{"report_id":"a7e7f818-69e3-4837-b32d-d93316e2a667","version":6,"status":"done","tags":[],"date":"2025-11-09T22:00:12Z","url":{"schema":"http","addr":"webgirl.vc","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":0,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"final":{"url":{"schema":"https","addr":"webgirl.vc/","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"title":"WebGirls - Teen WebCam \u0026 Stickam Forum","dom":{"size":23029,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2210)","md5":"566c63efc61c8ee4ca0c3e0c2126d20c","sha1":"6bb13161900a1005dc53023e34945e235b7fc01e","sha256":"aaf4789e1310c1e5fc69c886a2d8d637bc949b8919546b831fb0cfb45efda3fd","sha512":"35dbc28350b4610b713f9b13cbf82c43503bdf7e7020b4fce850e7662226dc8ea437b19f742eea8b3d9db747b361e6654fd44b22dfca9386fe6e7f26cee7f602","ssdeep":"192:29ySrfjjx4YMm5K5Eo/5KoI7yWwqnRulBBd20ca1ZZqUofNaXYP+h:hSrflMmkxKoI7yGS/caCfNaX6+h","tlshash":"74a2d763649c2d3f068256c274542b9de3f7c43de2d80827b6e2483e27c5ec9b0a719d","dom_hash":"domhasha8ea1ad9f732aa3d7c5e3f34eb081059","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"webgirl.vc","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":0,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98","country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-14T22:00:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"i.imgur.com","ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2009-01-09","domain_rank":3309,"first_seen":"2012-05-21T08:09:36Z","last_seen":"2025-11-03T03:22:27.303829Z","alert_count":0,"request_count":2,"received_data":45541,"sent_data":855,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"images4.imagebam.com","ip":{"addr":"212.63.223.225","port":443,"asn":50827,"as":"SpaceDump IT AB","country":"Sweden","country_code":"SE"},"domain_registered":"2006-09-22","domain_rank":1585641,"first_seen":"2021-05-23T15:28:58Z","last_seen":"2025-11-05T21:55:02.622345Z","alert_count":0,"request_count":2,"received_data":57218,"sent_data":894,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"s8d7.turboimg.net","ip":{"addr":"172.67.72.150","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-10-16","domain_rank":4519738,"first_seen":"2021-01-07T23:25:52Z","last_seen":"2025-10-31T03:53:25.054084Z","alert_count":0,"request_count":1,"received_data":11129,"sent_data":446,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"img94.pixhost.to","ip":{"addr":"94.229.45.2","port":443,"asn":48326,"as":"DataNetworks s.r.o.","country":"Slovakia","country_code":"SK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2024-03-03T12:00:04Z","last_seen":"2025-11-03T15:42:04.90137Z","alert_count":0,"request_count":1,"received_data":23761,"sent_data":450,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"webgirl.vc","ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-10-31T03:53:24.642983Z","last_seen":"2025-10-31T03:53:24.642983Z","alert_count":26,"request_count":13,"received_data":206308,"sent_data":7129,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"MyBB","description":"MyBB is a free and open-source forum software written in PHP.","website":"https://mybb.com","common_platform_enumeration":"cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*","icon":"MyBB.png","categories":["Message boards"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"webgirl.vc/jscripts/general.js?ver=1827","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":false,"md5":"373ad0e5af45e8cd17b064aaa7c2d465","sha1":"9e83f3daac4c6387937fa2a3e98dbe9cc1c9169e","sha256":"491afa838f1b1eef0454c529c8f6fcdcec59ea31110dda7430f85cc53fb82898","sha512":"0014001020da5ef12874c5727ce95d1163834414dbe201ea72f60423bde91e8e7d2d671fa18ec190d0573e3b76093a496f7662d5b81e0f804d42834dddffd98a","ssdeep":"384:7HrwCLFwqbPl88aLqh8cOrT6CIJ6X5jO1/zD:oqbPltaLqUXCJ0jOx","tlshash":"bb6262c8ff2c152b81be3069949f58c96c3c803188945cf7bc6855d4bae8a1e536fe78","size":15709,"data":"","first_seen":"2023-03-07T01:02:26Z","last_seen":"2026-04-30T16:51:51.206795Z","times_seen":1209,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":true,"md5":"fbbfc0184610d3fefee876f72b934382","sha1":"22c5d62cb22cc11c2ea5e84c7397f16e6732b7c2","sha256":"76a119ff93fd0ddcee7872a4921a69df7d97a74153ce2a6d5f818581c70f618e","sha512":"9dcb8667242e5c82c0b4c573755e8d53c76a241f0b7dcea4cea43e7cae7ace045a18cf7bbbf7d2075c33e479a011796b08e080d1ff6ccd7d72645b2b64ed43ce","ssdeep":"","tlshash":"404151c3648d1c35004d30a36cbd68c19e0bd089ab0cac2a9b29b47d63808dd86b61ba","size":2288,"data":"","first_seen":"2025-11-09T22:00:14.562994Z","last_seen":"2025-11-09T22:00:14.562994Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":true,"md5":"3e778a0599600893f6740e061f0db321","sha1":"a9f01d1beac63e231a419894462ddf00adcd86ae","sha256":"391dc11066c3b8e2f89bfe77f24d5ccb9f39c5ab3a499559caa7a4d5a8b175c6","sha512":"60da55c43f8b588bfa9c280f855c11935b06942db1ea1dace8e65dfb315d22cde302286d00ab6e5c4db011f0f37faead51987ed5b9a1fef5123fda6fafad5cc6","ssdeep":"","tlshash":"5ab0929862985b5a02f311986a9814a616708abe816c695b2a05b914a20d84462cae43","size":125,"data":"","first_seen":"2023-03-07T14:37:29Z","last_seen":"2026-04-28T07:38:14.634211Z","times_seen":414,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":true,"md5":"e0e774c6eac4073121eb55b9e21d3511","sha1":"5156ea2435d223d0519ddce05085a2510c7b1807","sha256":"45a342390daafbd778ec29ac08c0cd3273410c225c6c1101306700c811b530b5","sha512":"2fd9fdf983e2f651be2955965a0be96ad581a2544bfd5718d3959966bf6d6ed8a39bce6a3d076b735638bb24d1cfc5646f72ac151c295478abe2361e5298f4d9","ssdeep":"","tlshash":"45a012a1c08c0407823411120c002025202fc4780052de496cb159a050c4706036040a","size":77,"data":"","first_seen":"2023-03-07T01:02:26Z","last_seen":"2026-04-30T16:51:51.220822Z","times_seen":1080,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/jscripts/jquery.js?ver=1823","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":false,"md5":"12b69d0ae6c6f0c42942ae6da2896e84","sha1":"d2cc8d43ce1c854b1172e42b1209502ad563db83","sha256":"6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f","sha512":"a55f55d56899ab440ef0cae17b28d5cc8f5b9766d1e9bc1a8ac6b89376924b476c1ab0c325497eb5d44af41f4ebf8eea236d87a36902244b8a3eca54994b8711","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakV:AYh8eip3huuf6IidlrvakdtQ47GKl","tlshash":"e893f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89475,"data":"","first_seen":"2023-03-07T01:02:27Z","last_seen":"2026-04-30T16:51:51.206014Z","times_seen":15385,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/jscripts/jquery.plugins.min.js?ver=1821","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf1f71e20e14765d6d5ea640aa4f7fc7","sha1":"d1f3a0e46dd50d3a4d1839cb821ad42802619def","sha256":"a3f1ec1a12c5ba59cf41f98406b4a296f7a54b8c4904de9a6f1fc2e4db19b149","sha512":"db3f8dba9327793a4d00b0e1266ef60d6f2424ab1235d673def9ee026be896aa10cb02e0b95f8b82bdf76ac49720662c84fa2b419026178c905c5a9c2f1bff0a","ssdeep":"384:HWwrEXSUb3GjSPqGorxn+viQRvuB6haZ7braU:HWmE/3G2hcraU","tlshash":"f662924fba7523a48aff2177a01f196521339db508c24858f1bd87d95d78c0492afb3e","size":14799,"data":"","first_seen":"2023-03-07T01:02:26Z","last_seen":"2026-04-30T16:51:51.197632Z","times_seen":1315,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"img94.pixhost.to/images/660/456277460_logi.jpg","fqdn":"img94.pixhost.to","domain":"pixhost.to","tld":"to"},"ip":{"addr":"94.229.45.2","port":443,"asn":48326,"as":"DataNetworks s.r.o.","country":"Slovakia","country_code":"SK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pixhost.to","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Sep 2025 21:41:13 GMT","end":"Mon, 08 Dec 2025 21:41:12 GMT"},"fingerprint":{"sha1":"7B:CD:6B:D4:64:A7:5D:18:10:B8:EA:49:CC:F3:BE:40:ED:5D:90:87","sha256":"45:26:9C:68:8D:62:59:F3:9B:CF:44:5C:39:C4:66:DA:30:DD:E2:99:03:96:D9:BF:F4:89:EC:59:68:F4:04:E0"}}},"request":{"raw":"GET /images/660/456277460_logi.jpg HTTP/1.1\r\nHost: img94.pixhost.to\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sun, 09 Nov 2025 21:59:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 23471\r\nLast-Modified: Mon, 25 Mar 2024 10:25:12 GMT\r\nConnection: keep-alive\r\nETag: \"66015108-5baf\"\r\nCache-Control: max-age=604800, public\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23471,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 473x101, components 3","md5":"45e1622ff7510b1f1e166a04df8877c6","sha1":"f89e2e8c4f55a501b269c4662d9b62341d313a1f","sha256":"e604f0c8ce13c7d4327b906b8db28f03532268f1d813132833ff09e0bf0bf289","sha512":"c569f62988e3ce96cf1e79725e48942edec12b4eb00904e0c8198e12ce3a8cd9ee10324d17319479c8726c22d2212e5a1aee0be1f70b70cbcbd03e6bb374d682","ssdeep":"384:oc7UEfKB8bKtIcqL22Qey6rU/yIqPZK/Pw8XiGvFEvduVa5V7et5be0:owrS6Oicqq2Qey6g/1qBWBXnuv3nyn","tlshash":"c2b2f24ec9309fb72eeab432e5c5feb50b5b04395053c50734be93b939452642dc1b29","first_seen":"2024-08-19T15:22:14.663515Z","last_seen":"2026-03-03T09:49:22.790326Z","times_seen":21,"resource_available":false,"data":null}},"time_used":2121,"timings":{"blocked":1982,"dns":0,"connect":32,"send":0,"wait":65,"receive":1,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/headerlinks_sprite.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:54.739Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/headerlinks_sprite.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/cache/themes/theme1/global.css?t=1663152268\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 2342\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:38 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2342,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 196, 8-bit colormap, non-interlaced","md5":"e38f7f29cf3f740d7dc3651cb82098ec","sha1":"65787e91831d3707a9ec747ab272c1fb5d52b2d8","sha256":"bc8ea31d4d1a30effac6bed60a41d1ec64a7cd42a711c694a103e42da7aa4c0a","sha512":"160481f72d35abdbc7114bb1164915891335978ad8f60529af7e03082cbd29b833e761f97422838e05161ccbffc8b9760573ae27a3f35f367342f98b1abceacb","ssdeep":"","tlshash":"cb414bbb7671dd3c78f04437a0e7f598ee505e2c59948d762898b1909d3008294b1c88","first_seen":"2023-05-10T14:20:13Z","last_seen":"2026-04-30T16:51:51.20012Z","times_seen":575,"resource_available":false,"data":null}},"time_used":830,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":830,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/favicon.ico","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:55.698Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:56 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 3466\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:43:06 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3466,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"a897fe69eafdd574bda12a23a4920bf0","sha1":"d27ed9fe8fa5b14950cfc5fb0a2963518d3767bf","sha256":"93fd435b9c34166a9a3a52fc82befdc4102d7e3698f5b3bd1b69edc0858f245c","sha512":"9e7189620b8319d38b8eaaff4eb26f7977f420e22d58548fb98c8e05204365f076219d9714856974439028ee8159473939be2833657f08cc5e5d2b073b2c96f9","ssdeep":"","tlshash":"36616badea70955f789e39610ecd0701a3ae372c96833278d0c17bdf0091e0bab19475","first_seen":"2023-11-06T23:52:08Z","last_seen":"2025-11-21T07:14:45.049571Z","times_seen":16,"resource_available":false,"data":null}},"time_used":1011,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1011,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-09T21:59:50.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:52 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nSet-Cookie: mybb[lastvisit]=1762725591; expires=Mon, 09-Nov-2026 21:59:51 GMT; path=/; domain=.webgirl.vc\nmybb[lastactive]=1762725591; expires=Mon, 09-Nov-2026 21:59:51 GMT; path=/; domain=.webgirl.vc\nsid=b79cabc3d18f176223c74c0da653c013; path=/; domain=.webgirl.vc; HttpOnly\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"MyBB","description":"MyBB is a free and open-source forum software written in PHP.","website":"https://mybb.com","common_platform_enumeration":"cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*","icon":"MyBB.png","categories":["Message boards"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23027,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2212), with CRLF, LF line terminators","md5":"ded75bf841eff34e23a9075a4976beb5","sha1":"09769d78da0a0e74018e7589335243a76761d5f7","sha256":"1c71d1c7a8f3e751bad1c2e009aeb39aa46b732dd2c03e1bc97c51c7ba75142f","sha512":"91d7e2859608238989d06ad4536a1d1a304df12c4422cce969257025791da41fd4d7dd986931a4367ef2da558236db7db75a0ede97d5612b295892d4701e24a4","ssdeep":"192:2sqy9If/jx4kBim5K5EoqdT5ZVI7yJk94wqdPTAFB1R9rdh0Fa+lomPqIyTPRfl:2e9IfnBimkqrZVI7ykq70pEFa+yTJfl","tlshash":"11a2b763649c2d3b078296d374652a9dd3f7c43de2a90827b6e2483f27c5ec9b09319d","first_seen":"2025-11-09T22:00:14.540572Z","last_seen":"2025-11-09T22:00:14.540572Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2712,"timings":{"blocked":794,"dns":33,"connect":322,"send":0,"wait":1124,"receive":0,"ssl":433},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/jscripts/general.js?ver=1827","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /jscripts/general.js?ver=1827 HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:53 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:46:11 GMT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15709,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (322)","md5":"373ad0e5af45e8cd17b064aaa7c2d465","sha1":"9e83f3daac4c6387937fa2a3e98dbe9cc1c9169e","sha256":"491afa838f1b1eef0454c529c8f6fcdcec59ea31110dda7430f85cc53fb82898","sha512":"0014001020da5ef12874c5727ce95d1163834414dbe201ea72f60423bde91e8e7d2d671fa18ec190d0573e3b76093a496f7662d5b81e0f804d42834dddffd98a","ssdeep":"384:7HrwCLFwqbPl88aLqh8cOrT6CIJ6X5jO1/zD:oqbPltaLqUXCJ0jOx","tlshash":"bb6262c8ff2c152b81be3069949f58c96c3c803188945cf7bc6855d4bae8a1e536fe78","first_seen":"2023-03-07T01:02:26Z","last_seen":"2026-04-30T16:51:51.206795Z","times_seen":1209,"resource_available":true,"data":null}},"time_used":2038,"timings":{"blocked":499,"dns":1,"connect":240,"send":0,"wait":1032,"receive":0,"ssl":263},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/logo_wg_blue_370x100.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/logo_wg_blue_370x100.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 18188\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:39 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18188,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 370 x 100, 8-bit/color RGBA, non-interlaced","md5":"5edcce6435b4f03eb379dfc99db2ce39","sha1":"8d51946b5849704676379ab5f1e916770a984cb9","sha256":"fa43e867be6f55ab8ca334bc812de4a7c39c281265e29144e5635b1aa65b3e6d","sha512":"f0498787b14ab70eca9dd6f6b7df683fd0491b1231a624339552127328ec8d5a98ec92b774cae00a4c187d6f92f8a4cb74cae56321b832555dd012fd4160a5a2","ssdeep":"384:AJXE05HnZOEWOBc1K58Z0A+ZcOyi8ugCJIL:835HnZOEWPB+A2hmCeL","tlshash":"a782d0cdf58c74d2195f3801802d06c4a1a498df9b8b6a14f5caa6fe0895fe73a024ab","first_seen":"2023-11-06T23:52:08Z","last_seen":"2025-11-21T07:14:45.041937Z","times_seen":16,"resource_available":false,"data":null}},"time_used":3153,"timings":{"blocked":1988,"dns":0,"connect":0,"send":0,"wait":1164,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/SSaV5XL.jpeg","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /SSaV5XL.jpeg HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 01 Mar 2024 09:17:28 GMT\r\netag: \"ac5e0ea5afe9b03c41a39256936e0ebd\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: 7y5DmH5CX8qd4GlbXKIlIvfexQ_FLmc0JTOJteg63xstglplSdjTIQ==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\ndate: Sun, 09 Nov 2025 21:59:52 GMT\r\nage: 2789189\r\nx-served-by: cache-iad-kiad7000082-IAD, cache-hel1410032-HEL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 37001, 58\r\nx-timer: S1762725593.791022,VS0,VE0\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 9319\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9319,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 472x68, components 3","md5":"ac5e0ea5afe9b03c41a39256936e0ebd","sha1":"e401f6162453bcb561744420ed5e91835f97979e","sha256":"c7fc322a173f9beb1feb3957e07ee2bbfada340850a91d91896d2f47176ae894","sha512":"8313408c5c29a672b7394071ef83ba50e6ba0f12463e0eb18405a9fc7179f1c9af15b442718b4fd3eef0eec01f8afd0c08efe75fc85998aac717b19f1b72b6cd","ssdeep":"192:hNSB6YAHOjJMEB5u/F2jYRywPUZj88spk5a8oPVBc:2sqT8LcwPF8spIaHPXc","tlshash":"4b129d8fa47fbea39f9bc49a430b09691e25f9c4f628b33e5261142411bdc738d64b54","first_seen":"2024-07-29T14:39:01Z","last_seen":"2026-03-03T09:49:22.794629Z","times_seen":25,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":105,"dns":0,"connect":0,"send":0,"wait":38,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images4.imagebam.com/0b/91/b7/MEPGKWU_o.png","fqdn":"images4.imagebam.com","domain":"imagebam.com","tld":"com"},"ip":{"addr":"212.63.223.225","port":443,"asn":50827,"as":"SpaceDump IT AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.imagebam.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Thu, 03 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"44:54:E8:10:23:71:91:D2:C6:56:EB:9E:84:9B:C5:7C:D9:F4:1D:D5","sha256":"EC:44:EC:3A:D8:9F:93:67:8B:1C:12:24:90:18:30:92:79:14:4D:82:5C:17:2B:ED:0C:F9:B6:03:84:2F:4C:1A"}}},"request":{"raw":"GET /0b/91/b7/MEPGKWU_o.png HTTP/1.1\r\nHost: images4.imagebam.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Sun, 09 Nov 2025 21:59:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 44731\r\nvary: x-s-token\r\nlast-modified: Fri, 13 Oct 2023 10:07:48 GMT\r\netag: \"aebb-607963a7d7522\"\r\nX-Cache: HIT\r\nX-Whom: srv1535\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44731,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 472 x 68, 8-bit/color RGBA, non-interlaced","md5":"5dc04640a2447d0b093e4cba51cec2f4","sha1":"0ca53866e4ed6e5a98a40a6c6c90fdc4dd40417f","sha256":"c4120403408d7087e1c2a34f1794a920c98233e878b3df4b5d9e877ed260ea79","sha512":"3b36933b9129ea29078fa9e301e6c98a1fae985652532a0eb2de84910d79d0507e145cf49d44201dce12766dbe30f8bbe575f3ce794c479bc424cccd0dd70c39","ssdeep":"768:LqDB7xVx9UbrnnZkUah3ZNx/uuF01ma0cHmvbw9yu5GGUaMcMHhjrE6Lknz:eDxxtaKUa5Z3/uuyYa0cHmNu5GGUjH5c","tlshash":"a11302acc00f5db5dc4781ff92328579bdd39d9ab452296a46ac34d232188edbd72330","first_seen":"2023-10-18T22:39:19Z","last_seen":"2026-04-12T19:10:50.475175Z","times_seen":45,"resource_available":false,"data":null}},"time_used":2121,"timings":{"blocked":1985,"dns":0,"connect":25,"send":0,"wait":50,"receive":29,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s8d7.turboimg.net/t1/102833007_05gf472.jpg","fqdn":"s8d7.turboimg.net","domain":"turboimg.net","tld":"net"},"ip":{"addr":"172.67.72.150","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"turboimg.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 07 Nov 2025 00:43:01 GMT","end":"Thu, 05 Feb 2026 01:42:53 GMT"},"fingerprint":{"sha1":"92:37:45:49:E1:09:E4:3F:62:0F:9F:2D:5C:89:00:04:3E:69:5B:75","sha256":"A7:35:E9:9A:F1:60:97:28:83:1D:34:4F:8F:9B:E2:BA:9F:F0:9A:11:12:8B:99:3D:54:C4:8C:14:E9:EB:B1:D1"}}},"request":{"raw":"GET /t1/102833007_05gf472.jpg HTTP/1.1\r\nHost: s8d7.turboimg.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 09 Nov 2025 21:59:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 10325\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nmz%2FqfNjo5QAvHcErEdVISbs3QsrwFO3ZRdCgsNSuJm0oXmxyCeN3voKswt9Yn6k2m%2F7y%2FyNbJj0hku2J3jZ%2B572lQB2Byxgsx01Onet\"}]}\r\ncache-control: public, max-age=315360000, must-revalidate, proxy-revalidate\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=10578\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"66852112-2952\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nlast-modified: Wed, 03 Jul 2024 09:59:46 GMT\r\npragma: public\r\ncf-cache-status: HIT\r\nage: 1454694\r\nvary: accept-encoding\r\ncf-ray: 99c09476bdb38be6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10325,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 472x68, components 3","md5":"f03d23de48c399eca8fa9990cf853d1e","sha1":"9ee8305265031506f7b1ee51feafad4332d260ad","sha256":"ef1c86679db0867b58a208b6aea6e8a7d945c7b824460494317f8f9844cf3bcf","sha512":"77b3d7a399dc9d38776fcca21520b5f7c83ea50508d3f40a35a8d8f6fbf1a7974c61e92a0c4cdd5ca8fcf9e9cbae1439b29f11de91bb3c3f9deff436428ccc7f","ssdeep":"192:wlZFKKodffwbdNDT/+y7aMArsxIqb0qPje4cgD9eS49Yhec2B/U92Q:cMf6DbKsIfCPcgwSsUwQ","tlshash":"5122bee7f29b0d13c6327b73814d1260925328277e96ae0eb85e5198cc7f5d64b08cad","first_seen":"2024-07-29T14:21:23Z","last_seen":"2025-11-21T07:14:45.041379Z","times_seen":34,"resource_available":false,"data":null}},"time_used":2013,"timings":{"blocked":1982,"dns":0,"connect":1,"send":0,"wait":8,"receive":1,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/tcat.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:54.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/tcat.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/cache/themes/theme1/global.css?t=1663152268\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 131\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:41 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":131,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 60, 8-bit/color RGB, non-interlaced","md5":"10b96a318e186e39860a5945a9071b92","sha1":"daa068efc07bb97ff0a2af218aedebbb28c9f1bb","sha256":"91697e7d6cc941b2bff9f05520c0c22b95d460a655e65b480452ce60da209cdf","sha512":"7b1f7e9ee0a9157cf0edebfd597a9f1a7bf42bb1062c63b420a86234799b2db8bc707d4d570d4b5dab3c192347543f35c15767528eb3b390e3b03150e843c33c","ssdeep":"","tlshash":"11c02bf277614836ec150f770fd50124f9b0464072f52620004f80313c71104d4441c2","first_seen":"2023-05-10T14:20:13Z","last_seen":"2026-04-30T16:51:51.204234Z","times_seen":523,"resource_available":false,"data":null}},"time_used":829,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":829,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/thead.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:54.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/thead.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/cache/themes/theme1/global.css?t=1663152268\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 115\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:42 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":115,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 40, 8-bit/color RGB, non-interlaced","md5":"96dfa0b7296d710946b220639f5a9d1c","sha1":"40838eabc4f6384d72ec9adca7a773fc4db21c44","sha256":"d2d9d86e65050d0197318b4478cff3931f3e7a071bdee4f12364c2c47d4d576f","sha512":"7d2df3e6522d5253eabf321574f9b319f2f5504a2fc469d4d4c49c5a8bdb68e13273ce62c88d8926163ac5a754d211d228765be73b8826cd8aef23211e39000c","ssdeep":"","tlshash":"e0b022c2ba02ac28e8e2a23382080302ac30022c0fa022000008c0088ab2388c088383","first_seen":"2023-05-10T14:20:13Z","last_seen":"2026-04-30T16:51:51.209404Z","times_seen":473,"resource_available":false,"data":null}},"time_used":765,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":765,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/jscripts/jquery.plugins.min.js?ver=1821","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /jscripts/jquery.plugins.min.js?ver=1821 HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:53 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:46:13 GMT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14799,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (14798)","md5":"cf1f71e20e14765d6d5ea640aa4f7fc7","sha1":"d1f3a0e46dd50d3a4d1839cb821ad42802619def","sha256":"a3f1ec1a12c5ba59cf41f98406b4a296f7a54b8c4904de9a6f1fc2e4db19b149","sha512":"db3f8dba9327793a4d00b0e1266ef60d6f2424ab1235d673def9ee026be896aa10cb02e0b95f8b82bdf76ac49720662c84fa2b419026178c905c5a9c2f1bff0a","ssdeep":"384:HWwrEXSUb3GjSPqGorxn+viQRvuB6haZ7braU:HWmE/3G2hcraU","tlshash":"f662924fba7523a48aff2177a01f196521339db508c24858f1bd87d95d78c0492afb3e","first_seen":"2023-03-07T01:02:26Z","last_seen":"2026-04-30T16:51:51.197632Z","times_seen":1315,"resource_available":true,"data":null}},"time_used":1167,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1166,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/jscripts/jquery.js?ver=1823","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /jscripts/jquery.js?ver=1823 HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:53 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:46:13 GMT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":89475,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"12b69d0ae6c6f0c42942ae6da2896e84","sha1":"d2cc8d43ce1c854b1172e42b1209502ad563db83","sha256":"6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f","sha512":"a55f55d56899ab440ef0cae17b28d5cc8f5b9766d1e9bc1a8ac6b89376924b476c1ab0c325497eb5d44af41f4ebf8eea236d87a36902244b8a3eca54994b8711","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakV:AYh8eip3huuf6IidlrvakdtQ47GKl","tlshash":"e893f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:27Z","last_seen":"2026-04-30T16:51:51.206014Z","times_seen":15385,"resource_available":true,"data":null}},"time_used":2002,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2001,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/collapse.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/collapse.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 369\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:37 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":369,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"6af553ac5e86504743b02f220405abdd","sha1":"c07e8d586443c0ace4d91eea0d46476845b6baec","sha256":"408e40949e493302b9fd79a82e68c13509ba6370f04be5088ccd7503a4d1f94c","sha512":"ad6b02d1d9bbfd12b1eea6e8e59f5dd29229cefb66f92cef7e6a64f9839fb10273d226b8935bce9d44cabf08ee68c207670917b04322f9d3c8fa11df9ae291f2","ssdeep":"","tlshash":"b2e0f8d6a1522829dc94ae828906d008bb52272802899f4a8a0690a60039fc806b56fa","first_seen":"2023-05-08T13:43:42Z","last_seen":"2026-04-28T07:38:14.617711Z","times_seen":360,"resource_available":false,"data":null}},"time_used":2742,"timings":{"blocked":1987,"dns":0,"connect":0,"send":0,"wait":755,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/KYB7SI6.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /KYB7SI6.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nlast-modified: Fri, 01 Mar 2024 09:18:32 GMT\r\netag: \"6b0d552f8cc22088b762f6350c1d71bb\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: ud9RlX17unjBaKwOdum2ZnCxLnUoyqVmVCdyDzrf3kKZdhIIdpB8Dw==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\ndate: Sun, 09 Nov 2025 21:59:52 GMT\r\nage: 2797805\r\nx-served-by: cache-iad-kiad7000150-IAD, cache-hel1410032-HEL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 6504, 70\r\nx-timer: S1762725593.789999,VS0,VE0\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 34705\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34705,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 472 x 68, 8-bit/color RGB, non-interlaced","md5":"6b0d552f8cc22088b762f6350c1d71bb","sha1":"d8c2b4a8c2edaec452aecb4894efed2a7d5d143f","sha256":"bd5bf61a24a70da89042d3db08e13dbe7bd4eafc9fd3390d7597d970f1a921fd","sha512":"b8a5b043a87219119e861dea947b1ea4803965604d78be8f0cbb8e87a38e42781ddadd883759250596a6aeeb20637c622de56a952b816fae9f619ba8e42c4c52","ssdeep":"768:WG6Nuit8577sj7y1NkytxnCITPa4sywktGk9jG2qrKOhvJJjvkMbPzfC:JTi26E5AIzDsyw2Rj7qrKOhvJhxbP2","tlshash":"9ff2f1142fa18aafe090b743f936cf6404b6f8c5401175baa910447dada0f93fbced94","first_seen":"2024-06-30T01:47:08Z","last_seen":"2026-04-23T17:58:29.894677Z","times_seen":69,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":103,"dns":26,"connect":29,"send":0,"wait":27,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images4.imagebam.com/f0/09/25/MEW1MQY_o.jpg","fqdn":"images4.imagebam.com","domain":"imagebam.com","tld":"com"},"ip":{"addr":"212.63.223.225","port":443,"asn":50827,"as":"SpaceDump IT AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.imagebam.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Thu, 03 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"44:54:E8:10:23:71:91:D2:C6:56:EB:9E:84:9B:C5:7C:D9:F4:1D:D5","sha256":"EC:44:EC:3A:D8:9F:93:67:8B:1C:12:24:90:18:30:92:79:14:4D:82:5C:17:2B:ED:0C:F9:B6:03:84:2F:4C:1A"}}},"request":{"raw":"GET /f0/09/25/MEW1MQY_o.jpg HTTP/1.1\r\nHost: images4.imagebam.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Sun, 09 Nov 2025 21:59:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11946\r\nvary: x-s-token\r\nlast-modified: Fri, 20 Sep 2024 00:57:27 GMT\r\netag: \"2eaa-6228285e483c2\"\r\nX-Cache: HIT\r\nX-Whom: srv1535\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11946,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 472x68, components 3","md5":"7577d743171de29d7d2d0de19e8ec1f5","sha1":"3fc60cf9212a832dcff4fd2b6f01a2ac9e72e589","sha256":"4bf2e0031249f3d37677cfaa9eca897f32b93ac70c62e7a1754f5898f4845af9","sha512":"67972f92e6ff2f11f644f886ed97c0789d0b191c7c2bb62aad5c265d6ce937a67e51d29c74bba0ee1bcaaf6d8573278ebbfb33eaedbf39d3c3f9131d619058af","ssdeep":"192:0mUS79dIdUp+fbW3EbjqInlGoUpKUNVkPtO7yyKcYeqLvcOCqiheZQu4iDSHOC:hZdOUpcy3EbjqInkL7otO7ylxvclPM0","tlshash":"6332c019baba47c8c3671db45a13706ce13d35ecabd05f59c3f1e992b2414c6e83182c","first_seen":"2024-10-04T10:45:17.544086Z","last_seen":"2026-03-28T07:25:35.744155Z","times_seen":34,"resource_available":false,"data":null}},"time_used":4009,"timings":{"blocked":1981,"dns":24,"connect":25,"send":0,"wait":25,"receive":7,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/images/forum_icon_sprite.png","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:54.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /images/forum_icon_sprite.png HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webgirl.vc/cache/themes/theme1/global.css?t=1663152268\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 1130\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:38 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1130,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 30 x 120, 8-bit colormap, non-interlaced","md5":"212f6e3895ee44bf54b31cf39a162611","sha1":"7d1f15044536b4f243495c47b03b2334b5493b4f","sha256":"b95e7d7fb4d9efd1e305194cd5ec83f0b16a02baad62b355c66f1af8688a528b","sha512":"7c968518495f4b58c53f29a58bc0151ce5d37500769a1c7f838c39b56613eae5ba36a4f3f6fbc059fa117578b098411b56837319d772e61af97c76d4de9d55a9","ssdeep":"","tlshash":"f021b97b4b9164208d8c7bfc691374124e7a999d3846757fb1af2630041d5bb5409150","first_seen":"2023-05-08T13:43:42Z","last_seen":"2026-04-28T07:38:14.616417Z","times_seen":324,"resource_available":false,"data":null}},"time_used":858,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":858,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/cache/themes/theme1/global.css?t=1663152268","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /cache/themes/theme1/global.css?t=1663152268 HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:54 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:28 GMT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31277,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"6dca31a92bd774f00e8513b3f141ca51","sha1":"2f8b2c7d691ee232eb76b0c3e7c905419efe896c","sha256":"969bc9ffb0d9ee825abb23a99e1f634f4cffe59df319d1afdcdf61e5733c2623","sha512":"691fc035589397c4e661836d88524ad187a2499bff9d4f4f3bd5a85fafdd74fe697268272206432c35e24cfa6f339a18a5207b208aabacbd2e8a6edefc97cef3","ssdeep":"768:SSlX9UEND0StaM7xZ6h6tLSGOL3bLnSbcAmSna:SSB9UENCMrLSGOHLnSna","tlshash":"c4e2507b35511989720f90eafe15dbd9272f0092be0e1f25b4ad3d7ca3894e01537ea8","first_seen":"2023-04-14T13:41:58Z","last_seen":"2026-04-26T09:57:07.904639Z","times_seen":279,"resource_available":false,"data":null}},"time_used":2219,"timings":{"blocked":507,"dns":1,"connect":245,"send":0,"wait":1192,"receive":1,"ssl":270},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webgirl.vc/cache/themes/theme1/css3.css?t=1663152267","fqdn":"webgirl.vc","domain":"webgirl.vc","tld":"vc"},"ip":{"addr":"171.244.33.80","port":443,"asn":38731,"as":"CHT Compamy Ltd","country":"Vietnam","country_code":"VN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://webgirl.vc/","date":"2025-11-09T21:59:52.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webgirl.vc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Thu, 15 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B5:4F:3C:A7:19:56:7B:C8:7A:43:95:7A:46:FB:24:2D:5C:2B:05:9C","sha256":"B8:B4:18:A9:93:5A:D1:E4:1F:08:44:06:FD:D6:DE:F2:BA:5C:F4:68:9A:47:E4:48:46:F0:D9:C8:D9:22:FC:4D"}}},"request":{"raw":"GET /cache/themes/theme1/css3.css?t=1663152267 HTTP/1.1\r\nHost: webgirl.vc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://webgirl.vc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: mybb[lastvisit]=1762725591; mybb[lastactive]=1762725591; sid=b79cabc3d18f176223c74c0da653c013\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 09 Nov 2025 21:59:54 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 14 Sep 2022 10:44:27 GMT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3114,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"926db993b5ce157d2f8dc0a3ebbb198b","sha1":"7b31fcb7d12af07bb714c01c03e13857a98a2bc3","sha256":"ca63f43eff03f479ba21b135c7164d4ff0eef2d0cf3cea4767c1c52c14833f6e","sha512":"b4123c9f2322e53f026cb79d2a1d6974fe865847e765a4dbb26df9dc00885f2e02ec727132c2e192dd3718adc49dd846a5448a410cdafcf9d90273518e688a04","ssdeep":"","tlshash":"ad5152bf341c06986326e94aba19dee3718f03136576aca5f1d0fc3c1202dbe5e558ad","first_seen":"2023-05-11T01:58:08Z","last_seen":"2026-04-30T16:51:51.200931Z","times_seen":390,"resource_available":false,"data":null}},"time_used":2064,"timings":{"blocked":516,"dns":1,"connect":251,"send":0,"wait":1020,"receive":0,"ssl":274},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-11-09","alert":"Content Category / Application Block","trigger":"webgirl.vc","verdict":"suspicious","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-09","alert":"Sinkholed","trigger":"webgirl.vc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}