fingerprint":{"sha1":"0F:65:C9:14:7A:D3:80:BB:5C:FA:FF:D6:68:BB:C6:48:24:96:99:7A","sha256":"05:90:A1:36:DB:4F:0E:2D:41:72:F3:FF:30:8A:78:F7:9F:1D:EA:5F:C2:35:26:38:F0:A7:A7:73:37:61:8B:C4"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: alishopmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/?clickid=d55oh16071bc73ansgs0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\ncontent-type: application/javascript\r\nexpires: Wed, 24 Dec 2025 07:18:28 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bQ8isSxdGK9xxT33HTFJMnn5%2Bw5IIbvzXJz2mnBIyglZp9pt%2FBucQ0%2F1dKePEwPgvDczabRV4xQPiJ7RGcY9veklUuaVES34sUJmg8PPtQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9b2e0cdded064e4c-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-07T11:14:05.489603Z","times_seen":294792,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.16","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:28.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 23 Nov 2025 07:09:58 GMT","end":"Sat, 21 Feb 2026 08:09:55 GMT"},"fingerprint":{"sha1":"B5:C9:29:A1:B9:60:7F:A7:9E:9E:63:3E:DF:4E:05:34:4B:27:D3:86","sha256":"2D:FA:43:BC:F1:83:E4:D9:E0:ED:1A:D1:C5:0E:F5:E0:77:29:F1:F1:23:2F:E3:30:7B:72:49:1E:82:5C:DB:C1"}}},"request":{"raw":"GET /3.4.16 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::iad1::nsfr8-1764138027625-dce2b03e8d41\r\nlast-modified: Wed, 26 Nov 2025 06:20:28 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nage: 2419800\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l2JafblAA5dNva2%2Fe0akw2mh6S1CB5ocuKXO3YjsERqnD8d0npcu3FQMz7IMQb%2B8mfkXPgmu0O7YA2GYuipNMW7Yt75k79m8irc%2F9%2FQVu2M%3D\"}]}\r\ncf-ray: 9b2e0cde29da712d-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":451131,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52785)","md5":"f25d89531f6bbb2141c328dd1b204d45","sha1":"2810894e4a21f0a96d8981a1be4bbf5e4c65d0f5","sha256":"3f81aa7f6ecdb1acc14c202e513dfee00b6c7703cd81ce1be25bf5215a92e8cb","sha512":"0d21fd77b8996eb962ef38c62c55e2f873cba408bfca96b4c5d59908ca1656769dcf41ca59baafc4d9e0c019085484806e9d968da1c5a760424becc0ccba11cf","ssdeep":"6144:RmhCTrBHIbPWB53MBy6KLk5oYnq5514vMf7DiGjZO0s:EhArBHIr653MBy6KLkXG1lDiuZO0s","tlshash":"cba45ba57396743647ef91d850ea1102f27eaa28900c44acf7ddd5da39e4e4840fbf3a","first_seen":"2025-08-01T13:32:45.26881Z","last_seen":"2026-04-07T11:01:58.250072Z","times_seen":1189,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":39,"dns":21,"connect":1,"send":0,"wait":6,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Pacifico\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:28.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Pacifico\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 24 Dec 2025 06:30:28 GMT\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1856,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"814af72d3cf56cda5efa3eaf9791ff24","sha1":"fec7f0a2f8b10261542eff61174f753d30609e98","sha256":"0ce6ebe3c2f92a9b09ac1838615eee49ba397dc6875ce39b28c069065a0f1977","sha512":"89687f226f71228e1479f3f6ddcd2c82f7752bfafd2bb3a56d919d7ce418e8bb5892d57c355447d3100a3085e8a087048e088c5ff06d1a255af7a80f231481fc","ssdeep":"","tlshash":"6f31bbd1012bd800db971cc163cfbf36ae5ea1962410d67a6bfe1cd49cdad62a254b0d","first_seen":"2025-09-17T01:56:31.274954Z","last_seen":"2026-04-07T04:53:57.311025Z","times_seen":1852,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":110,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":102},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baiastorepiercing.com/?ch=1\u0026js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTc2NjU2NTAyNSwiaWF0IjoxNzY2NTU3ODI1LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIzMjIxNXVzcjBwdGduZzRlczgzM2h0Y2ciLCJuYmYiOjE3NjY1NTc4MjUsInRzIjoxNzY2NTU3ODI1NjgyOTkyfQ.iHvfF9qBiRg1NRRIMmVudlXicVEmU-7yMLiw7254DAc\u0026sid=08410f72-e092-11f0-a2d3-b40f649e7fbd","fqdn":"baiastorepiercing.com","domain":"baiastorepiercing.com","tld":"com"},"ip":{"addr":"212.92.105.212","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:25.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baiastorepiercing.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 04 Nov 2025 03:05:15 GMT","end":"Mon, 02 Feb 2026 03:05:14 GMT"},"fingerprint":{"sha1":"DF:CB:1C:EA:D2:23:CE:83:96:8E:DE:B2:02:56:71:CF:5A:D9:83:8F","sha256":"39:47:55:23:2E:99:1D:F7:8A:DC:9D:7B:59:E3:66:13:01:92:A4:87:F7:4E:E2:ED:8B:DB:B4:01:BA:65:2B:C0"}}},"request":{"raw":"GET /?ch=1\u0026js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTc2NjU2NTAyNSwiaWF0IjoxNzY2NTU3ODI1LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIzMjIxNXVzcjBwdGduZzRlczgzM2h0Y2ciLCJuYmYiOjE3NjY1NTc4MjUsInRzIjoxNzY2NTU3ODI1NjgyOTkyfQ.iHvfF9qBiRg1NRRIMmVudlXicVEmU-7yMLiw7254DAc\u0026sid=08410f72-e092-11f0-a2d3-b40f649e7fbd HTTP/1.1\r\nHost: baiastorepiercing.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baiastorepiercing.com/\r\nCookie: sid=08410f72-e092-11f0-a2d3-b40f649e7fbd\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 11\r\ndate: Wed, 24 Dec 2025 06:30:26 GMT\r\nlocation: http://altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d\r\nserver: Cowboy\r\nset-cookie: sid=08410f72-e092-11f0-a2d3-b40f649e7fbd; path=/; domain=.baiastorepiercing.com; expires=Mon, 11 Jan 2094 09:44:34 GMT; max-age=2147483647; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Erlang","description":"Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.","website":"https://www.erlang.org","common_platform_enumeration":"cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*","icon":"Erlang.png","categories":["Programming languages"]},{"name":"Cowboy","description":"Cowboy is a small, fast, modular HTTP server written in Erlang.","website":"https://github.com/ninenines/cowboy","common_platform_enumeration":"","icon":"Cowboy.png","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1130,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:27.049Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d HTTP/1.1\r\nHost: altwi-zgs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":294,"timings":{"blocked":0,"dns":17,"connect":93,"send":0,"wait":0,"receive":0,"ssl":182},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"altwi-zgs.com/zclkredirect?visitid=086ec6d0-e092-11f0-8521-12d62259476d\u0026type=js\u0026browserWidth=1280\u0026browserHeight=1024\u0026iframeDetected=false\u0026webdriverDetected=false\u0026gpu=Mesa%3B%20llvmpipe\u0026timezone=UTC%2B00%3A00\u0026timezoneName=UTC","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"34.198.247.147","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:28.238Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /zclkredirect?visitid=086ec6d0-e092-11f0-8521-12d62259476d\u0026type=js\u0026browserWidth=1280\u0026browserHeight=1024\u0026iframeDetected=false\u0026webdriverDetected=false\u0026gpu=Mesa%3B%20llvmpipe\u0026timezone=UTC%2B00%3A00\u0026timezoneName=UTC HTTP/1.1\r\nHost: altwi-zgs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 \r\nDate: Wed, 24 Dec 2025 06:30:28 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nCache-Control: no-store, no-cache, pre-check=0, post-check=0\r\ncontent-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccess-Control-Allow-Headers: X-Requested-With,Content-Type\r\nLocation: https://click-for-preview.com/index?cid=fe1c8457a1dc35e6d025\u0026extclickid=zr086ec6d0e09211f0852112d62259476dd784446125d044b787b338d54f20da6209624659085ac673ad\u0026cost=0.050000\u0026t1=lima-rep-vzgg46drj0\u0026t2=0\u0026type=default\u0026keyword=baiastorepiercing%2Cbaiastorepiercing.com\u0026source=badious-buzzard\u0026campaign_id=2709823\u0026keyword_match=broad\u0026match=\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":null,"data":{"size":135056,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":98,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/?clickid=d55oh16071bc73ansgs0","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:28.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alishopmart.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 05 Nov 2025 13:35:45 GMT","end":"Tue, 03 Feb 2026 14:32:44 GMT"},"fingerprint":{"sha1":"0F:65:C9:14:7A:D3:80:BB:5C:FA:FF:D6:68:BB:C6:48:24:96:99:7A","sha256":"05:90:A1:36:DB:4F:0E:2D:41:72:F3:FF:30:8A:78:F7:9F:1D:EA:5F:C2:35:26:38:F0:A7:A7:73:37:61:8B:C4"}}},"request":{"raw":"GET /?clickid=d55oh16071bc73ansgs0 HTTP/1.1\r\nHost: alishopmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://altwi-zgs.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LyuE2AxRZM55aXSgZpxM9sHp1pIe3izF9GPaNYtdsu%2FtYEGAx6yzR74E707tdoyfgNshp7qgrxBzBQUepL%2FC4sejKkh2O9yp3%2FiZI0e2sA%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b2e0cdc5ea90731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135056,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (658)","md5":"8aabdb14933fea43e13562bbe5fc5b1b","sha1":"d44755b55f017d3e91b24a241ac2158921c2276f","sha256":"4effe549e9acf61acc3a2debe7e3b069b76e4e7ca1bce443d3155d74e36eea67","sha512":"c02b96ec3b29b6b57553a29f0bf902179234dad07ff3e198164e1ed2753c80771c55ae5ffe131c3ef7bd34a95633cae449ea3a8ac13408479a1ec90e269a9c59","ssdeep":"1536:N+tAMZtSXYgXSnfSJqyZkHllOAtMPq5TI3s3L3T3X3J3b3o3USC7R/NJsvsWwKaB:weMZynXc+ZQMS","tlshash":"66d3753834fa1239115351bbfbc76549f660e00bf056ec5d3aad43482fc6a658eb32e9","first_seen":"2025-12-24T06:30:54.706921Z","last_seen":"2025-12-24T06:30:54.706921Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":55,"dns":35,"connect":1,"send":0,"wait":71,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/remixicon@4.5.0/fonts/remixicon.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:28.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/remixicon@4.5.0/fonts/remixicon.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 4.5.0\r\nx-jsd-version-type: version\r\netag: W/\"23f3a-UFb21gHjxY8Z1c4kzHw2FPuqIPA\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\nage: 284008\r\nx-served-by: cache-fra-eddf8230168-FRA, cache-hel1410026-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 19015\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":147258,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"ff97311587c902f7ac572db12913ca10","sha1":"5056f6d601e3c58f19d5ce24cc7c3614fbaa20f0","sha256":"e9a8e593fedefb85b1ad193068d984565a6c6e9ff3e4d1dc5708230e14aab338","sha512":"ea9f864eaedf8d31c3fec7453d61da16800b29e58e53d7fd30f0683e7bc9116064192e0f29555b0a9329b3a2179d389782115bc6580313c4111dcdcc53dd6526","ssdeep":"1536:Zocv38vn4UYzgKvP1IqRCwNd1l3JclUaqM2GSsRotTCREaNU:Zx8v4UYcKZ7clA","tlshash":"92e3cabeea4f05901702e8d26367274163b9b6bddd817c7ad413688df3c666883c62dc","first_seen":"2024-12-10T20:09:17.83272Z","last_seen":"2026-04-06T13:06:01.456971Z","times_seen":1254,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":38,"dns":1,"connect":13,"send":0,"wait":14,"receive":2,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baiastorepiercing.com/favicon.ico","fqdn":"baiastorepiercing.com","domain":"baiastorepiercing.com","tld":"com"},"ip":{"addr":"212.92.105.212","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://baiastorepiercing.com/","date":"2025-12-24T06:30:26.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baiastorepiercing.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 04 Nov 2025 03:05:15 GMT","end":"Mon, 02 Feb 2026 03:05:14 GMT"},"fingerprint":{"sha1":"DF:CB:1C:EA:D2:23:CE:83:96:8E:DE:B2:02:56:71:CF:5A:D9:83:8F","sha256":"39:47:55:23:2E:99:1D:F7:8A:DC:9D:7B:59:E3:66:13:01:92:A4:87:F7:4E:E2:ED:8B:DB:B4:01:BA:65:2B:C0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: baiastorepiercing.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baiastorepiercing.com/\r\nCookie: sid=08410f72-e092-11f0-a2d3-b40f649e7fbd\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 9\r\ndate: Wed, 24 Dec 2025 06:30:25 GMT\r\nserver: Cowboy\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cowboy","description":"Cowboy is a small, fast, modular HTTP server written in Erlang.","website":"https://github.com/ninenines/cowboy","common_platform_enumeration":"","icon":"Cowboy.png","categories":["Web servers"]},{"name":"Erlang","description":"Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.","website":"https://www.erlang.org","common_platform_enumeration":"cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*","icon":"Erlang.png","categories":["Programming languages"]}],"data":{"size":9,"size_decoded":0,"mime_type":"image/x-icon","magic":"ASCII text, with no line terminators","md5":"d8f4a1993546cc4b850cde3599e27aec","sha1":"094b763b4cfcc0b05e5d040581cd513c3ca08067","sha256":"907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9","sha512":"7c696247f98aa6fe4e1df001fd6029abbbccf45b122d65dfdede8f8a400cda775387c657f96bd1e4e52da7409187892b1f0786c54d835d2e44227b2e1335eaf6","ssdeep":"","tlshash":"4a50000c0003030c0000003000c00030000c03000c0000300000c00c00000000c000cc","first_seen":"2023-03-08T07:11:06Z","last_seen":"2026-04-07T10:33:47.796889Z","times_seen":18913,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/translations/en.json","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:29.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alishopmart.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 05 Nov 2025 13:35:45 GMT","end":"Tue, 03 Feb 2026 14:32:44 GMT"},"fingerprint":{"sha1":"0F:65:C9:14:7A:D3:80:BB:5C:FA:FF:D6:68:BB:C6:48:24:96:99:7A","sha256":"05:90:A1:36:DB:4F:0E:2D:41:72:F3:FF:30:8A:78:F7:9F:1D:EA:5F:C2:35:26:38:F0:A7:A7:73:37:61:8B:C4"}}},"request":{"raw":"GET /translations/en.json HTTP/1.1\r\nHost: alishopmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://alishopmart.com/?clickid=d55oh16071bc73ansgs0\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Dec 2025 06:30:29 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nlast-modified: Tue, 29 Apr 2025 11:57:40 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6810beb4-3408\"\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JXAKI%2BB8DRxOinS4Njscs6%2FyPEeFlpJam0wxb6cStFUm%2BR3a4bt3zn7MlmD2CxsI9atwwi%2BH8dmcwkKpS33nQ4NSqOjJR3xovpaAsYadow%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b2e0ce23b504e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13320,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"17b5e2799bc8221b88dee1015a79fa58","sha1":"db061d5ca8b5217145d60b5981ee6248a219f53d","sha256":"75e4acbefaa2984106e5b05bd2a1b4756eab000dd09fb407f694882ba72bd990","sha512":"b3825a7a61365eaa2b76217817f7c98e7124a674e079eb98b76b24440299842c68a0cf6b6dc575606bad88d0c4b35028223737a075b89e2a9e18e24dfddd2372","ssdeep":"384:BusymG9ukYGeCCCPRiYk5cC0lHmUAOCMz:Bby38XvCRA0RmDNo","tlshash":"9852622ec5700e5305cb11636d9a45d5f668454f2b986e2d3d8c814c2fceebe82bb36d","first_seen":"2025-07-17T11:53:52.417255Z","last_seen":"2026-03-25T12:03:56.375999Z","times_seen":868,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"alishopmart.com/favicon.ico","fqdn":"alishopmart.com","domain":"alishopmart.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:29.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alishopmart.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 05 Nov 2025 13:35:45 GMT","end":"Tue, 03 Feb 2026 14:32:44 GMT"},"fingerprint":{"sha1":"0F:65:C9:14:7A:D3:80:BB:5C:FA:FF:D6:68:BB:C6:48:24:96:99:7A","sha256":"05:90:A1:36:DB:4F:0E:2D:41:72:F3:FF:30:8A:78:F7:9F:1D:EA:5F:C2:35:26:38:F0:A7:A7:73:37:61:8B:C4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: alishopmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/?clickid=d55oh16071bc73ansgs0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Wed, 24 Dec 2025 06:30:29 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=13jKmvQ4IJFCsoLDlMOtS4xVdlt4eQlbxUx6xUJLVPb2Swa8UJXejdJXDi8h31krFCH6rMbzBLZC3yKy1LgNe%2F1R7A5jpr3AXTaaS86XQA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9b2e0ce36d004e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":564,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"5da4c1420f84ec727d1b6bdd0d46e62e","sha1":"280d08d142f7386283f420444ec48e1cdbfd61bb","sha256":"3c8cc37a98346bd0123b35e5ccd87bd07d69914dae04f8b49f61c150d96e9d1f","sha512":"7c51a628831d0236e8d314c71732b8a62e06334431d10f7c293c49b23665b2a6a1ddbc4772009010955b5228ea4a5cd97fb93581ce391ee1792e8a198b76111a","ssdeep":"","tlshash":"f4f0cd9f1f12387f2e238171f0c36068cf680a56fb9925e28748001f3aca04549f6fad","first_seen":"2023-05-01T23:14:01Z","last_seen":"2026-04-07T04:11:18.648544Z","times_seen":1344,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"34.198.247.147","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:27.395Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d HTTP/1.1\r\nHost: altwi-zgs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 \r\nDate: Wed, 24 Dec 2025 06:30:27 GMT\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 3086\r\nConnection: keep-alive\r\nCache-Control: no-store, no-cache, pre-check=0, post-check=0\r\ncontent-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccess-Control-Allow-Headers: X-Requested-With,Content-Type\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":3086,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (408)","md5":"b9ba451a206b025f7ac8caad7353d6d6","sha1":"0abb8645c131371654f47795dd2b229badc4ec27","sha256":"ff32b8fcee463abdcd4e002d65a4918cde9f5a976c9f67cc110ef03a9b1a17e6","sha512":"4072383037fcaf5a486203de2c2d2bfb73b4d33f66c36bd854abb1ead88380f1698a59d3a426519ce9315af7bdf365903cd6c4c36e7519f5590ab97a9bb85c49","ssdeep":"","tlshash":"205132755ab228706d2f240db73ae20a72775223290bd440bcad99044fb4e57b15fbee","first_seen":"2025-12-24T06:30:54.71357Z","last_seen":"2025-12-24T06:30:54.71357Z","times_seen":1,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":60,"dns":1,"connect":94,"send":0,"wait":97,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"altwi-zgs.com/favicon.ico","fqdn":"altwi-zgs.com","domain":"altwi-zgs.com","tld":"com"},"ip":{"addr":"34.198.247.147","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d","date":"2025-12-24T06:30:27.682Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: altwi-zgs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://altwi-zgs.com/zclkvisitor/086ec6d0-e092-11f0-8521-12d62259476d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=59575aa0-d055-11f0-8af8-0affd781626d\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 \r\nDate: Wed, 24 Dec 2025 06:30:27 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":null,"data":{"size":82,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9fac63ed6ccaa3c422a006539992f414","sha1":"910c143e5616311afa3843550eb7d7022ec7d5a4","sha256":"941b73a0b8cfc3be45492694c9d7415e3b898330e14f23c802252df6133db4f9","sha512":"377d63755a687694ad5a0bee8ca35cc109ffff33de36517c3bc56204f481bec5a087955c51701bcde364a952b5ec7d6612d176bc25b16864f6c99f8e52a6a2d1","ssdeep":"","tlshash":"b3a02208088e800eaf02e0f800cc0a308e00cbc00e3e2c8832efc830eea0c0fa038002","first_seen":"2025-12-24T06:30:54.715599Z","last_seen":"2025-12-24T06:30:54.715599Z","times_seen":1,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"altwi-zgs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"click-for-preview.com/index?cid=fe1c8457a1dc35e6d025\u0026extclickid=zr086ec6d0e09211f0852112d62259476dd784446125d044b787b338d54f20da6209624659085ac673ad\u0026cost=0.050000\u0026t1=lima-rep-vzgg46drj0\u0026t2=0\u0026type=default\u0026keyword=baiastorepiercing%2Cbaiastorepiercing.com\u0026source=badious-buzzard\u0026campaign_id=2709823\u0026keyword_match=broad\u0026match=","fqdn":"click-for-preview.com","domain":"click-for-preview.com","tld":"com"},"ip":{"addr":"168.119.149.123","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T06:30:28.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"click-for-preview.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Nov 2025 22:55:06 GMT","end":"Thu, 05 Feb 2026 22:55:05 GMT"},"fingerprint":{"sha1":"81:3E:5B:BC:33:31:5E:1C:1B:C5:C6:36:18:D4:69:7F:16:5C:92:BC","sha256":"5C:ED:55:DC:41:34:6B:19:0B:B8:C6:4C:63:C5:DE:71:FD:AC:02:0C:DE:6F:5C:D4:3D:8D:D0:6F:16:03:7D:47"}}},"request":{"raw":"GET /index?cid=fe1c8457a1dc35e6d025\u0026extclickid=zr086ec6d0e09211f0852112d62259476dd784446125d044b787b338d54f20da6209624659085ac673ad\u0026cost=0.050000\u0026t1=lima-rep-vzgg46drj0\u0026t2=0\u0026type=default\u0026keyword=baiastorepiercing%2Cbaiastorepiercing.com\u0026source=badious-buzzard\u0026campaign_id=2709823\u0026keyword_match=broad\u0026match= HTTP/1.1\r\nHost: click-for-preview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://altwi-zgs.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 307 Temporary Redirect\r\ndate: Wed, 24 Dec 2025 06:30:28 GMT\r\nlocation: https://alishopmart.com/?clickid=d55oh16071bc73ansgs0\r\nset-cookie: uclick=nOiLlF1dOts1hbXzOmCY4AAsHa8ViD5g+USM85yyDl2iSc+0FznjsJZ2D5vJ7R5KkLeZUIbCNQ==; Max-Age=31536000; SameSite=Lax\nbcid=d55oh16071bc73ansgs0; Max-Age=31536000; SameSite=Lax\r\nvia: 1.1 Caddy\r\nx-request-id: ce2f837d-4ec4-4078-8067-8547d5949d52\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":null,"data":{"size":135056,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":234,"timings":{"blocked":97,"dns":33,"connect":24,"send":0,"wait":41,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"readdy.ai/api/search-image?query=A%20sleek%2C%20modern%20e-commerce%20shopping%20scene%20with%20a%20browser%20showing%20AliExpress%20website%20and%20a%20digital%20price%20tracker%20overlay.%20The%20image%20should%20have%20a%20clean%2C%20minimalist%20style%20with%20soft%20blue%20and%20white%20color%20scheme.%20The%20left%20side%20should%20have%20a%20clean%20white%20background%20that%20gradually%20transitions%20to%20the%20shopping%20scene%20on%20the%20right.%20Professional%2C%20high-quality%20digital%20illustration%20with%20subtle%20tech%20elements.\u0026width=1200\u0026height=600\u0026seq=1\u0026orientation=landscape","fqdn":"readdy.ai","domain":"readdy.ai","tld":"ai"},"ip":{"addr":"52.84.50.63","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:29.379Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.readdy.ai","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 05 Dec 2025 00:00:00 GMT","end":"Sun, 03 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"44:AC:C2:9C:A9:CB:7E:C7:A1:95:DA:35:1D:D9:68:9D:71:F0:48:E1","sha256":"D9:56:33:39:6C:56:52:DD:6E:DE:FA:3B:56:48:D8:3C:40:5A:07:EA:B9:C4:79:10:B3:6F:66:42:8C:12:BC:40"}}},"request":{"raw":"GET /api/search-image?query=A%20sleek%2C%20modern%20e-commerce%20shopping%20scene%20with%20a%20browser%20showing%20AliExpress%20website%20and%20a%20digital%20price%20tracker%20overlay.%20The%20image%20should%20have%20a%20clean%2C%20minimalist%20style%20with%20soft%20blue%20and%20white%20color%20scheme.%20The%20left%20side%20should%20have%20a%20clean%20white%20background%20that%20gradually%20transitions%20to%20the%20shopping%20scene%20on%20the%20right.%20Professional%2C%20high-quality%20digital%20illustration%20with%20subtle%20tech%20elements.\u0026width=1200\u0026height=600\u0026seq=1\u0026orientation=landscape HTTP/1.1\r\nHost: readdy.ai\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alishopmart.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 95\r\nlocation: https://public.readdy.ai/ai/img_res/ee6e9b8ff319c7e968c33ccb295eff0c.jpg\r\ndate: Wed, 24 Dec 2025 06:30:30 GMT\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 1ad6d29ff66cbe7838d3a30dae2f9382.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: abuCVtb-FEepcIXHph_iXhs7daiQPovvq3VIPJZNevsPzocCcCSrmA==\r\nvary: Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":102461,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T11:11:49.065596Z","times_seen":13459284,"resource_available":true,"data":null}},"time_used":1111,"timings":{"blocked":390,"dns":28,"connect":1,"send":0,"wait":329,"receive":1,"ssl":359},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/pacifico/v23/FwZY7-Qmy14u9lezJ-6H6Mk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:29.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/pacifico/v23/FwZY7-Qmy14u9lezJ-6H6Mk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://alishopmart.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32280\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 20 Dec 2025 10:43:00 GMT\r\nexpires: Sun, 20 Dec 2026 10:43:00 GMT\r\ncache-control: public, max-age=31536000\r\nage: 330449\r\nlast-modified: Tue, 16 Sep 2025 03:41:35 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32280,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32280, version 1.0","md5":"d150e652cabc5a1d12723ea4140fdfcb","sha1":"8304ce1e39dc93c28ca8dc5752273525a462e8e5","sha256":"99ec044ad9040a708e38f90ebd5984ca03fc46afeee26d5c77c4769c66ed89e2","sha512":"7f1497eeb0e8a1349fedae0428563ad60a48b8ddb1d42595c583d88f0d45500abe86772a9b51e024da763791c430a62e2bb82654ca6b93f8589dc374b708c2c4","ssdeep":"768:ymUaCDnm4OxWqBUK+bStvMxZWA2FsIjPkek2qCzN:ymUF1OxWCqusIjTTzN","tlshash":"1ae2e15f42f09d30d0f20634daa9c5343b50b9fdd19be02a2a5cdc0967a45d9357f1e9","first_seen":"2025-09-17T01:56:31.341257Z","last_seen":"2026-04-07T05:37:51.506706Z","times_seen":2444,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":70,"dns":1,"connect":7,"send":0,"wait":8,"receive":8,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"public.readdy.ai/ai/img_res/ee6e9b8ff319c7e968c33ccb295eff0c.jpg","fqdn":"public.readdy.ai","domain":"readdy.ai","tld":"ai"},"ip":{"addr":"52.84.50.91","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alishopmart.com/?clickid=d55oh16071bc73ansgs0","date":"2025-12-24T06:30:30.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.readdy.ai","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Sat, 19 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AB:8C:79:EE:9F:90:8E:0C:A0:9A:2B:38:DC:8E:8F:5B:A2:CC:7A:45","sha256":"D3:44:0D:CF:53:0F:E8:2C:91:B0:C0:E8:EC:9D:41:70:5A:0B:70:54:54:B1:0F:E8:C1:39:C7:59:CF:65:2E:E3"}}},"request":{"raw":"GET /ai/img_res/ee6e9b8ff319c7e968c33ccb295eff0c.jpg HTTP/1.1\r\nHost: public.readdy.ai\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://alishopmart.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: binary/octet-stream\r\ncontent-length: 102461\r\nlast-modified: Tue, 15 Apr 2025 13:54:01 GMT\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 24 Dec 2025 03:45:50 GMT\r\netag: \"c9a33e208a13285275a3357551447e95\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 2f1d504785a7b18c010970da2bd4ab8c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: nK54wF0ruRYFxZqVFtZ3r-6wE6Q3ZJgvKHngNmB2Bn6omHArCdx0gg==\r\nage: 11799\r\nvary: accept-encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":102461,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x592, components 3","md5":"c9a33e208a13285275a3357551447e95","sha1":"e901ccecfec3aa62c56de06627cda21e5e1784b9","sha256":"24b10f1e689a8c923495a9db81578cffd5bff8cee37fdd6354709103c1e8711c","sha512":"8bcbc917515dc01bc9bfb7265275387ac1c0fe4fb751917e0488d3a3fcba24b6e4eadd8577b56138e4d81ad85e3410f3adb31b4ed00fd58e1b25ceb32c3c0605","ssdeep":"3072:CigFKWQaBTHUqsbDBgPb+qR/yzvZGBXCcWvN:CigwqmqWDkC0u5N","tlshash":"c9a30253c90989eba11c1bf9be471eed3a1a3a0cd94675fb16740e863b156031c0b9ae","first_seen":"2025-07-17T11:53:52.424988Z","last_seen":"2026-03-25T12:03:56.377537Z","times_seen":865,"resource_available":false,"data":null}},"time_used":496,"timings":{"blocked":244,"dns":48,"connect":1,"send":0,"wait":3,"receive":4,"ssl":192},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}