{"report_id":"a3ebc906-ef42-4b4e-865f-791b06f3054d","version":6,"status":"done","tags":[],"date":"2025-08-29T17:53:56Z","url":{"schema":"http","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"title":"Just a moment..."},"submit":{"url":{"schema":"http","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-03T17:53:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www12.playdede.link","ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-28","domain_rank":0,"first_seen":"2025-08-23T22:47:49.77173Z","last_seen":"2025-08-23T22:47:49.77173Z","alert_count":3,"request_count":7,"received_data":168883,"sent_data":3912,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":11393,"first_seen":"2021-10-20T05:02:03Z","last_seen":"2025-08-27T16:18:45.165697Z","alert_count":0,"request_count":8,"received_data":552680,"sent_data":5698,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"beab17b3b46f1af2f72cfe99175b21dc","sha1":"7469f7df232fe087566979e8da4156b93b0de3e1","sha256":"f4c7a820145632b2eff3219fafeeeb1de1ab07643eaf6e1e2b7d96662b9e9cd0","sha512":"358ce1412e619e55d3baa7422312519a23ec4c466b6947d9201475c3a1f2aae73712d6606542517c8f61d48058435c36da77170d54f297e62607cd6ce0dc5b6d","ssdeep":"","tlshash":"4751c8eec94349268beb2796c9a7b31c3272516b1408216eafd0e80d667de03da1d2c0","size":2698,"data":"","first_seen":"2025-08-29T17:54:10.507344Z","last_seen":"2025-08-29T17:54:10.507344Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4bc9bbe267b94d945305298aeb54de23","sha1":"381e73b637ba5dc0c7d1c4ef1cdb444e45e722fe","sha256":"dd5400690721301b210c0c3ced811e5445547eed984959919f636c0c60c5437a","sha512":"44b1ba0a3815b265c5a183904aa9ecec008fa735cb204d0e3f73ed23963ae975484177e75781be5714cfd2b16d6a37a35e36bd52a901bd2d8c7eb04258e5e4d7","ssdeep":"","tlshash":"29612baed29ce55f6af9137c8506f38a7d71018dd52ca0f0ebc09c0a229d9e7c2d46e5","size":3186,"data":"","first_seen":"2025-08-29T17:54:10.509689Z","last_seen":"2025-08-29T17:54:10.509689Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d15fcfede5b0668033e9dae5b3aad557","sha1":"77a43c91e7c5a9f1f4c1ac95bd903f858f8b0945","sha256":"d75a5d72ce31c452af1545288cc1c57e63c8fdd60848ca4f6e89f97ad734c80b","sha512":"db340c0b0dd9c634745f69d8ef08d6b6d8803eb2350bfefb7d4ff2b782d4a57fac6413b766d2a3d7e8a805ed26a4f99eeafb5191a6a41b3e137a0ff4314a015e","ssdeep":"3:N/BKL1XLRecM:eL11DM","tlshash":"d05504d1544430f41411c504d15414d5d41d044410550401f35d0cd51f301001010540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.51217Z","last_seen":"2025-08-29T17:54:10.51217Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3b56123043b345ebae9bc946773aa575","sha1":"14b5efb0f921c59a4886e48067b137a2516b04f7","sha256":"9f93137b0245a012639a90f226b6e90358bc83b4f92531abeaf7f0e7a7a018df","sha512":"fdfb765f0faa66e525157893225c95ad7e8dafdac29d906ca446d24112e59cad4daf0b8a5037eb31485f89e92a4961fb16c7fe702aa0684bf13f970cc3fa9f29","ssdeep":"3:N/BKL1XLRc/ZV:eL11cT","tlshash":"fd5504c05c403070d510cc00f1547535d535341414d50401f35d04d417301101314540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.51482Z","last_seen":"2025-08-29T17:54:10.51482Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7bfc3566573d67e7cac0ec2473b943a7","sha1":"86f5333bc8c9359dd0016ee1e5b7203b87903117","sha256":"959d569bc739765dbf129ad2873aa0e0a5c4866a924311b1a0a184c4333f2704","sha512":"460635de7df9c58107eb9ed8b5068acc7faa61dd9ec845cc2a0118c40ffaa8680621fdfedd328c212528e1e5f8609aacf667eae78a19b90abf756fabd3181a18","ssdeep":"3:N/BKL1XLRc8XSn:eL11c8Cn","tlshash":"c75504c05c4430700511cc00f1d45515d555141414150401f35d05f417301003015540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.517744Z","last_seen":"2025-08-29T17:54:10.517744Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7e8e5f6f2652ab361f731f6e3d696e23","sha1":"96d1e127ff68e7ff4dc9fc0bc8fd49818d1ab13c","sha256":"54721eff9edc48dc2d847a910344c9268dd04616f4384c4aa499fdab93f4d1db","sha512":"639425c302cb86079e2982c04581a38f1e0022264cb505de1fe585b544ef0ca59f96e4a06166cc61de13dc67c1db2485626970d9d6c9f4529a1d55273691cb80","ssdeep":"3:N/BKL1XLRc4Zn:eL11c4Z","tlshash":"9a5504c0dcc430700510cc00f1545515d515141454150401f37dc4d41f303411414d40","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.521319Z","last_seen":"2025-08-29T17:54:10.521319Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/4710d66e8fda/api.js?onload=XaVFY8\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"49d515b98ccae9634aff66a4ca77af98","sha1":"bfa5462a4f47c2350dcd0b3000e9cb54bec63c21","sha256":"4ca696d2fb66b44648a8fd55bc9eeaa6958dd9e523c4a740365823c30d4fc087","sha512":"856b855e0662da94dc3d314080976df11b5cb203d5ac498bacd9d201013e82258ee66ba1c3bb948e0ea71dd319345d9988be765daa3a276f8571e1787a38cc39","ssdeep":"768:XC6BRV2fM4lLa+rnhPLy6PuR8u5jUjRFPlBMqfspV6q11AY13kep+ORWqxIrm3LW:J2E4lLa+rnhT/oj2P6V6GNI","tlshash":"8f231b583256793227e980e1617ba74373257939e94ccc50d423c86536bcecad233fba","size":48995,"data":"","first_seen":"2025-08-15T11:12:03.097811Z","last_seen":"2025-09-08T12:15:40.897517Z","times_seen":20901,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b9972d65b8207932a61cc9f4fa2bfe82","sha1":"e593d2bafb4f4d01246f5d3c1d878dd43e7fa4f4","sha256":"56cf488cc2f3b073df8d59e1ef23fe0d6022173081c5c148937c414922e209f8","sha512":"ed95a9b4108c9febbbd5ccbabf74da86ab803869e4b69d0c2d2158a536e520dd868a690ba0235d79d2f4284091ea13275ab5f022536571064090e6f3c7f2c2fe","ssdeep":"3:N/BKL1XLRecwn:eL11Dwn","tlshash":"1b5504d0544430f41411c504d1741475d415041411150401f1dd44d51f301001110541","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.524071Z","last_seen":"2025-08-29T17:54:10.524071Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"2856ebb7a9bf079d36f33f8e4c40b8f2","sha1":"715188a6bff9dbc04c0389a77d26651e6c22bdd1","sha256":"5962741c1075f890304df80c0e1f105d207a428e26da0d704382a49b2e8c5c5f","sha512":"646f4f24898b89ab6825ec1f05813d305e625aeea202369ce2dc9a7bcd47055a31329468715a94b5311cea22a67387441232467d4d76fec1d7d7900e0e637c32","ssdeep":"3:N/BKL1XLRc+y:eL11c+y","tlshash":"1b5504c05c4030704510cc00f1545d15d555143414150401f35f04d417301003014544","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.526287Z","last_seen":"2025-08-29T17:54:10.526287Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9a2dd3e521763ee791034618e02d5b5f","sha1":"16f14532406f32ddcdbfd7da2943ba5d0f5349c0","sha256":"748a914aa5fcace17e8a332c44077bf95c37f782ccd42738cd4652239035f38a","sha512":"507638eae05f06f90fb6633d1294c5bb665ad8f402a591283aceac52dc257cf73b940a4c2d55a85d0682b75cebbb23722374906add606decca71165ee705cc54","ssdeep":"3:N/BKL1XLRc90:eL11ca","tlshash":"ec5504c05c4430700510dc40f154551dd515141414150c01f35d44d41730300141c540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.528724Z","last_seen":"2025-08-29T17:54:10.528724Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"712b95a4aacbf7407020952f4c4f7f01","sha1":"32ad2a53922a5ec120b04daf87446087f84f34e5","sha256":"e0f9f6e616837a292852d91b45ed4d36fc707ed5f13560ea0d5ee2f3bf153dc1","sha512":"f7fc225a4092b93b4884628e670c13ca3bc029f5ec01113df84c3423505ef39d9634d4db679e9247b1092c48c828f68cc91d16ed3d3e88333448a0083ef4aece","ssdeep":"3:N/BKL1XLRc3A:eL11cQ","tlshash":"bf5504d15c5430700514cc00f1755515d5171c1c14150401f35d04d417301003054740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.53094Z","last_seen":"2025-08-29T17:54:10.53094Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1c1e1e38fd129fa98264dbd17839e822","sha1":"44b451da8452492a9cb29ce1f8f784e65f27553a","sha256":"decf40ae164a89cf913963bf64eaa15d8026104cc3d8dad07c75c70bb9dc0a21","sha512":"378d7447cfb6eca94c6673305f317c2427a90bc3d781647e432c3755e7ce617e4740c364991d165c15d592fa9e68ddbcc890425e4924179aaf5072d3ee07e583","ssdeep":"3:N/BKL1XLRcZ:eL11cZ","tlshash":"745504c05c4030700551cd01f154d515d415447d10150401f37d05d437303041010540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.533453Z","last_seen":"2025-08-29T17:54:10.533453Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"282f60e79a0de0f33cd43ff5189dd00b","sha1":"bb85a91a4a6ba942a435c330eb31046d982d0010","sha256":"644a51d03dc23e6939ec34f072b7aed06cc4795756f31dcbbc4d6c96fb203947","sha512":"6d9a108e2b1f8cbca1b1a260cd761891340415c5d8daac16580399830db27d12be628f46d6499a575c3ee6968d45b6d76ccdca82f64218b3b3fc448930e78234","ssdeep":"3:N/BKL1XLRc9D:eL11cR","tlshash":"695504c45c5030700550cc00f1d45515d555141414150c01f35d44d417341001154740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.536447Z","last_seen":"2025-08-29T17:54:10.536447Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"916b2beafe80a71736a58da412c2dff5","sha1":"8d4189f9ff87c644e5ed3eed29aaa9f902b4c6ef","sha256":"0765c174f9b1dcbee74249084f86ee13a69039ae9c295f8d18bf9061b82ca493","sha512":"168bdfc191955e0e5672e126c887b829a29483adbfc4e7518659c516da6849438d99903d765675ef19f0d257649da32b1ae955169b9a3568f20b604b0c5fa6be","ssdeep":"3:N/BKL1XLRc4W:eL11c4W","tlshash":"f35504d0dc4030700510cc00f154d515d515143414150401f35d44d417301401434540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.540244Z","last_seen":"2025-08-29T17:54:10.540244Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"a0e66f4fc2f076e6457d874b265d3c64","sha1":"fea696873c91cb202129ce2010759b6583992839","sha256":"da97172dda7c5121cde328fc1ef2d352e282a5f18779f4e7bdd2e41b7dc14da8","sha512":"2e3ffdc93990c05324aac5b8188c3c2dbd0daaab27dca18a55797c22ab728185edc7fd11587f119ba9e6261059a47e4561d8e3937f6cc097b8d2f1ce6b229bbb","ssdeep":"3:N/BKL1XLRc2jWn:eL11c2qn","tlshash":"685504c05dc030700510cc44f155555ddd15141414150401f35d04d417341001015540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.543067Z","last_seen":"2025-08-29T17:54:10.543067Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"63b961c3990bb18eb2c472cc5f58ceea","sha1":"c666f3953f0de8b8c07396cdee302e8361b8a9e6","sha256":"9e4c3a50ca90d9b19474ef3d532fe46792937180b6088a12e0e79b76a2bac6d7","sha512":"e8774e09349b554454879af84ee4277bc2ce1e95789221dc45e0cb67ca1cd68b5e6b773b0b15b9ea336f7075f819ecb4ffd0d05026662a5a53dc768df92a6a12","ssdeep":"3:N/BKL1XLRcFG:eL11co","tlshash":"c35504c05c40307005f4cc00f1d4df15d475041410150401f75d04d417303001110540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.545976Z","last_seen":"2025-08-29T17:54:10.545976Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"04618669a86b3117424a109c8632cdb3","sha1":"3f1b0029a745bd6abf2dca8c31170a268912ba8c","sha256":"77633d7ec439d01e5fa4918a1f2b74d83073603cd3a017650ea20f7c7796245b","sha512":"1ff0b0bc6e10189ee0637f5d0673df5d6064629ef10bcbe4f4e973e64e029be4c489676b44500d24575c764ca9deb642537212067b9b12279d78bb5f13efa265","ssdeep":"3:N/BKL1XLRc6vn:eL11c6v","tlshash":"de5504d0dc4030700510cc00f17c7d35d515145415350401f35d0cd417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.54831Z","last_seen":"2025-08-29T17:54:10.54831Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"c71708b276f94a517e3938e56caf8a14","sha1":"5ca8834b23d98003a63e93f46285786cffeb3934","sha256":"8db7537af99820986ed81606d1154d4029ec7288f8119904fdce2bbe156297ca","sha512":"43d45a59054a30243b515fa1ded4898f26aa5d63bd2195be52928622436e4e8df2839fb67f5cbda679d28590dc805a21fcfe255d5c4a74e8681d8b98c3758745","ssdeep":"3:N/BKL1XLRcpY:eL11c2","tlshash":"935504c05c4030714550cc00f155d515d415043410150401f75d04f417301011011540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.551031Z","last_seen":"2025-08-29T17:54:10.551031Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"bbe53dcfcb9529b1b4ae1cd3b1f7ddae","sha1":"27157d169c08b3e6da69a4c56c358f9decea9fc5","sha256":"8bf1ced973e901d7e38d76462025805dec7e49f7720c5917d1de4288e0480061","sha512":"0a74088ef2ab445fdc086777050b18842159f4862cefa084cc7460555653d8123f03eae901f5853889f5b56455ef17369ba2173c00b3493d57504d92c80568fa","ssdeep":"3:N/BKL1XLRecA:eL11DA","tlshash":"325504d054c430f41411cc04d1541475d415044510550401f1dd04d517f03005010541","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.554158Z","last_seen":"2025-08-29T17:54:10.554158Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"8ce8030066acf56c1dc1fd1efdb81f3c","sha1":"e9f1ba0e5e9b58d5fe4896c9cdea2beaa280c223","sha256":"c30e93768132420a0651cbcb2a7c312432bef02546b0d3b0f7956e2e345fd3e1","sha512":"b59c26878706dccb1ef781cb55fbb5dfe231f7bb3d41765f4e67340f60641b673808ac9a0ed5587669e960f98c27d2cb2fa4fd5fd567e373bf75f52913f59179","ssdeep":"3:N/BKL1XLRc+a:eL11c+a","tlshash":"345504d05c4430f00715cc00f1547d15d5751c3414150401f37d04d417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.556554Z","last_seen":"2025-08-29T17:54:10.556554Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"c12a3a9bb8724d288b72d099b8d4c847","sha1":"bd2380807bddbde67a45c6061835693bdef295fa","sha256":"c2261f32c6b6512c2ebc4af4e2476a1eb8cd16763ceb4f85cb35432dfef61dc8","sha512":"7f2aa1dd225039a4de8a4054565926699787ffd570bec4e8f49147c523600f5facbf365b04f934d50345734ce816bbf9ad5fca4b24bff661969617d77bacc556","ssdeep":"3:N/BKL1XLRc+gn:eL11c+gn","tlshash":"755504c15cc130f00511cc00f15c5d15d755147414150401f35d44d417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.56029Z","last_seen":"2025-08-29T17:54:10.56029Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d4fab8c670c19e82d3a0e7f9c20cd04f","sha1":"f001ec68e67373305fc5bd4a875cf151cc199116","sha256":"b0e1e9aa335979988570d2ceaf2c2c6e57bc7ae6df3042fa1efc57628d723bb9","sha512":"30bee316c687c475296b4c4a864922748d07ccdf36f4a52766b35440cb965767c11ccae6bdcbba2a48c870068d698fd0410e33dc64863f51a2fb60a3275e2a92","ssdeep":"3:N/BKL1XLRc6A:eL11c6A","tlshash":"2e5504c4dc4470700510cc00f5745535d5151414175d0401f35d0cf417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.562995Z","last_seen":"2025-08-29T17:54:10.562995Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"4b82537364c04c976e20e94f8148f11d","sha1":"09da6c3d3958fc0e8c18aad85d252b69bf7a761e","sha256":"706deb29e6f835b584457abe2e29a2591da101aadeb242a62acc6c2bc93a832a","sha512":"8ba4a6b8f98385286e2a078a268dbcf88338121c3e3330163d9fe9bc119ee87037e052d44232bfb7e846c9f3843ae0bb3752ca3e6e4f11056b695accda0f0610","ssdeep":"3:N/BKL1XLRecj:eL11Dj","tlshash":"965504d0544430f43411c405d15414d5d455040414550401f35d04d517301001010540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.566054Z","last_seen":"2025-08-29T17:54:10.566054Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7e7a099c8e762998d54d512e1b875fae","sha1":"0ba8bc7b7fcc14ccad63de37bb29b0b653ad8176","sha256":"dd680e669a22c163ef84e2da43aa547f19206fa9bda13f7d6685b8747f3bf791","sha512":"487131d99346566305dc44aecebe6a0c7b2958ec816479a8b0186fae390b1e785bf9103b9c865700dce3ad1be11f72647b03d0572328ca4222cb1cf9470405b4","ssdeep":"3:N/BKL1XLRecIQ:eL11DIQ","tlshash":"a25504d0544430fc1411c404d15c1457d435040410150401f15d0cd517741001035541","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.569123Z","last_seen":"2025-08-29T17:54:10.569123Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ae37f2bb99212ca6fac0bafdca8f542d","sha1":"f926dbb4f50e1c892144a4b616bcc626048c092f","sha256":"6f4b810821a5a6b06b9f6bb7b7c24a50e300d16e8b0465a7ade0a49dba9e4f2b","sha512":"2ce283f18ccf39e3976d5b3327188fcc72233d7cba1eda056eef062da6f20a5eb2fa5d808f36d5e8940a3494a5da0c1aa306b7eaae618c84f44fd78a696581df","ssdeep":"3:N/BKL1XLRec+n:eL11D+","tlshash":"915504d054443cf41411c41dd1541455d435044411151401f17d14d517301001010540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.572335Z","last_seen":"2025-08-29T17:54:10.572335Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9f5cbe3ea53184bfa36270e377646ef2","sha1":"06132a6c252a225c0d031939a9b101dd6aadfabd","sha256":"e36ead228e77e95e9921d32e7602459c63c35267d5eeb487895e67e490b89007","sha512":"84efbd8c2942eb60795005767bd249ec0a83519421f6f306b3ecba27891d8a58ff01553e69c3db76229eb74eb4cbd1bf245c355ae165ba03aa1edd3fa917abb9","ssdeep":"3:N/BKL1XLRc2Zn:eL11c2Zn","tlshash":"905504c05c4030744510cc00f1545555dd15141414150c41f3fd04d417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.574946Z","last_seen":"2025-08-29T17:54:10.574946Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=976de8243e3ab51d\u0026lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6ab21c5b875a5f8e001337aa2b7c0267","sha1":"9c0997b44a9451beb530fbdadcd3c15b425b383e","sha256":"9da9c8b11bdfeacc72d992ffdb4655ab573260f650411417ad21cad760334318","sha512":"16b875e5b2facaa629b3707d43dfcfaf83a5aecec4195429dde13d522cddd182b431658caef9e7fcb739f2ec6963417ac80725aa5b990cfe4a88c4acb5330cdd","ssdeep":"3072:kow+1VjA+GPk18Yx5z2Lrm5A62R6zRqGJr3CsuNoEKGfRbJ:Y+GIJr9gJ","tlshash":"23e3094d7dc57a8692eb54644027b5eae1af58d83024080dfa42e4e478fc79876e3efc","size":143618,"data":"","first_seen":"2025-08-29T17:54:10.488696Z","last_seen":"2025-08-29T17:54:10.488696Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ff03fc8f0c3179fb4dcf4389f88a1c16","sha1":"05ff911d7ddf2d7c14b4316a87fd08f42c618f9f","sha256":"025229ec6bb50e915572750c5045d22c5fe16851fd077f1411f41b19aa1dfece","sha512":"4acb3551ec49556a2a64f4a47e480df29f611f67d0ef4b2474e90f7b86caed3dedb0b56eba12e577f1401d4d701c9a4f0898a06eee8f6d7dbe3b4b5283a854e8","ssdeep":"","tlshash":"4f60000000c000000000030cc00300003cc0003300fc0300c30c003000cf3cc0000000","size":14,"data":"","first_seen":"2024-12-12T23:50:40.182598Z","last_seen":"2026-04-04T18:46:53.565574Z","times_seen":247182,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"65ab14065e7a119cca9822c5e34c9f70","sha1":"9da242874e772e4fec8f615bbff3c5eafb996b17","sha256":"3146ad60afe1ba6abf6e512b527ac8b15ae3db03ed4ad32baf1fbc0745b27724","sha512":"10610f225ba3107a19df4015a2dc1a48f34b310d0facc9af323aea60978ca9a416855422cc0a03a811e4fbabe0bda6917635257d4653faf5dc92eb0c8ea18322","ssdeep":"3:N/BKL1XLRc5TRn:eL11cD","tlshash":"965504c05c4031700510cc00f1547515dd3d141c14150c11f35d04d4173c1001014740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.578499Z","last_seen":"2025-08-29T17:54:10.578499Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=976de8206efc56bb","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d13bc8ff0eb70cbdbc46b650d36a3504","sha1":"af1bce1c509cd4e81832f526c7e05a64ed072ed0","sha256":"4bab0bdc5b755a4d9808225b907233203da87bda0ab887c91f89f49664923122","sha512":"11fef0b00a5223ece6dde031e008a4953e2a68b539f8d677691ffc78a872666cee08b1f398294ae01e180fa74334117702b32f3ada035ed9bc26ca5311277992","ssdeep":"1536:ubyKlZywjnuav9Py50EdHh9e5SHJkuk4UYksIWKdoaSWIhImzo8BEqOyAv6IIigl:uGmAwjua1650S9VLvksUoZ3/hvIv/+8K","tlshash":"adb3fa8c38dab69443376074606736faa1bbac9031180c0fe905e5e479f178576a7efd","size":118039,"data":"","first_seen":"2025-08-29T17:54:10.498241Z","last_seen":"2025-08-29T17:54:10.498241Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f8d6eb6fa814e32e571e3a534650c1bc","sha1":"940f4d1f98749a28c3daa08e247e046e44591875","sha256":"97b9e5fa4773f80a1da0dec6e2d17449c973585b803992d61b54946a7c123c45","sha512":"058b385c705ab54c04660b32123fdad6b8815f54a7600c373fd65c7e03efe5c9d7e3614df6ca077c55d3f79118b515cf34db3dcc3f7363f713e3c10d7746aa62","ssdeep":"3:N/BKL1XLRecHQ:eL11Dw","tlshash":"ca5504d0544430fc3411c405d1d414d5d415044410150401f15d04d557345001030540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.581066Z","last_seen":"2025-08-29T17:54:10.581066Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fb5455ccefb9ed979ed7d5747eb2b0ba","sha1":"6b300a4ad0a46d770c1e86397a60f62f86fea309","sha256":"d004408f5d657495b38abae6f0dea244c7ee9d8298923246819644864e27622e","sha512":"40a95c652b7cde4fac63627ccca07f681828c09da9fc443bd8d6009b771b829e83558be049b8fedcd592ff667d53e38e6d515affac70f907e7c3f0275e5855aa","ssdeep":"3:N/BKL1XLRcHin:eL11cC","tlshash":"745504c0dc4030700555cc00f154df17d455045410151401f75d0cd457305011410540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.585558Z","last_seen":"2025-08-29T17:54:10.585558Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7985019fe734feff1f7d942086a4d5ad","sha1":"21fa4e3f4e6a6c61688b7129aca0dc56f93d6ed7","sha256":"8b88f0cb9aeaeb3087ed20b68dacd6fff1c9ebdb8108d0272d8c97a116341c57","sha512":"27c991d5ea0fb4b432cd953db3e2152f943109474112e03b7e308b80b6bb4c23227b6d79e326111ce22b3d6de5a53496ab456d300cf534c5687f0a5da0eeda72","ssdeep":"3:N/BKL1XLRc63:eL11c63","tlshash":"af5504c0dcc030700510dc00f1545535d5151414151d0401f35d4cd41731100141dd40","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.589178Z","last_seen":"2025-08-29T17:54:10.589178Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/?__cf_chl_rt_tk=l2.JhU6AcfsOpcfFYqnTlObyNMNmGq4jUhcih1lofpE-1756489994-1.0.1.1-91sDM97DK6xc9j4SU.g9hIN8g.5WWmX.mwOpraaadds","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"dc6d15143b7e1bffec27fb9bab6cdd66","sha1":"558fe13f4d380570beea84269529ec4dbcb47a16","sha256":"6b7ccf693943e0b8d0b6010e78ef8693e3a59a6c52c51e8c545ccbe83af5b2c9","sha512":"4386bf07286820446800848f3be64d49c13036c32a79fbe3cee6c14d286d452431772d4c7ff638ab456020bfe703971badf59268d1b6d468b20f577ffeb2cd0a","ssdeep":"3:N/BKL1XLRc9jn:eL11c9","tlshash":"ec5504c05c4030700510cc00f1545515d515141414150405f35d44d4177010030145c0","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.592316Z","last_seen":"2025-08-29T17:54:10.592316Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"80810aedc07e700b1f290f55d055354c","sha1":"c1c5b3a51f6101974ee0067290c6731c1536f4dd","sha256":"86343fe65819351afd125eea066d3099291dbe6db43708e465659b9e70794b93","sha512":"d4fe9b878c4a94693bdcfddf56f97880bbb344aa61725c6a51a144605e4b06dfe27256f6c61e427247513cd9512c142e8455af6af19add5f20e1035bbcc74cdb","ssdeep":"3:N/BKL1XLRc5C:eL11co","tlshash":"605504d05c4030700510cc00f1545d15d5351c3c14154401f37d04d417301001014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.595322Z","last_seen":"2025-08-29T17:54:10.595322Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"47bc483c35d60deeb791a409f01f85dc","sha1":"9d23697817adb61e7da71b6fe6769ef1f3bbc10d","sha256":"d8fdefcaffd8340c1bacf994523d469d8230b18ee4fe99e144ff8c367fee421a","sha512":"811120117e3a6042f90995f7942178271218b2fe034f57e2b075dcf1355f76aabf396765aedcb69fe358c57618ec1924a3acdd3de560ceb856571fa86651c1ee","ssdeep":"3:N/BKL1XLRcP4n:eL11cg","tlshash":"955504c05c4434700754dc00f154df15d455145410150c01f35d04d417341001050540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.598714Z","last_seen":"2025-08-29T17:54:10.598714Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6e824f25f7c82413126a06c79586289d","sha1":"9598411d37219b0bf857642a2719358214bb6f1c","sha256":"c4226aa62f5d9af55839f0b3e7b4ad7049fb3fcb4bd1b5fa2bbb8fa8db83f016","sha512":"057e36b6ddcb691548cce3c2f2f72464e93deb1df511c130a7297df7566a4c2144ae199225bbc94dd54f0aa2d3e2b0e3b9cdf5fa66a57984a78b691c593a1b55","ssdeep":"","tlshash":"a7b0125026f23000c327d034884b8804f109034221980504745e53305f0041b45799a8","size":87,"data":"","first_seen":"2025-06-14T22:40:38.733601Z","last_seen":"2026-04-04T12:23:15.034775Z","times_seen":4696,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ca897fb253cc8807c5aafc947eb02fb6","sha1":"25137d68712ada7d3ad424c80bc0d688a696f7bb","sha256":"57f9c536daa79c4d770534dbafbe2e7b2b2aa48b9eb2617b4e670b8a78a4a4ce","sha512":"187200763128b83b777932b28834f8a21adf5824c5b9f8635249168aaefcc2451885b26da07411ccd56a52146f9b8cc2524647ebf2df4c1474f80d219d893f64","ssdeep":"","tlshash":"d96000030c00cc300033000c0003003f30f00c3003cc300c033003f003c030c0000030","size":16,"data":"","first_seen":"2024-12-12T23:50:40.144885Z","last_seen":"2026-04-04T18:46:53.619406Z","times_seen":246061,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d49f29a062b4cfc2711be585eaa1ff4b","sha1":"b9ca120766d893646cc13d5c057e7cd47f70a7ad","sha256":"9e86cf1e875d56e38a7e7bb57fe222550d9e41242f6b67a2a757d062b4ceb0a8","sha512":"e88bbe99b2e8b137f7f418c86a460d20191120f36269a31f0ed2ecdaf1732114e832b911a116300ca9034a47abcddfbe4bc394e028bfea4a80224221efcfa1ce","ssdeep":"3:N/BKL1XLRc/an:eL11cS","tlshash":"f65504c0dcc030704550cc00f15c5515d515341414550c01f35d44d4173414111547c0","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.603777Z","last_seen":"2025-08-29T17:54:10.603777Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"79f171bf00484417d022fca9a8b098e4","sha1":"37ff5e692fed733be3cb78ebacc1895ee09ccf9f","sha256":"ad8540a7acd8f5b4ca5173fb525830be903cdd45d68b23974f7ef6ac1359996b","sha512":"ced9c31b740140550d8ce876fe9983e91664c0ebcc0bcb4b2538741541ca485dc98e304c1acf69d7e1f6eb66a0e2f1af333cef4c9435d2f460abcf317f6fe91f","ssdeep":"3:N/BKL1XLRc9x:eL11cz","tlshash":"a05504c05c4030704510cc00f1545515d5151434145d7401f35d44d417341001054540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.606301Z","last_seen":"2025-08-29T17:54:10.606301Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e0a418d799e4456a8e46ef2967d895b3","sha1":"bef20195e23a12ef495499a421175656e433047a","sha256":"c0c54c9fd26ed25bf26d45713fbbbf91abbb34312e33da0ae5100effabbcc189","sha512":"9ec494c394c73be54284943ee504a96b7dd281bd4a240a28116886976d0745061b80683e6114e82983ee32a64f414ad7110f4aeeee03dd2c1cefb2905dc13776","ssdeep":"3:N/BKL1XLRcYn:eL11cYn","tlshash":"a95504c05cc030704550cc00f154d515d435041710150401f35d0cd437315401110540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.608928Z","last_seen":"2025-08-29T17:54:10.608928Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"839e156f05dc3b8bc1226ec8b7e622c9","sha1":"91aa66568a974522b6cd3c0509ca4081a1252d89","sha256":"4c5b62d9a100cfa7472764a9121f6ea26feebe96d724cf2f853e963303795ecb","sha512":"7e88000084a298d27b7efe5525a203c22f72f6295dccd49254c2c499c54afe6df9cea850d047bff99666d8dc7bb84876ecdabdfa218b2fcaf1cd95203e2dbe3f","ssdeep":"3:N/BKL1XLRcYn:eL11cYn","tlshash":"ef5504c07c4031700550cc05f154d515d415041434550401f3dd44d417301101310540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.611423Z","last_seen":"2025-08-29T17:54:10.611423Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"0bf56f54c3a8a9e8386b38095aba3713","sha1":"1412adc4fcd116e6b62c7d0983975aa0f2da4df7","sha256":"6e97de4ec709bd0c90d8d78ae570035b1bd359bd2eaf0225a4458d1771a3f919","sha512":"aaac91065396d127b4d70cc114d2709ad17d17c4c565986ebb7e9ac93b27ab7b0bf20d5c6bcb5b5bfcc073e24cb7d001400677913e65e45a4e49b21a50e30056","ssdeep":"3:N/BKL1XLRecY:eL11DY","tlshash":"f25504d0544430f43413c40dd1543455f415044d11150401f15d04d717301001010541","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.613745Z","last_seen":"2025-08-29T17:54:10.613745Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f7205a28b2f6e3f1064ba426a2d7a200","sha1":"f9c0eddae0615b251a720740a6a7c0214512c3ce","sha256":"2bbc461d6246f135117f9541fd1c6b44a2a0b2f2f2dd99bff48a207c9ab47dc4","sha512":"6f425a5fbbd94ec6dd0745a5562761592366efecb7f8b9075ee86982fb4daaeaf1c154ced0f7f8f894c5730cc7113cbbc4d32f2b452c98c9533415a6ed29efe5","ssdeep":"3:N/BKL1XLRc3B:eL11cR","tlshash":"cd5504c55cd030700510cc00f15d5517d7171414141f0c01f35d04dc17341041014740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.616112Z","last_seen":"2025-08-29T17:54:10.616112Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"882a4df2bf2d7e8893b6225485f15791","sha1":"7869664f64e6630be94e60b5746ea6c7cfb417c0","sha256":"6b508eb96a4894872f08c309b03e0275e45ee9853c515a4dd92e7c003768dec4","sha512":"1c89b7be1b4364bf644c6d8f9ca2365ba8801a398db5efc34749c527353381d63310960ddca4c8ed6d402de694c664f1b8ad0c2b3fe1d6b2b67f181e33386703","ssdeep":"3:N/BKL1XLRczn:eL11cz","tlshash":"3b5504c05c4030700550cc00f154d515d415043414150401f35fc4d4173014031105c0","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.61889Z","last_seen":"2025-08-29T17:54:10.61889Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"0d3ded4a2813793653148306c40d8c36","sha1":"ba55a121a478ee0beb0d956f952b82b711b9f662","sha256":"93ea6f91d97a5ccb06c6fe5b80da2112af1f36e3c17c9cfea7cfb37f5675f265","sha512":"8cdc4333499f39bf84b998c6f63f8bc8562f07590ba26fb95e6c19d9801082e3f6f6f8665e05c68ff9973762d625ab2578e9f53452d9f8410d24e9397b39bef9","ssdeep":"3:N/BKL1XLRc77:eL11c3","tlshash":"925504c05c4430f10d10cc00f1547715d515541414150401f35d04d417301001014544","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.621815Z","last_seen":"2025-08-29T17:54:10.621815Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"8edf6d39d45d4a8fec665027822ee30c","sha1":"212725b7c081a42017c5d9ed8af67a7797d9b147","sha256":"88f6abfd2d189b307258f5ef114b2f81186546d931985e8f4d689aec2c42d7f1","sha512":"bc7fe67a97ad880cd4ffe9e81902275556cb5a38d67499a31aeae91d765677faddff8922717023832b27c4f440bafc06b06b3a91ef15c9e0fb097b881b2a16e2","ssdeep":"3:N/BKL1XLRcZ:eL11cZ","tlshash":"5b5504c05cc030f40550cc00f154d535d415041414350401f75d44d457301001110540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.624513Z","last_seen":"2025-08-29T17:54:10.624513Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"abe41cd23f927aed90e20a346991b741","sha1":"9235acaa3f8648e091ae619f7204a880e1c5952a","sha256":"e9c5786164d143111d9dfe22e37cc2f3374c296599f7c53b79c06f909e31a40b","sha512":"faed00bedbb444132cf28868cf616b209ea833c9054fa5f89b574f285ed8adc1ef11a8023b3d7b9c82a404fe2d2808cba9d23ba920681b029dd1ccec30e3492c","ssdeep":"3:N/BKL1XLRc5MX:eL11cSX","tlshash":"d25504c05d5430f00510cc00f1545517d5351c1d14550401f35d04d417301003014550","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.627158Z","last_seen":"2025-08-29T17:54:10.627158Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"32fc6f033061e8c90b661ff5e43f7c50","sha1":"226811d2a3b38a1c28fcebad1ef82f1a70d24835","sha256":"9b57713b11fd42e7bc960ec01f527caffb6b73688230da3a622eadefb939e4c1","sha512":"e49953090acb69d3ef8a8119cc02a89bcba235f6a69f912444f21aced939888411a70bb22ae4eeee9f077da996c5a6499ce3923e2c9cb891ead591f3e4ec73fc","ssdeep":"3:N/BKL1XLRechX:eL11DhX","tlshash":"2b5504d054c430f41411c405d1543455f415454414151401f15d0cf517301001410540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.629966Z","last_seen":"2025-08-29T17:54:10.629966Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9bbfd5013eda01757a8f9a54ae4ca89e","sha1":"88e2ad424d28a938454707afaae799beb8a9ebcf","sha256":"ee03a4225d1b4b233fdf6f66f45b15261c3ac4d2d402a4a0312c2acb0c2de7a3","sha512":"c01af9003a9baff8739fb42ffc306b8836b12e5282f8cc22389b5cae94cf1107363b1e921971cbb774937eeada7e6f5126344612311e4b341817ff203ed9c642","ssdeep":"3:N/BKL1XLRc5fS:eL11ck","tlshash":"065504c05c4030700510cc00f1545515d535141c1c550401f35d04d417301101014540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.632775Z","last_seen":"2025-08-29T17:54:10.632775Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e8cd41c8639713926c33042453f2e9c","sha1":"730678baf460ae728f8680d0a819ae6e587085ca","sha256":"8862b1206c53934529102f8a4574373e8fca187f50e48bc3e08eef2913cf5f68","sha512":"b1c69f06c944adca8279e0291c5f60ad74e7371f71f5ff3ba101bf9d6b96e66aefbf096c972b7c2a17be3822176968eb106751fa7ab547e184db82b306de97fa","ssdeep":"3:N/BKL1XLRc2Jc:eL11c2S","tlshash":"c25504c05c4430f01511cc01f5745555dd15341415150401f35d04d417301001014740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.635489Z","last_seen":"2025-08-29T17:54:10.635489Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"a4a1f046e87a0b06c0cd299c0b385ca1","sha1":"cbafdb2a0c8fb6a892b5140ce34eccef30ff3bd2","sha256":"5b8bb1cad0e218275febbeb6a3fd56c0196da8eff63daf58c856ed1dd56ad4ff","sha512":"49177fb8508bec6550d7a8b472dc8857d35e9a3a96048772e6a99a634fefc6beb3f51a64a7df0280a0d9a8851839379d27badaf5d6defdb8caa62dc608f06f89","ssdeep":"3:N/BKL1XLRc+/n:eL11c+/n","tlshash":"425504d05c4030700510cc00f1545d15d5753434141d0c01f35d04d4173c100301c740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.638177Z","last_seen":"2025-08-29T17:54:10.638177Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f47389d2f1abd47dbebeef3e2d3ae8a7","sha1":"dde5aa75f9a647e73d3e2d3fdda68898f850f72d","sha256":"30893b81b3c71cdbd5cf34b54fb52f8eef50b27d8a3f2498a28d2b89bd987fda","sha512":"3524a8ed2b83fe9d62a0708424707959d6cc8e89a918407da7c46540b5982fea9230792acffc47517cf5d009231375b00d5ec2ff5689bfb74ea6a3c926653318","ssdeep":"","tlshash":"56b0028869e5a404e21975a5495fd144f12cc802148a0515658885515f114294167868","size":94,"data":"","first_seen":"2024-12-12T23:50:40.522517Z","last_seen":"2026-04-04T18:46:53.590679Z","times_seen":245603,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"2353794cda40c46a145d2d9896b25bcb","sha1":"1d265c98f53e8e967e836f952b1f94eaa4ee9938","sha256":"de75f46094b4bc45465d2d682979891750d8379380a29313ea274c3262ce39f6","sha512":"95e05091f47f109d6e816bfb62fc54814a8cad8ce4c93e31503652e087da2ada764951ea68710af63466db85e45ac18a2617395987c782e6a348fab74a1f6078","ssdeep":"3:N/BKL1XLRc/FRn:eL11cz","tlshash":"bf5504c05c413070c510dc00f15c5515d515341414550c01f37d04d417301001114540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.641724Z","last_seen":"2025-08-29T17:54:10.641724Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7c914fb6ff06b9eea795ef36c17d977e","sha1":"e04233e9c510c51cba881579309ace662724138f","sha256":"785e2c355ff26c414a336e184365ab124f6f7bf5966b33a8813973615c94973e","sha512":"81513fbce4af7724383d9b67bcc273b4b9999fc4d47a0a78d7ed63ecadbff697bcf31adf111328b63a4b7912c859c0c402353c9d8b7eee18a8a7b33d8b8dea6e","ssdeep":"3:N/BKL1XLRcU:eL11cU","tlshash":"f85504c05c4070740550cc00f154d517d4150d1414150441f35d44d417301001110540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.644633Z","last_seen":"2025-08-29T17:54:10.644633Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fead10f6a461bfb861996cca3aa94b73","sha1":"2bdfa30221492eed84d90e9d611b3dabfc0bd226","sha256":"9aacfe1fc99efd207dd57b4c037dddbe0c3a8897c374da15dbcd139d926303b9","sha512":"37e96064cedaeb0e026a65b77bdfcbfe624c51981056b48463a6efbc08e89b47824ba6afc61e5a9ab6a22e8a3194bee0696a920e2428057c7329bb5e2eabf7bc","ssdeep":"3:N/BKL1XLRecsX:eL11D2","tlshash":"a45504d0554430f41535c404f15414d5d415041415550401f35d04d517301001411540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.647598Z","last_seen":"2025-08-29T17:54:10.647598Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"5e7fa063eed2d17503fefa75e340bdc3","sha1":"2f3d4d43effdd6a501343b1d9541fd76b036dc37","sha256":"37494215206d5bf2167a1e0d1c108c5caf94bec01a407a05c424a6892fd37c3b","sha512":"55e8a604b8360732a474adc31fa5506c2c03158aee87e9765afefab68d1a59064c2ec26188ebb30a60ae588b40d330a4c40f1b3264accd4819bff490e2c17bd5","ssdeep":"3:N/BKL1XLRc40:eL11c40","tlshash":"765504c0dc4030700510cc00f1d45515d5171514341d0401f35d44d417301401414540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.650662Z","last_seen":"2025-08-29T17:54:10.650662Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"17ca2ee84c5ab803ff6267962b999351","sha1":"6ec30621d68d50a5c20832cec627e6c4b04f1811","sha256":"231d86fd740120bfe58cecb2d3bb2ee4bde4774b2547f986161535401e316bee","sha512":"bb6fb6930b07359de1982110eba3a3bd6d0beb97c1b6b574354e59af810c6025844d163b7417a096be6214420ac19fcbd2cabb6c8c3f40d13f5fab399e4a6ac4","ssdeep":"3:N/BKL1XLRc40:eL11c40","tlshash":"4c5504c0dc4030701511cc00f1545515d515141414150401f37d44d457305403d15540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.65361Z","last_seen":"2025-08-29T17:54:10.65361Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e60551ad3b3c039f212bf63e6d5ba476","sha1":"61aac0b4ae79d325fa8a441a649be2fa334feaee","sha256":"0782059cad68257139f3d45ff073af1d86b292520beb408c583f9059ea467a92","sha512":"dcc409357a9fe62d7cc3572767856be190c7e1217d2487dc9806b6c65960f5585f656eeb321a8bef5d2194344b040c0703071e726e858be8e8a3c1c75d0496a5","ssdeep":"3:N/BKL1XLRecSQn:eL11DSQn","tlshash":"e65504d0544430f41431cc04d1541475d415045414151501f1dd04d557311045410541","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.656074Z","last_seen":"2025-08-29T17:54:10.656074Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7445ced40f41493abfaf1af5850b7734","sha1":"d92288d8d2a135f6ec864a928afe64c242eef74f","sha256":"e4a0225ba7d3df251c5c26d20a5b3bcbfa872fb8b695a82dc3de5c4646ad47a3","sha512":"2c4f418898554dc230a02d9c2301e9f38bc903603597377c13e661f6415cb361ecaf6dc90d138c6b22f70dd1f8321a1a00244e21e84d114694c40bce7612f16f","ssdeep":"3:N/BKL1XLRcBA:eL11cG","tlshash":"c95504c05c4030700574cc00f154df17d455041410350401f35d14d417303101010540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.664591Z","last_seen":"2025-08-29T17:54:10.664591Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"72197a08cad8cd144028b88a8dc97134","sha1":"d0723da9e99fa007d297d2833a8fb3fb98dd23c4","sha256":"ee98fef970540602b9f3fe524190cc9dda0bcf4f30e2401d79e70431e659d8f5","sha512":"1b096ba6d99b223a581e1b8365c3f5e6917a82116f572544786731b406c34ee56c4dcc819a36a986f25c68a146f75c01d19ed4c8d38a0625358b5e6b60505f72","ssdeep":"3:N/BKL1XLRecNn:eL11DNn","tlshash":"a45504d0554430f41413c444d1541455f415040410150401f15d04d55f301001010d51","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.667913Z","last_seen":"2025-08-29T17:54:10.667913Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ff88becad97b440f35b30a7f76dd32bb","sha1":"b769637d06fb440d8525a24298c365e292c3e5bb","sha256":"c4274a3d08a619f31335019869c4ebf6ed1c79b974dd14a5bf591476d1d46eb5","sha512":"1c0868518b691977066d352f8f22f486433770bbab4f67fe9eb451f54162b93d6f6cdbc6326af39447d12acd26ae1237f913c3f7881e1a9291c6289239e93e60","ssdeep":"3:N/BKL1XLRc7t:eL11cZ","tlshash":"f45504c15c4030704510dc00f3545715d5155414141d0c01f37d05d417343001014544","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.670795Z","last_seen":"2025-08-29T17:54:10.670795Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fdc5925dd4e1c343e9f1a1f646388764","sha1":"8ed7a0fb24e690b65a0b9b77c5228d0d8adcd5a7","sha256":"bf17c4d700d7109792b90133016662003d68bcca4afb013e6bf0dfc9fffad423","sha512":"e805dc3ef97457103c333355bc71fb27ce4720760cb562d2ba6bfa7a6ca195db7d2440244979c1f176653ea1a28c01dbb8bc159f4785aea2605ec0e9710b33a5","ssdeep":"3:N/BKL1XLRc35n:eL11cJ","tlshash":"325504c15d5031700530cc00f1555535d517141414150401f75d04d417301001014740","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.673936Z","last_seen":"2025-08-29T17:54:10.673936Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"bdd58bc98510c426a36ca88c90b85e98","sha1":"7ccb93f9f93ef13d17ce5490dd184302c8ba822f","sha256":"32baf18f7bb8245b312455169002323fca67afeb7089abe028fc1336dd206a8e","sha512":"b4962447bb0f4a7164a886d09568b27d6cb27b80b79c6056f42da477693080663eb23ad3774f50d4cd43b733d4e2c77f11c6f2534ba30b8ce98d8f21d97dfd1b","ssdeep":"3:N/BKL1XLRecXW:eL11DXW","tlshash":"c75504d1544530f41411c405d15c14d5d475044430550401f35d44d517301001010550","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.679304Z","last_seen":"2025-08-29T17:54:10.679304Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9c921e54b9fcaf5fc43c8b31a5664e6c","sha1":"510c7248e4615e066eaa0db07afb835ca4d6b97e","sha256":"c38229a461d4ef37de3ed39865f21abaca1cbfa9040071d9750fe20405772233","sha512":"cb3dfc4c93cb0d4b2b31def8df5878a32efaf098be7f5c05f949e76d0aa88f90fe86b6c0d7346cd05bf2e06d2b3aa4bcaa61bac681ef9ef581a99774d2167bce","ssdeep":"3:N/BKL1XLRcQ:eL11cQ","tlshash":"975504c05cc430f04750cc00f154d535d435441410150c01f35d04d417305001110d40","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.682842Z","last_seen":"2025-08-29T17:54:10.682842Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"69f14bbf4d2dab0fda6f892d530e7470","sha1":"b3db2b54951f4566153f2530a164fc4662e27c45","sha256":"ee2b09832c1a8c2f887207b07d6ea0f307059724910ad90b2d5a237aec2a547f","sha512":"47cbdc73724b55f68c13386f78d3b5ac6d30f93cd3c7df37d596ac6d2c425ceb0fe156e63f2c3afee7976cf45e8863afb6777b83bc49451d5a2f3d1070aff097","ssdeep":"3:N/BKL1XLRcun:eL11cun","tlshash":"7b5504c0dcc030704550cc00f154d537d415043410350411f35d04d45f305011110540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.686409Z","last_seen":"2025-08-29T17:54:10.686409Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"24337daa4dbc76706fc3813f2d6b31d2","sha1":"c1071f760c5be1dad9a79580c4b674e2fb6df17d","sha256":"feb92db332abdaffa9fe788b58f07986f78edac6f9b07bb593fd7191a3efcf95","sha512":"91fedae7c5a41951960b172a2fe520c2c97165fb3bb55bca4194c0bec8299c6455c39cb9ac3788d00a320c3eb6ee507aa79d29043d6179010c0cd04c9524d6dd","ssdeep":"3:N/BKL1XLRecIR:eL11DIR","tlshash":"cf5504d0555430fc1411c404d35415f5d415040411154401f15d04d517341001034540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.690146Z","last_seen":"2025-08-29T17:54:10.690146Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"33ff6022e88df59f8dfc9eb546435e9c","sha1":"7f2ad96c0a1276fbc858c652a6e2d0b3c9d4d3e4","sha256":"a1c845cab782ea7dec04543ec72e0b354cb8e9aae23acc02ee02b1832e3acd9a","sha512":"99820974c649620d8dfd487054edee4863ca41025de5a87fcd6fddfafbecb53668799fdde6f7b809112fec178b18f28a9ff8e190d298aff5a29c6795ad639c25","ssdeep":"","tlshash":"0c600000c0303003000f3000f00000033cc000f0cccc3003030c00f000c000c0cc000c","size":14,"data":"","first_seen":"2024-12-12T23:50:40.556614Z","last_seen":"2026-04-04T18:46:53.546774Z","times_seen":248397,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"27de7c5597d6739fa44f58f1bc178ff4","sha1":"5075382e040ed1558d6848baf0a69d9446db6801","sha256":"1377999d0e5e2bc25501b92317c0f955bbaea5fdadb8727311a9c7213cb7fd1a","sha512":"1c550fa78d8364b396b0b4b97c342933c256432f801be31dbddc3ad299eea105bb70768824735618f44b9594df4dfb674b2962af8ec8c8a3cb5a418eee54c835","ssdeep":"3:N/BKL1XLRecy:eL11Dy","tlshash":"905504d0545430f41411c405d1551455d415040451151c41f15d04d517301101010550","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.698397Z","last_seen":"2025-08-29T17:54:10.698397Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"01e2f5a026152e4b94bc3ec146fc80ef","sha1":"8845333ed551b5847199e674f704752730f66515","sha256":"39ecbec372e50be87bba90d5ac2b7e2fea5eb9d16c270237f5577d7e228a31df","sha512":"591afa162da6740e16201079a4fdb5a51dba39d9a45a984481c965556066d649feb38b06e6d7ffcae06cba7651f77abd6ab8f2d4dc736264ef0a0074048f0364","ssdeep":"3:N/BKL1XLRc/7c:eL11cQ","tlshash":"dc5504c05c403070c510cc00f1547535d515341414d50403f37d04d417301001114544","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.700742Z","last_seen":"2025-08-29T17:54:10.700742Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b09c5e48b17219cf71c034a1fae1798c","sha1":"ac86d0af7333cf40c43c1ccd743876a162365ac4","sha256":"ca114fdf0326e784c894877d49b8ff2ea118506a92ddab040301fc2d5a24f3c3","sha512":"54c9a1f832dc5e712eaca905c6ee4af73f704357bbfb5f0ded6f43ae97649b17b67a4deb5911fae9987a5ab2adff7e2d8134948545bdd28bd3fa2cc2d6119dd8","ssdeep":"3:N/BKL1XLRc8kd:eL11c8kd","tlshash":"e15504c07cc030740515cc00f1545515d555141414150401f35d05f417305001015540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.706842Z","last_seen":"2025-08-29T17:54:10.706842Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"76f02e8d16d514770c5bce23a1c3ce87","sha1":"34303a195b6bbc97a985f16c9989bd630079a2c4","sha256":"380574cd91540b561364ef7c853faa6f074e0055354ced55b62602daa3dabe4f","sha512":"bb0b5914c24014569c13d43a8e0deee609eba493da5381d54cd27accffd6eb07dcdd9e9421c970acee73bb8a79e9c3e0ba66c8a055a9f1872502de6870312041","ssdeep":"3:N/BKL1XLRc6+U:eL11c6+U","tlshash":"f35504d0dc4430704514cc00f1545575d515141715150401f37d0cd41730100101c545","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.709514Z","last_seen":"2025-08-29T17:54:10.709514Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b92f20759a4f365402b0c875a1c901ef","sha1":"235759e620ef89fea1f7be9f3c24d316840db822","sha256":"434cd690b6bfe5a1c13ef0f0239ab327c67ab05a3bb9c3ab737212b5a35642d7","sha512":"82e219fb4c39df8377ca070d00a6991455d85508cc23320c2f899bc37d3e801bf9abd1a415eb7132edab65953806909e31c1e12bcdbea639f3544f676ae96eed","ssdeep":"3:N/BKL1XLRclS:eL11cU","tlshash":"af5504c05c4130704550cd00f154d515d417041c10150401f35d14f517341041031540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.712433Z","last_seen":"2025-08-29T17:54:10.712433Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fd376235c7e915c89ea5600a1019c4fc","sha1":"2f2ac442bd0414c88d99267acb455f087866786d","sha256":"f290d116a4c5bc174cc2bb699dfbc640958e781a2337c8f902e69d67ac76fb72","sha512":"3a8ad244d3a781c341936548caee361b5825817614ac28240c18a67dd4273fb3790cb5ede46802d1df1bad61768748362018d3868cdb1b4f619421f65a80726e","ssdeep":"","tlshash":"9f211e8f6ff47db8132015f6486f313a1b66f8846c0294684604c2cc3e25a04a42bfbe","size":1143,"data":"","first_seen":"2025-08-29T17:54:10.72031Z","last_seen":"2025-08-29T18:49:21.488586Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"696774b690091728277cc048c60f4ef2","sha1":"4dc0c858cb38bf1f550a52dee34b14f092de6e96","sha256":"895b00ca2beff68e2ca1192c0c6a20a79d5b924a6a9a935db31b5730d53546d1","sha512":"8b6a2db4249e3fcfd17f9e8ffc51ddd4885d72db03705cab2dfcbfc292d9f3b1f916d6727179c08843e6b278cbebb5d74db12b469a0813cf80ec4b30cd87a93d","ssdeep":"3:N/BKL1XLRc7X:eL11cL","tlshash":"9b5504c05c4070700510cc00f1545715d515543515150401f35d04d417305103054d45","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.723723Z","last_seen":"2025-08-29T17:54:10.723723Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-04T18:46:53.546146Z","times_seen":666336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"973689ef49c4e0b9ad1971af63ba6017","sha1":"16c187cc6de11ead633f4d84b7f7a569314c0b60","sha256":"797710ea74ab08213ce5e3aba0523933238d233ec91d8d8583ff7b15084404cf","sha512":"61a1144ba9f56ebad7a00c0b0b4a362bf2e2882fc933d1e103ca708e74c879efc8f4180ad4ba8d9feeda44e5a75cfa0afc341fe4531e4cba67f931e15b78c7a3","ssdeep":"3:N/BKL1XLRc8DS:eL11c8O","tlshash":"885504c0dc4430700511cc00f5545515d555145455150401f35d05f437301003015540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.727068Z","last_seen":"2025-08-29T17:54:10.727068Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"57f5677602aac08b585a5cd2deeeec9b","sha1":"99d5d7a06fa1e0c51367193367856ae7022bb80b","sha256":"ac01affd75ff4a97bfed470aa0d3d23c77039a285dba779a4b71e42464bcd76d","sha512":"a8c6c32fac6543ff9b93d391995a4836dc5c811d204cc089d609aa46847d11b7e58e13f5e6530cdb611841b55a36dba9d823e7c74811c85a7aa02b5f50d95cc6","ssdeep":"3:N/BKL1XLRc2R:eL11c2R","tlshash":"a65504c05c4030700514cd00f154d555dd171414141d0401f35f04d417305001034540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.730189Z","last_seen":"2025-08-29T17:54:10.730189Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"10299741322aca6506c3db2648f26d1f","sha1":"19e11c7be335d9c71cb0313b47d3b28da9b44ae5","sha256":"14f784444ab17556429946370a971f9459a68b86580747a918a1ee9ed048a56d","sha512":"b4bf5120485ac5c1423cb1d0817ff6117bfbdf0e83b3cfec16a389c94bdfe65ba72cc680f9dcb8c8b9d78ecea85479f5284b84672ca80b5e66fc562e36e76554","ssdeep":"3:N/BKL1XLRcvh:eL11cJ","tlshash":"ce5504d05c4030704550dc04f154d717d417051410150401f75d04f417303001011540","size":1337359,"data":"","first_seen":"2025-08-29T17:54:10.732954Z","last_seen":"2025-08-29T17:54:10.732954Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"086707e4369f60afedcafb16050a7618","sha1":"8216b0cc6876cbd44f01c158e7dff3833ceccd41","sha256":"a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e","sha512":"aade21843813e2cab329b99185c6f61db7907a556ea974e0315dcf3ad967cab20fee66d4f10db0d0ec43a71e086ce6d700d5524103deaefa3ce5f6be74ba5737","ssdeep":"","tlshash":"6a9000fee0a2000efc303bc00cc2238a0c28c3a830028e002ac038b8c80822bcc032c8","size":39,"data":"","first_seen":"2023-03-07T01:03:24Z","last_seen":"2026-04-04T18:46:53.62713Z","times_seen":747713,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"www12.playdede.link/favicon.ico","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www12.playdede.link/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=UTF-8\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"976de821df1756bb\"\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=siTwxzjwTRzsCX63m4fkFa89ksgO7DFKEuYys3Td%2BeuwyGX8b9MPhAY06T5JcWE3hQS3DoZgKLl1SMwrJL%2FGa4FuPtjkAg3DMGwCTXrCL9Xy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 976de821df1756bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4754,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (4754), with no line terminators","md5":"92e348cf717d51afe77f843d7e987f23","sha1":"5f4f02d05ba5bc031a24a116c4541b8a18e5b8b2","sha256":"fde4b0820d4485fa36b99c5739a395435a77ecabb1fb700b276d6da10b4ec054","sha512":"66ed50947947782eca0fc0f32477741dd8fc6ac82a88032a82e69a4b410ef5cf139e574083fb6271c6816d19d4d6a07fedf358684cf2fbf4094abf6bc807ae42","ssdeep":"96:PNybXZtIEb0EFW87IrHPTPiWG7JC5Cih+zYzueh8Qmw:PNadB6HjiWGB8+syhw","tlshash":"59a108fb9605102bf3bb0fe741bbb354f150e9664b028194f6e2e84cd7eee0b9549680","first_seen":"2025-08-29T17:54:10.471499Z","last_seen":"2025-08-29T17:54:10.471499Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/cdn-cgi/challenge-platform/h/b/flow/ov1/1151614497:1756489075:eyj9jqiOq1PfSbAzv6fnTLq1EmtAVj0gx2QV_6tlo_U/976de8206efc56bb/ZeWHvGIXaUFe7pjuiZCus3SUaznvcFEGPFo2.JHt4VA-1756489994-1.2.1.1-ttnNC3vauZYY2.2pRkK_b919_QcDND7LZzkUi.of3Wk2o.Mbqyf8OtBNmHktIbRb","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1151614497:1756489075:eyj9jqiOq1PfSbAzv6fnTLq1EmtAVj0gx2QV_6tlo_U/976de8206efc56bb/ZeWHvGIXaUFe7pjuiZCus3SUaznvcFEGPFo2.JHt4VA-1756489994-1.2.1.1-ttnNC3vauZYY2.2pRkK_b919_QcDND7LZzkUi.of3Wk2o.Mbqyf8OtBNmHktIbRb HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www12.playdede.link/\r\ncf-chl: ZeWHvGIXaUFe7pjuiZCus3SUaznvcFEGPFo2.JHt4VA-1756489994-1.2.1.1-ttnNC3vauZYY2.2pRkK_b919_QcDND7LZzkUi.of3Wk2o.Mbqyf8OtBNmHktIbRb\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2402\r\nOrigin: https://www12.playdede.link\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ncf-chl-gen: e24sWpz+nv+IEpdmANWBms6wT4l42j6qzKxQX2jE/3E=$5J3XQ1z48iO1TA2A1UaK7w==\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: br\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\nserver: cloudflare\r\ncf-ray: 976de8230f3556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19216,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (19216), with no line terminators","md5":"4c66bec22b261a69ce3e3210e398daf2","sha1":"baf9dbed16a2c4c62931c24f944055c959f979e5","sha256":"1efbb613504218530112bd0033fcd5ca4359f56994ccd692e12323a8e773a29d","sha512":"aaef5cf968a995fb9c0a86374e1386754160b5ed4aa4eaa7d4b40be956acf66c28cec587754af859e59df17acacbca0c5ed59e453f988ec50542487faca569c4","ssdeep":"384:/ninGxeDuqOzRJHFFT7hM9eKOD00qVckflsJ99F43P/r374:6GxN3zhEeKOIhVckdW43XY","tlshash":"b282d0fcc083ceed8257553ec69a7d04b0efe8a4a9535006592daeaebc5e394c47029d","first_seen":"2025-08-29T17:54:10.475286Z","last_seen":"2025-08-29T17:54:10.475286Z","times_seen":1,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:14.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 86\r\ncf-ray: 976de824beedb51d-OSL\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced","md5":"70c202196187ab3c11b4e094c20c6de1","sha1":"9c52b959e74aee9d79cbc9f35d1f9f65a3b8c863","sha256":"6255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643","sha512":"7e6168e40cce79239fc00a05381e1e95ca3534905d3fc1467973927f317b7f12b6f3e76960d5202c40046618b51e0895082e22338b1b9971038fa0ba158117e4","ssdeep":"","tlshash":"4ea022f3b2203c3eeb2a2333022e8030f83020b803828e0c000eec332a20208c0ca2c2","first_seen":"2025-05-13T14:11:45.873663Z","last_seen":"2026-04-03T11:40:49.866694Z","times_seen":265776,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/favicon.ico","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www12.playdede.link/?__cf_chl_rt_tk=l2.JhU6AcfsOpcfFYqnTlObyNMNmGq4jUhcih1lofpE-1756489994-1.0.1.1-91sDM97DK6xc9j4SU.g9hIN8g.5WWmX.mwOpraaadds\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=UTF-8\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"976de8217f0b56bb\"\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UfiBkpetNlY9GepxEga8T3vfHVaO5Bxz14KY6wMDRHElJOXhUAv0nZEw%2BdlhNB03aqw%2FlYc8d52BDU1TPpPLjy%2F8qPaF%2FlRj%2F%2BY6RgoLea38\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 976de8217f0b56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4754,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (4754), with no line terminators","md5":"c9bac76508a86887292ffa5c5e59b374","sha1":"1234501bba1a302de1b5ce5dbb47a90ef3ff0feb","sha256":"1a5aa46a5d55ba70b10d0ce315a504f0095845bd8e6b2da48a0086d87d55945b","sha512":"508785df119705d48740061e51f22ab48758aa0f1d449cc201cbe8845802d41523f0d7d730f37fb81e65d5cd51411efcfc156e1e8bf61ce15ebe25d32afcf18a","ssdeep":"96:PNybXZtIEb0EFW87IRuFZd7f0qraifYqDNSYzueh8J1mw:PNadBMuFZd7sqramN/yvYw","tlshash":"c6a14af39546202ad3ab2ffa50777380b224e0a28b058058fae5f96c97cfe4746552c8","first_seen":"2025-08-29T17:54:10.479318Z","last_seen":"2025-08-29T17:54:10.479318Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/976de8243e3ab51d/1756489995421/28c159bf79c6c5420c537cd928d8752158ebecca12ed008d63b73f48c4c32064/NDRedbdwjG4UVTu","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:17.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/pat/976de8243e3ab51d/1756489995421/28c159bf79c6c5420c537cd928d8752158ebecca12ed008d63b73f48c4c32064/NDRedbdwjG4UVTu HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 401 Unauthorized\r\ndate: Fri, 29 Aug 2025 17:53:17 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 1\r\ncf-ray: 976de835cfbab51d-OSL\r\nwww-authenticate: PrivateToken challenge=\"AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gKMFZv3nGxUIMU3zZKNh1IVjr7MoS7QCNY7c_SMTDIGQAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB\", max-age=20, PrivateToken challenge=\"AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tICjBWb95xsVCDFN82SjYdSFY6-zKEu0AjWO3P0jEwyBkABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB\", max-age=20, PrivateToken challenge=\"AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tICjBWb95xsVCDFN82SjYdSFY6-zKEu0AjWO3P0jEwyBkABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAorNs8P65lcw_30Yffu3jnz5AnFV_GaOvQNSLfeOkthj4z1BmtPmql4aFuZb4YqoUjN4oYsGShg5ORvQHPo0ti-CEDGl1IeL9jQSwteuLTMa3FvaBQssfiE5DCBdjtxk1-0_7AZXomsP9S2-dw8MzWdpWxNm1EA5GGa2r0RQCnw2l_Wn96WZSek5D35BNHHRpj7qZG94J4DcBgp0mcvaHVtnBlysfXjeRD_NravDFkNrbq_V5HciQ6JkN_6Em_xcilrvhfnp2a-ZpeeBsti3nHjnd9njaWIVS5lMtiYb93JV7VnWo8fnLG2twtrzcawFU1eS3BsZyT_OJr7onMyki3QIDAQAB\", max-age=20\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"very short file (no magic)","md5":"ff44570aca8241914870afbc310cdb85","sha1":"58668e7669fd564d99db5d581fcdb6a5618440b5","sha256":"6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5","sha512":"3c266c0035de59eab2a0dd31b3dcb4a9dd157b310289e5db9ab4f8c2fddb7433466d48f25da7ad735a1cb8f2935aa612ad1f62f0efcece3933ba9979082e2304","ssdeep":"","tlshash":"c700000000000003c00000300000003000000000000000000003000000000000000000","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T18:46:33.518213Z","times_seen":400223,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/287020017:1756489040:LWA2hKi20oM2aBD6f3m5DrT_tJ1YzW6wxGbBJUdT7sA/976de8243e3ab51d/Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:20.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/287020017:1756489040:LWA2hKi20oM2aBD6f3m5DrT_tJ1YzW6wxGbBJUdT7sA/976de8243e3ab51d/Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\ncf-chl: Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 36098\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:20 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: br\r\ncf-chl-gen: rGCJYeaRJdaHgpQtUSlQ67j0HSUZABf0VuF6J0fitThP+RVHee6usrMEiAlxm+qO$B2GXGehe6SFKF+PTlrnAIQ==\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 976de849cd84b51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29520,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (29520), with no line terminators","md5":"d8b8885031279e907cf7bdc13e77074c","sha1":"2f335a1203d3b4e41a824ea0d573404a1be5b185","sha256":"a2f5d09b952eb11b65c29472b62bbdb66952a321c121024373c9148ac703d977","sha512":"f76084c02580471841d1b8771e48ae9431b33c66c1f3df3924dddb76a182f28ba347d1256848fab5d1e6ec14a411c7fcac6e4bd6d5a2c7f4b28a148c23ca0c9a","ssdeep":"384:ssC0Sr29xJW1a9oE9F7wZ5ho9oOA75SQn7HnPHlSQZrXOOJiu2mycbWGtuhJ3AqM:sQP9gTo9oOAFScHvMmrXs75cyGtGqqM","tlshash":"30d2d07487e739cab3f7f24567ca562c29289759d602aa002d9a55cfcfe7d804b03983","first_seen":"2025-08-29T17:54:10.484574Z","last_seen":"2025-08-29T17:54:10.484574Z","times_seen":1,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=976de8243e3ab51d\u0026lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:15.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=976de8243e3ab51d\u0026lang=auto HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:15 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncontent-encoding: br\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 976de824df04b51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":143618,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"6ab21c5b875a5f8e001337aa2b7c0267","sha1":"9c0997b44a9451beb530fbdadcd3c15b425b383e","sha256":"9da9c8b11bdfeacc72d992ffdb4655ab573260f650411417ad21cad760334318","sha512":"16b875e5b2facaa629b3707d43dfcfaf83a5aecec4195429dde13d522cddd182b431658caef9e7fcb739f2ec6963417ac80725aa5b990cfe4a88c4acb5330cdd","ssdeep":"3072:kow+1VjA+GPk18Yx5z2Lrm5A62R6zRqGJr3CsuNoEKGfRbJ:Y+GIJr9gJ","tlshash":"23e3094d7dc57a8692eb54644027b5eae1af58d83024080dfa42e4e478fc79876e3efc","first_seen":"2025-08-29T17:54:10.488696Z","last_seen":"2025-08-29T17:54:10.488696Z","times_seen":1,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-29T17:53:14.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=UTF-8\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"976de8206efc56bb\"\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OUGm3iO9CR%2B3e34P3JkK2VEqQ90WiA00BIiR%2B%2B8w7WK9KCz3ydNBigf2pSiUtORmVePRNuW1gIGOWEjkh%2B8bqN8cQFArnXtbuQXfWDcV%2BwBm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 976de8206efc56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4700,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (4700), with no line terminators","md5":"224a29acbe0a94542442d73cc563e47c","sha1":"3ebe01ffdeb8fdee175c85e44fb972fad75e1d3b","sha256":"42e867e5f70109adaba4040517362304d1e89d9a45fdec4324f8148c009fac60","sha512":"2d94a1f92936b032d7cbb2f36fcb07636d6578aa4320a9d557fec893f72d903b100d04f808c200479e7861f17e220e435f1244a144b16eee3e46fbec074d0b83","ssdeep":"96:PNybXZtIEb0EFW87IZeFZNB5vyr1N48vTuYwXFoc+P4/AYzueh8Eq9mw:PNadBJZErFuVoV4/hyjgw","tlshash":"5ea129fb9943102b93bb5af784b7b31c6121e219660451adfee1e90c82dcf038a19394","first_seen":"2025-08-29T17:54:10.491458Z","last_seen":"2025-08-29T17:54:10.491458Z","times_seen":1,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-TGNmGexVPHZqbgmA' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\norigin-agent-cluster: ?1\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nreferrer-policy: same-origin\r\ndocument-policy: js-profiling\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 976de8243e3ab51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26984,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (26984), with no line terminators","md5":"6ecfc14f1a2e9b9c8b72afb0487e4328","sha1":"b570ee60ab02dc3f6199fcec5433897a4f8f6591","sha256":"aef878be9b9edebbeb9da33667b906beb5bb5c8fed2c7a8c74cbb8ab0af7110e","sha512":"6fbce9da50ba703f8542ba6cbaf166e957430335d035063d86bec49993b079896e55ccb421ade42840b69d6c4e1277ffd4a012dba529e71e8d66f3d9f4095f57","ssdeep":"384:YH6U+qdB83E29aJC6tHzSk1b2xdLVSmda3mDI9FBzx/vyLdbCB8:EdGrkHzlJUdLV9da3m88LdbCO","tlshash":"eac2c9038a501b7e7463872da3d1b5c9a3387a025f5ab1b7f25013a48f4d2af3b5370a","first_seen":"2025-08-29T17:54:10.494477Z","last_seen":"2025-08-29T17:54:10.494477Z","times_seen":1,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-29T17:53:14.287Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Fri, 29 Aug 2025 17:53:14 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLocation: https://www12.playdede.link/\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BwB1DUsclgE6mWfDIF6FwngU2BHFQ0UUlQAzOi4VAaSwjLsZyMiusSoGUpD1KFCXjP2Ga66LiSWV9i5OOJ2bXvxS5LRcbZ%2BXbTDeeI1F2Fhs\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 976de8204e88b4f4-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4700,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T18:47:00.89111Z","times_seen":13342615,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=976de8206efc56bb","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=976de8206efc56bb HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www12.playdede.link/?__cf_chl_rt_tk=l2.JhU6AcfsOpcfFYqnTlObyNMNmGq4jUhcih1lofpE-1756489994-1.0.1.1-91sDM97DK6xc9j4SU.g9hIN8g.5WWmX.mwOpraaadds\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: br\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\nserver: cloudflare\r\ncf-ray: 976de8213f0556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":118039,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d13bc8ff0eb70cbdbc46b650d36a3504","sha1":"af1bce1c509cd4e81832f526c7e05a64ed072ed0","sha256":"4bab0bdc5b755a4d9808225b907233203da87bda0ab887c91f89f49664923122","sha512":"11fef0b00a5223ece6dde031e008a4953e2a68b539f8d677691ffc78a872666cee08b1f398294ae01e180fa74334117702b32f3ada035ed9bc26ca5311277992","ssdeep":"1536:ubyKlZywjnuav9Py50EdHh9e5SHJkuk4UYksIWKdoaSWIhImzo8BEqOyAv6IIigl:uGmAwjua1650S9VLvksUoZ3/hvIv/+8K","tlshash":"adb3fa8c38dab69443376074606736faa1bbac9031180c0fe905e5e479f178576a7efd","first_seen":"2025-08-29T17:54:10.498241Z","last_seen":"2025-08-29T17:54:10.498241Z","times_seen":1,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/4710d66e8fda/api.js?onload=XaVFY8\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www12.playdede.link/","date":"2025-08-29T17:53:14.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /turnstile/v0/b/4710d66e8fda/api.js?onload=XaVFY8\u0026render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www12.playdede.link\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncontent-encoding: br\r\nlast-modified: Thu, 14 Aug 2025 15:17:42 GMT\r\ncache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 976de821fb58569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48995,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (48994)","md5":"49d515b98ccae9634aff66a4ca77af98","sha1":"bfa5462a4f47c2350dcd0b3000e9cb54bec63c21","sha256":"4ca696d2fb66b44648a8fd55bc9eeaa6958dd9e523c4a740365823c30d4fc087","sha512":"856b855e0662da94dc3d314080976df11b5cb203d5ac498bacd9d201013e82258ee66ba1c3bb948e0ea71dd319345d9988be765daa3a276f8571e1787a38cc39","ssdeep":"768:XC6BRV2fM4lLa+rnhPLy6PuR8u5jUjRFPlBMqfspV6q11AY13kep+ORWqxIrm3LW:J2E4lLa+rnhT/oj2P6V6GNI","tlshash":"8f231b583256793227e980e1617ba74373257939e94ccc50d423c86536bcecad233fba","first_seen":"2025-08-15T11:12:03.097811Z","last_seen":"2025-09-08T12:15:40.897517Z","times_seen":20901,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":13,"dns":5,"connect":1,"send":0,"wait":25,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/287020017:1756489040:LWA2hKi20oM2aBD6f3m5DrT_tJ1YzW6wxGbBJUdT7sA/976de8243e3ab51d/Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:15.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/287020017:1756489040:LWA2hKi20oM2aBD6f3m5DrT_tJ1YzW6wxGbBJUdT7sA/976de8243e3ab51d/Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\ncf-chl: Fj5gwu2wTeSUAxdl_CCFqIMcMWv4WBktz6nCG_qsFSc-1756489994-1.2.1.1-gkaa.wXQZ.GShFu3MOIO5ZxqVsVFVwjdTVNDPjEagDkV87nQef2zVEAlPdCHNhZw\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 4183\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:15 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: br\r\ncf-chl-gen: WjguULzh5tvcIt+phMbpLbm4gtWXa+i8eEvXHs62k0IMciGWuPdArS6CzEfsdf5y98NMD6uhoZkNINLNXPw2D+kqOlxLWxuDVxW9k+Fc5VvGxwWZhy8fi9lFgd1nQ4d1+QcZVR5OV7orY/XBmkTNzhnKlecAmuUvtrSHfAHxVaDvHFFP5NXif6PVGitNO4fUk70I2JGjcwfKJNfrgv3sFJPj9yIHCUe2uqsBrZHE8h5Hfjt/GEnVkJoZd4+uBkI724oHl6i1RHe320uAxVpqS7F+gx4nR2wziXXEhq9Zq5n5UvMx7WXWugKZrSitD5GGWfasE6JTQvfsGp4PT6UR9uSiAP0YNT/BJqWSFnqRCLefjRtwwH5DeRwd5/vuTsczQpNkPrRfUN/KR+qrkWplbxvBvGsl2THlcDrQPWfBJiclmbM62y145PXNbQO+l6mcW1ylhgwZB41QGt/tmEB2HgfybmAqIb1ijoKLFKC6gepzc3o05EFfRPC5OUW8XlfT0aci1pnQOwWCpF73qf7QY+UNOjeCFSI4Ywflj/WpBrI1dt0eCfWl1ZPNh53NaIUzyHVLLac5ZyVB68bmVPaP19keRS1I2RiZMMasQcrun5J4UgLnzpgX9YVzIuQ5q9RjpQndcy5Lm0Q+lnF+2SP3oYYxeDpsLH7j1wo+mf0FFMt+loDPm2gWi08jeqiwOmBL7jJe3Db+FHnumPe4FpjU7ogBDzs4vNf543siU04y7nqO4uZjDa8AVT07A+wuv4WEOdkT4VI0aYWDx2+bBSGU0JqhRkjyOG5tgpxaPk5+k38=$/utnGqGmTMC4PmCdxar0bg==\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 976de8273a8db51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":296444,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ac9d4b5bb02b426e935c269e108053b6","sha1":"91f7b9b184b1d04f988c5ea3ee466cd06310ebed","sha256":"068c0e22da1aab5212190e6cf69ac5898dd50d94edba96ac985c9a7aa57257bd","sha512":"28e47b1fb162f56b5af6b3399d7bffb04a5546867d317327680fcab0dabd73fe056c90205da4c333263710570867fab112ff2ebeebf0567fafaaf32c9dfc14df","ssdeep":"6144:90fk6Gz682BgTIDVd3USLXNk53pSEKm2e6H8gTJNofOLAI6Y:90fx8IXxDqNpS/m2Mgm2LAO","tlshash":"8854232f8fd197ae4d150a37c5d55910ae8eac8f4090d964eef01bc9e53bd068d7c83a","first_seen":"2025-08-29T17:54:10.502007Z","last_seen":"2025-08-29T17:54:10.502007Z","times_seen":1,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":186,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/976de8243e3ab51d/1756489995416/8Vuz9nCH6_r-Rxb","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/","date":"2025-08-29T17:53:16.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 18:43:17 GMT","end":"Sun, 23 Nov 2025 19:43:11 GMT"},"fingerprint":{"sha1":"E6:D7:22:96:F5:75:38:F4:31:98:86:D2:9F:14:0C:18:3E:EA:F1:7A","sha256":"8C:19:99:03:18:5F:A0:C5:46:F9:CE:6C:A5:40:91:3A:C6:83:68:6F:EE:9B:6D:71:DF:32:C6:91:6D:55:64:6C"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/d/976de8243e3ab51d/1756489995416/8Vuz9nCH6_r-Rxb HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cycct/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 29 Aug 2025 17:53:16 GMT\r\ncontent-type: image/png\r\ncontent-length: 409\r\ncf-ray: 976de82ddc79b51d-OSL\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":409,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 82 x 65, 8-bit/color RGBA, non-interlaced","md5":"0569576179b5e7d03054cd8b6c61aabe","sha1":"9ab9e88ff397d455504a183610e9bbdee085009e","sha256":"9b47c2a5ed05d9846aa74a0e159745fe0dbd4d15f1f47d446b3fb4cf41029a4b","sha512":"318d7e4c32a4ff4b97774980ba6a3598fbac3644056aee639f3d442905bfdaf6b5e18617be21520425a4643d797870b20cb483c235741bc7f20928103b91bb19","ssdeep":"","tlshash":"21e08ce1735ca424cb081c6d3ed18ee5c42dc26004d0486847fd5d22233ed80d043ee1","first_seen":"2025-05-16T20:40:32.233671Z","last_seen":"2026-04-01T21:54:42.325968Z","times_seen":94,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":72,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www12.playdede.link/","fqdn":"www12.playdede.link","domain":"playdede.link","tld":"link"},"ip":{"addr":"104.21.65.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-29T17:53:14.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"playdede.link","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 05 Aug 2025 23:04:18 GMT","end":"Tue, 04 Nov 2025 00:01:36 GMT"},"fingerprint":{"sha1":"0F:DF:CD:4D:1F:F6:6E:BE:81:EA:F5:05:B2:3E:CA:51:A2:06:52:29","sha256":"B6:DC:11:BE:90:9A:10:29:55:02:55:CD:86:28:90:F2:AF:94:F4:67:42:EF:54:49:E8:64:7C:CE:16:B3:38:7B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www12.playdede.link\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 29 Aug 2025 17:53:14 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"976de81f4c7056be\"\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=brz1qcfGvktwbzoT8bT5bq4WUPkLgMlXg5Z%2Fu6P67pU75Q2isxnLfvopJVHxV1zWnMij77LcV4%2BhIA6PDIfExhJD96Zvu4A7X32zO4PvQe%2FT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 976de81f4c7056be-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4700,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (4700), with no line terminators","md5":"708b58de202d134afea5974e1062e97c","sha1":"d8aff22448dbebedad4cdf8c28397f73212320d7","sha256":"52e6d1b4fffb39fd4adfe1341161b8c3a64555f4a4cfd874ef19cd09f054f591","sha512":"28aae119fe58f30f1c451284d06f9d087f0489226ce19a8249cd61579bb894f08d7ecf5fc3afd388d887ecc447fa1c14f5528fa69c482d492127775db2edfa73","ssdeep":"96:PNybXZtIEb0EFW87I5W9xSaCHkbwQEGkOPEYzueh8wmw:PNadB17NkqNyRw","tlshash":"26a11be7da051037e3b71fdb48b7b3406221b9589704d5a9fae0e99cc3cef0b4929585","first_seen":"2025-08-29T17:54:10.505203Z","last_seen":"2025-08-29T17:54:10.505203Z","times_seen":1,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":38,"dns":14,"connect":1,"send":0,"wait":8,"receive":0,"ssl":21},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-29T17:53:14Z","timestamp":1756489994,"ip_dst":{"addr":"104.21.65.30","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.16","port":54714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.link domain","source":"{\"timestamp\":\"2025-08-29T17:53:14.301777+0000\",\"flow_id\":1060697623124727,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":54714,\"dest_ip\":\"104.21.65.30\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858678,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.link domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"www12.playdede.link\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www12.playdede.link/\",\"length\":3},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":676,\"bytes_toclient\":767,\"start\":\"2025-08-29T17:53:14.285431+0000\"}}"}],"analyzer":null,"urlquery":null}}]}