{"report_id":"ac42c958-7e8f-430a-b7d4-0813e8ddfe71","version":6,"status":"done","tags":[],"date":"2025-11-16T10:45:50Z","url":{"schema":"http","addr":"alexistogel79win.online/","fqdn":"alexistogel79win.online","domain":"alexistogel79win.online","tld":"online"},"ip":{"addr":"104.21.70.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"alexistogel79win.online/","fqdn":"alexistogel79win.online","domain":"alexistogel79win.online","tld":"online"},"title":"ALEXISTOGEL79 | Link Toto Macau Hari Ini Dengan Kejutan Extra","dom":{"size":101862,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8588)","md5":"3091f46af8345c098cfc67c7abc3c4d2","sha1":"8362f3ed289fe984fbe0c0f02b2333595b41bd3f","sha256":"cf42d166f66da51c648d49cfd19a992d2bd34d65f331913b34529c1cb4c75b2d","sha512":"a2b021ecadfaafe12c67fbcea595cd93a7764b341a1b6ed6da62c9db5b79894da56b7c4cb3fcc63c34867049bb08e9d59ed78ed49b5bf17b12fb5427aeb6d1bd","ssdeep":"1536:gZ5F4g5A4WR2vi7uxQvzghKTvZdl6t6pz/Doag+lf7Bdm2X2e4BlEa4eo7oQUUBN:TvZKE2qcQUUBN","tlshash":"cfa31ae2e9f070b45042c396aba0ad6d7f66c4678b221959f27e4fe88fc3d81d91344d","dom_hash":"domhash3f671062627ab46a40d8499562d418ab","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"alexistogel79win.online/","fqdn":"alexistogel79win.online","domain":"alexistogel79win.online","tld":"online"},"ip":{"addr":"104.21.70.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-21T10:45:50Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"alexistogel79win.online","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.ampproject.org","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":3289,"first_seen":"2015-10-09T04:27:01Z","last_seen":"2025-11-10T01:19:34.556287Z","alert_count":0,"request_count":3,"received_data":309860,"sent_data":1413,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"alexistogel79win.online","ip":{"addr":"172.67.138.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-11","domain_rank":0,"first_seen":"2025-11-16T10:45:51.592286Z","last_seen":"2025-11-16T10:45:51.592286Z","alert_count":2,"request_count":2,"received_data":92902,"sent_data":948,"comment":"","tags":null,"fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"pijatnuru.store","ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"domain_registered":"2025-11-11","domain_rank":0,"first_seen":"2025-11-16T10:45:51.589707Z","last_seen":"2025-11-16T10:45:51.589707Z","alert_count":28,"request_count":28,"received_data":4296618,"sent_data":12920,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8059fb84783c3f43b7b5b66a3883bcb6","sha1":"335cfb79c7c772225bc9a0a0d17d5d435e30a247","sha256":"977e140b62a9228c0815a6ce26e63df7def2817315581cb3e29c52a9d5959754","sha512":"2a0c05b24ac683756cc15e857c5445e62aa1f00134e8fa0f0c966510b1ec778a4570ab2c09dd2791a8a769f36c64a304fc816228fb54367af99657f3c49bb385","ssdeep":"3072:j4UQbNOu6mF8g8aLymSt85Li48lnQYxQEnswf2l3sVsmgQ:j4UQbNOu6mFTLs8f8lnQebsw+l3sVsg","tlshash":"db54839db296b0764793b074803f150aa33ba855240a812cf56de9d67cbcd8ea137f7c","size":284545,"data":"","first_seen":"2025-10-21T18:06:54.94219Z","last_seen":"2026-01-06T14:38:02.926695Z","times_seen":1886,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012510081644000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"36e68547fd31649fcac8856096da5e94","sha1":"cfa28bfde148c37cd6b94329ab7f8c1140625d5c","sha256":"5b870594007123f179856f463a72e0a31eb2e005acbb719cf9d56c242927547e","sha512":"3ce62d0c066399122ce7defb585fc4de3c39a02daba060cc9c03a9326e5ee8ef0f4a8d46f14e5f1f7b319944cee0d1c7c3ef2dcc08091a517f3c10b12bf46486","ssdeep":"96:+KoAosPGpz3pMDc0jxAMhG0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:+Kqswz3pv0jxAyCPX/tqKyWp4M0rDTI","tlshash":"9ef196dc7ac2f83a5757b4b780af414fa23bb94624ad9120d120f4d83cb995ed623e5c","size":7812,"data":"","first_seen":"2025-10-21T18:06:54.954761Z","last_seen":"2026-01-17T06:31:39.884543Z","times_seen":1718,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012510081644000/v0/amp-loader-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a87e2cce7117be00fc8129abfc72b1a1","sha1":"26d9bc2bbbd56217163ec1ccf05a4b4698e5c11a","sha256":"f65efecffe50465d1ffa59d289200cb42ae6115fac8232946635cedf4dd241ef","sha512":"d9232a321d406c6d15a92fcfb3266ab1a049fee6099c19fb010ee7913e2d6c1a65868a2f529ffca06dfb96b312a78429b07c3a5bd56b14f53199ce88af09a458","ssdeep":"192:8fQHMOgzKBbnnRrVGjoPGlxrO2tHxg7HzMb5F4g5A4WR2vN:20g2BbnnHUgTzMb5F4g5A4WR2vN","tlshash":"d042a424a54be2ac530341b484fab94a757ecd4fb8104035f0118ededf99e48bd7ba6e","size":12729,"data":"","first_seen":"2025-10-21T18:07:40.626035Z","last_seen":"2026-01-17T06:31:39.878615Z","times_seen":1395,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/sbo.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/sbo.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:20 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2492\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":2492,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"1eb5fc8a2414d51a0f581e395ef1c3b9","sha1":"abaf9c42c0d9a66237d321a1cb63ffc63881a60c","sha256":"d9355c738b1f0dd9541be0249e15a433b2af6007ba9c779d7a4d65527cb866ca","sha512":"de3e2abc83d33a15186843634a25b8509e817e3c84e37fddd1546676b2345200d63a273fbf1b257178a9ede050d4191c0a3ded83e070176a3eb59c495c20205f","ssdeep":"","tlshash":"5a5138e3eb18d311f222293027c9a4a8cd80c854290f2b87e556c9bc0d18f04e328fc3","first_seen":"2025-11-09T07:22:35.721152Z","last_seen":"2026-03-29T22:55:54.721793Z","times_seen":42,"resource_available":false,"data":null}},"time_used":1579,"timings":{"blocked":691,"dns":70,"connect":159,"send":0,"wait":174,"receive":0,"ssl":477},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/pgsolf.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/pgsolf.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:12 GMT\r\naccept-ranges: bytes\r\ncontent-length: 4021\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":4021,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"603b53c97069a97ab3894f04a3761284","sha1":"7660539b8be95b3f1d331cca7b2f68b8951efe43","sha256":"13593bc0028d6534b866ca46a2d4892b9644f01fe8ddab8581abb4e68b235e56","sha512":"0e1657059f30a6a96e117eb2f1711273fade6a70d081e4cbe4a73d9c2ce2d0fecd437e9cf4900a6a896d95e95b876e1eaca86690324397fd59037daddcef677e","ssdeep":"","tlshash":"0f817f5f97e8d97afa0035017706f0dbe07b778466d54cc01ba0d26539d23d9c514077","first_seen":"2025-08-04T07:43:21.447832Z","last_seen":"2026-03-29T22:55:54.725776Z","times_seen":49,"resource_available":false,"data":null}},"time_used":1160,"timings":{"blocked":684,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Neko_Riches.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Neko_Riches.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:48 GMT\r\naccept-ranges: bytes\r\ncontent-length: 17795\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":17795,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"9ca6e941f69f9e0663be37021aeeb61f","sha1":"587684cfc0e8985ef083c4c71723ade5aa419545","sha256":"583e9ee19f4de73d8a7b280481fdb0949521a10d2012f316fb00b78c83ab04ec","sha512":"244aa46c7e400bbc76d6edb91f86e63233b034f34db709e720d323c1e207f6bb84159bd29dab8451eb3cd743d0b15050aec24266dfeb45797bb5bc2c63c1282a","ssdeep":"384:lUgvx6Gr6WxM7l2+xYQDgS+beG+KP3yuh5WWVHqedXK5:Sg8Gjy7xYQ9iPTkedXK5","tlshash":"b182c17308aabd019ca4c15f3f34c9e23c77874985fa72d2167a7d83931297e7ca8916","first_seen":"2025-11-09T07:22:35.729625Z","last_seen":"2026-03-29T22:55:54.755177Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1801,"timings":{"blocked":678,"dns":0,"connect":0,"send":0,"wait":1112,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Wild_Bandito.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Wild_Bandito.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19636\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":19636,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"911838672d75d53326341e56fb1ad30d","sha1":"14b2a86da3f9b2c518df7a4ca1ebbc5cf2377018","sha256":"1b7f4d32ec53ec79cc1a05b885628ff702c40a1dc88443f74b5da1712f8e2597","sha512":"f34b215bc5c3e540a478164c5adacc5bfaef7502b4ef881d0fbdcf26a7ffd460924d4ead6e1969840336577138652d6d68d509e1b5a5c782f7fe22ef5cb1bfa4","ssdeep":"384:VyeCrHpn+1XmIZN5znTLGt/dqmT4raYSpmG8yNcevGI3LeStN6s:VyeCrHpMXTzXGJdqmSSpmGTNcez6StMs","tlshash":"d392d1358a56fc132833e42b6140cc68d26cebc690e2dd824bf0e992f47c399c2605eb","first_seen":"2025-11-09T07:22:35.728085Z","last_seen":"2026-03-29T22:55:54.732528Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1797,"timings":{"blocked":674,"dns":0,"connect":0,"send":0,"wait":1112,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Mahjong_Ways_Two.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Mahjong_Ways_Two.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:43 GMT\r\naccept-ranges: bytes\r\ncontent-length: 21781\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":21781,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"c90812fc1590eb7d67c3d139d7608cc6","sha1":"1c4e6eaed6904539f8e39ac76f384834c6b87bb2","sha256":"96a5e5a540a4dfbcd282bfbb91f69ddd72f7209719b7c11d0af648a5102d79da","sha512":"8a71d89562a5eb56d106ad79a73974ead8b203dc0eb6005e96c401ee539a087591268d4734c3a8aa8a1875a7da827a610a33b1ec2018b9fc9f463cea6f940d2d","ssdeep":"384:6SIu0KRJZinbbngoH4/on+Nqq3a2Ad4GDEnWEusZfPPN0FuDb:6SPJZsnkonMM4GDTPsdF0FW","tlshash":"9ca2e0fe1fa011e907c0a21e76ebbd110e3311e64bd469c332ca76e93c95b40b582eb1","first_seen":"2024-04-24T11:56:13Z","last_seen":"2026-03-29T22:55:54.72751Z","times_seen":45,"resource_available":false,"data":null}},"time_used":1797,"timings":{"blocked":673,"dns":0,"connect":0,"send":0,"wait":1112,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012510081644000/v0/amp-loader-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:13 GMT","end":"Mon, 19 Jan 2026 08:34:12 GMT"},"fingerprint":{"sha1":"A1:7E:93:FB:1C:00:16:2D:F9:18:BB:13:39:47:36:C4:06:6C:FD:80","sha256":"78:07:2B:5D:05:41:2B:17:F6:88:E2:9A:E7:0D:CD:D3:96:BC:75:D8:FB:AE:BD:58:B5:9C:50:6E:1D:75:C0:72"}}},"request":{"raw":"GET /rtv/012510081644000/v0/amp-loader-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://alexistogel79win.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 3937\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 11 Nov 2025 06:02:14 GMT\r\nexpires: Wed, 11 Nov 2026 06:02:14 GMT\r\ncache-control: public, max-age=31536000\r\nage: 448994\r\netag: \"a1ee3895c747c6e2\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12729,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (12614)","md5":"a87e2cce7117be00fc8129abfc72b1a1","sha1":"26d9bc2bbbd56217163ec1ccf05a4b4698e5c11a","sha256":"f65efecffe50465d1ffa59d289200cb42ae6115fac8232946635cedf4dd241ef","sha512":"d9232a321d406c6d15a92fcfb3266ab1a049fee6099c19fb010ee7913e2d6c1a65868a2f529ffca06dfb96b312a78429b07c3a5bd56b14f53199ce88af09a458","ssdeep":"192:8fQHMOgzKBbnnRrVGjoPGlxrO2tHxg7HzMb5F4g5A4WR2vN:20g2BbnnHUgTzMb5F4g5A4WR2vN","tlshash":"d042a424a54be2ac530341b484fab94a757ecd4fb8104035f0118ededf99e48bd7ba6e","first_seen":"2025-10-21T18:07:40.626035Z","last_seen":"2026-01-17T06:31:39.878615Z","times_seen":1395,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":131,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012510081644000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:13 GMT","end":"Mon, 19 Jan 2026 08:34:12 GMT"},"fingerprint":{"sha1":"A1:7E:93:FB:1C:00:16:2D:F9:18:BB:13:39:47:36:C4:06:6C:FD:80","sha256":"78:07:2B:5D:05:41:2B:17:F6:88:E2:9A:E7:0D:CD:D3:96:BC:75:D8:FB:AE:BD:58:B5:9C:50:6E:1D:75:C0:72"}}},"request":{"raw":"GET /rtv/012510081644000/v0/amp-auto-lightbox-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://alexistogel79win.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2976\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 11 Nov 2025 17:13:36 GMT\r\nexpires: Wed, 11 Nov 2026 17:13:36 GMT\r\ncache-control: public, max-age=31536000\r\nage: 408712\r\netag: \"9215b9e0dcad338a\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7812,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7690)","md5":"36e68547fd31649fcac8856096da5e94","sha1":"cfa28bfde148c37cd6b94329ab7f8c1140625d5c","sha256":"5b870594007123f179856f463a72e0a31eb2e005acbb719cf9d56c242927547e","sha512":"3ce62d0c066399122ce7defb585fc4de3c39a02daba060cc9c03a9326e5ee8ef0f4a8d46f14e5f1f7b319944cee0d1c7c3ef2dcc08091a517f3c10b12bf46486","ssdeep":"96:+KoAosPGpz3pMDc0jxAMhG0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:+Kqswz3pv0jxAyCPX/tqKyWp4M0rDTI","tlshash":"9ef196dc7ac2f83a5757b4b780af414fa23bb94624ad9120d120f4d83cb995ed623e5c","first_seen":"2025-10-21T18:06:54.954761Z","last_seen":"2026-01-17T06:31:39.884543Z","times_seen":1718,"resource_available":true,"data":null}},"time_used":104,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Sweet_Bonanza.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Sweet_Bonanza.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:55 GMT\r\naccept-ranges: bytes\r\ncontent-length: 17058\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":17058,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"6cc91fa9659038c1b7d61d9e8794bb80","sha1":"a4b3eb53937f96b210bdee83f6a457cb812cb67d","sha256":"c9b4652aadeb482f64a781e182c4c61906eb9df7757ac769e279b19770187123","sha512":"db568efeb0255d637bdb478274eb34b75275e14546beb2aa6a1103a46871de599a3e118c7db9a2e95d25aa97a3d0b0972f195f64c29746c983ba36bd5dd776af","ssdeep":"384:gLI/khOlvvv15BzHyXBc/F5Q2gYCn6I6VigPFHqe+7:i/c1n1vzN/FyV7oz1+7","tlshash":"ed72d0cb1b5789e6ada0bee10afe349cef51034c1148e11e692b4a8a46d8d3720675cf","first_seen":"2025-11-09T07:22:35.717301Z","last_seen":"2026-03-29T22:55:54.736122Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1794,"timings":{"blocked":670,"dns":0,"connect":0,"send":0,"wait":1112,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/logo.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:30.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/logo.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 06 Nov 2025 14:24:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 563899\r\ndate: Sun, 16 Nov 2025 10:45:30 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":563899,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 753, 8-bit/color RGBA, non-interlaced","md5":"f12b74c6bf0d7fa0ff3e2e55b04d7cbf","sha1":"891db4677584f84817c6e689addc25b5a1d683db","sha256":"8d7e09db7265faf19cfccbae4194c6e1acb3869ae9f98cdffd85c0686e0e674e","sha512":"78c4fdeb46df71d2b96e2d58b3a120c6c9d0e9ae3269d31bdfc4bc6b62f511015bc5ac86108d742d487fca2571dea64abb447d26315a3f661a724c694bfa7052","ssdeep":"12288:0vkk6gU2kBSfhan5Wj8TDUNppoISHCOvl5uYSyrWU:UM8kwi5WIpI09/SI5","tlshash":"3fc4235a9871e92cffab443bb5019f0b17a7655f32d8949bd09ab80cae02c7d07944cf","first_seen":"2025-03-23T09:29:16.05051Z","last_seen":"2026-03-21T13:32:43.341899Z","times_seen":47,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":172,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:13 GMT","end":"Mon, 19 Jan 2026 08:34:12 GMT"},"fingerprint":{"sha1":"A1:7E:93:FB:1C:00:16:2D:F9:18:BB:13:39:47:36:C4:06:6C:FD:80","sha256":"78:07:2B:5D:05:41:2B:17:F6:88:E2:9A:E7:0D:CD:D3:96:BC:75:D8:FB:AE:BD:58:B5:9C:50:6E:1D:75:C0:72"}}},"request":{"raw":"GET /v0.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73132\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nexpires: Sun, 16 Nov 2025 10:45:28 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"b52f38ef99ad402e\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284545,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64627)","md5":"8059fb84783c3f43b7b5b66a3883bcb6","sha1":"335cfb79c7c772225bc9a0a0d17d5d435e30a247","sha256":"977e140b62a9228c0815a6ce26e63df7def2817315581cb3e29c52a9d5959754","sha512":"2a0c05b24ac683756cc15e857c5445e62aa1f00134e8fa0f0c966510b1ec778a4570ab2c09dd2791a8a769f36c64a304fc816228fb54367af99657f3c49bb385","ssdeep":"3072:j4UQbNOu6mF8g8aLymSt85Li48lnQYxQEnswf2l3sVsmgQ:j4UQbNOu6mFTLs8f8lnQebsw+l3sVsg","tlshash":"db54839db296b0764793b074803f150aa33ba855240a812cf56de9d67cbcd8ea137f7c","first_seen":"2025-10-21T18:06:54.94219Z","last_seen":"2026-01-06T14:38:02.926695Z","times_seen":1886,"resource_available":true,"data":null}},"time_used":609,"timings":{"blocked":247,"dns":21,"connect":28,"send":0,"wait":41,"receive":50,"ssl":219},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/allbet.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/allbet.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:04:22 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3534\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":3534,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"51e841ba74e4368658966b1d78d2fb9f","sha1":"be2aa0358da2d1409ca1a9cfc9e455bc299af173","sha256":"fc7e852ad493cdc2e4d96fc8a64d843785d11f981a06a8a4a239bd63361924fe","sha512":"0b94353b8639b994d38e8923b8860833188c0a7cb4eb3247b317899668edda9ed27bd404dd9243e7444b39c3f9cb5b05a5bccbeeb877528a5d5b21f3ad5c2d77","ssdeep":"","tlshash":"22716dee850addd5143d4822f010a5f1e126e8f7c48a1909b763f690a6ef37a96ccc57","first_seen":"2025-08-04T07:43:21.408928Z","last_seen":"2026-03-29T22:55:54.728102Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1834,"timings":{"blocked":-1,"dns":68,"connect":159,"send":0,"wait":1103,"receive":8,"ssl":495},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Gates_Of_Olympus.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Gates_Of_Olympus.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:33 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20723\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":20723,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"1e5dda3c08a922e0980da584b8c0e781","sha1":"483b8fe05f6c033d0fd95f506ddc2131c5fcc3b9","sha256":"67cf9cb897b74d1187d19cb8ce0930b791e577c8f0717a67900ea5f560e04c91","sha512":"6fe54cc3403bcf56009aa039b37fee907bc7b875dd031d563ab545bd127e0da6862e4cdeccfcf02703bcd3b18d106a59b57ac9b81922d2791235ca78e5b24b4a","ssdeep":"384:HIvJ9sxRVaZyWpCDC+p6MHdhZrFHC9Hrxcg7KiC2LoZ8Zd4kuOgSJ8BRWBLZAk:HFVeyWpCDC+p6MtrhEH9i8Zd4kuO9C4N","tlshash":"3092d08ef406e8ecb2550d69dc91aebb8d7404584b24fe45feff0a60cdc024c9224aa9","first_seen":"2025-11-09T07:22:35.713467Z","last_seen":"2026-03-29T22:55:54.713777Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1801,"timings":{"blocked":679,"dns":0,"connect":0,"send":0,"wait":1112,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"alexistogel79win.online/","fqdn":"alexistogel79win.online","domain":"alexistogel79win.online","tld":"online"},"ip":{"addr":"172.67.138.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-16T10:45:27.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alexistogel79win.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 11 Nov 2025 11:37:10 GMT","end":"Mon, 09 Feb 2026 12:34:21 GMT"},"fingerprint":{"sha1":"86:85:7B:74:6F:7D:AC:C7:54:FB:FC:DB:7E:06:C9:8C:2E:C4:86:61","sha256":"23:CD:CB:B0:A1:8F:03:3D:A3:BB:E7:C1:90:99:E3:D4:A8:90:6F:4D:E8:64:30:83:73:CB:10:1E:93:5F:47:58"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: alexistogel79win.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 16 Nov 2025 10:45:27 GMT\r\ncontent-type: text/html\r\nlast-modified: Fri, 14 Nov 2025 21:09:18 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F6vBrP0Ud7mNFUjlUVkKbf%2FuAYN6V41oTwpCTRiEo8r9r3IeiJI1LJgewJ7dpWcnpHQD7GqTRLrNyAfbgNz7CRt3JslsPqe2krfbv5d%2BCmmIdnSGZA%3D%3D\"}]}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 99f6661ccb0f5687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":90306,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8585)","md5":"299d92b425e38417836a9d6864e9a59a","sha1":"3deeeaffc64a767877d7d7abc19704087a591e12","sha256":"451d523ba1d4ad69be86c2974751add7e0889f0f3b0c2d213c409b2421f08222","sha512":"8c4ea7c339777963ddfe8c4768ebf9690980e1d454f363bb0fa012e8820182904f6a63e241d4ea9d9db0da466f012a6bad78d125b5d8043fd520aec4285412a8","ssdeep":"1536:QtsQ5vcetGTvZFr6t6pN/DKaMilF7Bvm2l2e4DlEm4e07oEUUAo:nvZ4ES2cEUUAo","tlshash":"2593e8f2eaf070b4658283daab246c5c7f4794bb9b125549f27e4ba45fc3c84c90388d","first_seen":"2025-11-16T10:46:00.080234Z","last_seen":"2025-11-16T10:46:00.080234Z","times_seen":1,"resource_available":false,"data":null}},"time_used":818,"timings":{"blocked":47,"dns":26,"connect":1,"send":0,"wait":723,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"alexistogel79win.online","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/banner.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/banner.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 06 Nov 2025 09:19:31 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2255650\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":2255650,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced","md5":"4b819a5b38c627ee6b5f47fc54d58599","sha1":"d90d338ccf981c0bdf870929be22ab3e5b9d89e1","sha256":"246136a9839813d6a6079097c16bb140e6999bbb0d0760328d1225f8f7ba2c4e","sha512":"670831dae1368faeadc0756e3f9ea000033c49b3d1267339e7834d4bbcefbf785f3628ff67758b50b572cdb6d6b0423d302e7b38e5205f44cac7d9d714794099","ssdeep":"24576:so0U1k3okWdVJdbOmM/mhUDTTnqRIzPUtI9kprJx+mKI0:so+WdfdC1/KcnTPUtISlQt","tlshash":"cd25333be905c62331dd7aba3873c95636d21dd368d18532ade85ec0177b0b283f9986","first_seen":"2025-11-16T10:46:00.081314Z","last_seen":"2026-03-21T13:32:43.352269Z","times_seen":12,"resource_available":false,"data":null}},"time_used":2036,"timings":{"blocked":695,"dns":0,"connect":0,"send":0,"wait":489,"receive":852,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/evo.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/evo.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:04:44 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1683\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1683,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"c2d872d6928a4be86156a36de8de115d","sha1":"c2408d7c23ab55594d62bf9dd0195e6be2fd1973","sha256":"559d189380c6d22dc89a967cf313d9e9bb9f15f9e1e261eb96327cc04036e217","sha512":"1cabc382a664902a64c00f8f39f70fa3fa70c7b42b376d127dd6c0cd6def197a669da9f08db5ac67603af285261c9fb4d7b4be20217a37860394c6bbff78106c","ssdeep":"","tlshash":"fe312c963951d18cc0271f2ee5ac5071c7958b8173e31ed74042e87f6cc8f96159471f","first_seen":"2025-08-04T07:43:21.430071Z","last_seen":"2026-03-29T22:55:54.723185Z","times_seen":48,"resource_available":false,"data":null}},"time_used":2534,"timings":{"blocked":699,"dns":68,"connect":159,"send":0,"wait":1103,"receive":8,"ssl":478},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Starlight_Princess.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Starlight_Princess.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:51 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19891\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":19891,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"c0ebcad0fb5984762cc644bb6c4d1f07","sha1":"66944da6c62d610f240c8fd23aa001ed06f2a3ea","sha256":"dd1ea8b312c11f8c6b57ddfd4dc5f503ef59adb3fa76cfca40fe0aa93ee65856","sha512":"ebe1dc238bbb47f64bdb4c9903d072abdefe3ae80d4aad2981ca02d2f4519838047f47945e2371d8ac41983fac978370c15e3275f80d3f3668bc7713f2988af4","ssdeep":"384:w7fr5c8+AsA0IYiOYLR3ru919tQl8itETlMNKwe3jU3ygDi+B1MJ3gThMZEA5sIt:k5F+AfWmLgL9tQlilMNheTUigDB+J8h8","tlshash":"1492d019b4883932159e9d3eee90d4a0fc60ad020a9c7fef66d1f8a5244e2623b02c64","first_seen":"2025-11-09T07:22:35.731258Z","last_seen":"2026-03-29T22:55:54.717025Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1794,"timings":{"blocked":669,"dns":0,"connect":0,"send":0,"wait":1112,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/joker.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/joker.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:08 GMT\r\naccept-ranges: bytes\r\ncontent-length: 5547\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":5547,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"ccd70496b2f6669ff0d2d86d9928d318","sha1":"e826302ee622cc4764f7b825f538ad50a61f3843","sha256":"c5af13cc239036aec95da5fa61bf292907e84049c7a962d7421360054b3a6b8f","sha512":"85396a9adba6ab1968375ce0ab3a957975c4df065e7c785dec03861bfd0844343137b79e40de0a0d0f927c7f94763faf2b28e3f9a3368c8c0b0b50f9bec657ea","ssdeep":"96:3iklvDNCU71PseHmHZH637xL9ddJmIZn9alI+vgd6+QlV9wHGr8v5hXx2TzjGfU:S6vDNCfeGR639PTDgC+vgd6Bn9wmrkte","tlshash":"fab19f29a25f31c6def00b47f88e2947384a445349bd355fd838d5b4b5c65089e5e0a1","first_seen":"2025-08-04T07:43:21.399939Z","last_seen":"2026-03-29T22:55:54.72433Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":685,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/logo.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:30.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/logo.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 06 Nov 2025 14:24:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 563899\r\ndate: Sun, 16 Nov 2025 10:45:30 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":563899,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 753, 8-bit/color RGBA, non-interlaced","md5":"f12b74c6bf0d7fa0ff3e2e55b04d7cbf","sha1":"891db4677584f84817c6e689addc25b5a1d683db","sha256":"8d7e09db7265faf19cfccbae4194c6e1acb3869ae9f98cdffd85c0686e0e674e","sha512":"78c4fdeb46df71d2b96e2d58b3a120c6c9d0e9ae3269d31bdfc4bc6b62f511015bc5ac86108d742d487fca2571dea64abb447d26315a3f661a724c694bfa7052","ssdeep":"12288:0vkk6gU2kBSfhan5Wj8TDUNppoISHCOvl5uYSyrWU:UM8kwi5WIpI09/SI5","tlshash":"3fc4235a9871e92cffab443bb5019f0b17a7655f32d8949bd09ab80cae02c7d07944cf","first_seen":"2025-03-23T09:29:16.05051Z","last_seen":"2026-03-21T13:32:43.341899Z","times_seen":47,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/ibc.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/ibc.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:04:54 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2036\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2036,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"c6ef6e99034bb0c02df5c0592230d85a","sha1":"f178f8c49029d68e8a71b2863ad17d82d4cafd8c","sha256":"a7a8143652db6d97b090e0d945bf646b08fcaf32616b441e2349baa1120b8bf6","sha512":"a12ce38d751d11f9c896056a67f5f7bba21cc02d615be44ef48b10c559ec5bec1901ced5a20ec4ec6f500d8a705b4b80b7a781cdaadbf1097b548db80055083d","ssdeep":"","tlshash":"7c415dd31169e93446e0e3f70596947b537801bde1225c58f11da9f305b971ac27643b","first_seen":"2025-08-04T07:43:21.441948Z","last_seen":"2026-03-29T22:55:54.723748Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1157,"timings":{"blocked":686,"dns":0,"connect":0,"send":0,"wait":471,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/pragmatic.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/pragmatic.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:17 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3460\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":3460,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"b4d106ede927d2a0b504e2c47d483258","sha1":"69d064ee816b2e2805cee2aa97c63b51260f98bb","sha256":"7881852448bcb7772faceaf2fa11f9f759151b17d7f312f6c43f39a7134201b2","sha512":"5879c578834489440d087b11bfb01ac299be4801ddc3a53479304da19f43f27cc5d640f4a13e2c1ed8e7c340125f79470d0d320df14142f453af2fb0ae998e2b","ssdeep":"","tlshash":"3a615d659348e0fbad0db4f98205c064aed8c489b5399fd74b1e736c527115711946f0","first_seen":"2025-08-04T07:43:21.413418Z","last_seen":"2026-03-29T22:55:54.743734Z","times_seen":49,"resource_available":false,"data":null}},"time_used":1170,"timings":{"blocked":681,"dns":0,"connect":0,"send":0,"wait":489,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Mahjong_Ways.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Mahjong_Ways.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:41 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19891\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":19891,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"61d1e492057b2a1f99c54ab9e8214aac","sha1":"6cb4ceeb0ef5850310f072e986d4094776d8a879","sha256":"a84b2a2f15fae03e8afbe9cb7ded8c4e2b0caadf04d9ab075376eee5cd575888","sha512":"9cb9f43db5baae78a3f0a8c78e155aadd7fb78d4a62882cea5cb0161d2e82b1d9877786cd666959be0d37c7468cee2ae366734f5210d66a5e4dc78cd46ba154d","ssdeep":"384:LuZ3Rn2ztAyd6A+0GLMxbDytJuOj8MowKbkoYoQu5tIpuQmP5JIY/sO:LuCxAy0HTRtT6wK9Y5otEuQmhJIYkO","tlshash":"0d92c0afc5e053c1dc7a063061cad9556cba0701e568d7660ff7df0a422cd895ca5f25","first_seen":"2025-11-09T07:22:35.71637Z","last_seen":"2026-03-29T22:55:54.716301Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1791,"timings":{"blocked":677,"dns":0,"connect":0,"send":0,"wait":1112,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"alexistogel79win.online/assets/bg1.jpg","fqdn":"alexistogel79win.online","domain":"alexistogel79win.online","tld":"online"},"ip":{"addr":"172.67.138.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alexistogel79win.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 11 Nov 2025 11:37:10 GMT","end":"Mon, 09 Feb 2026 12:34:21 GMT"},"fingerprint":{"sha1":"86:85:7B:74:6F:7D:AC:C7:54:FB:FC:DB:7E:06:C9:8C:2E:C4:86:61","sha256":"23:CD:CB:B0:A1:8F:03:3D:A3:BB:E7:C1:90:99:E3:D4:A8:90:6F:4D:E8:64:30:83:73:CB:10:1E:93:5F:47:58"}}},"request":{"raw":"GET /assets/bg1.jpg HTTP/1.1\r\nHost: alexistogel79win.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zrUwUluXtrlzHsCv4d%2Bt%2FQxl7NtiuvORyWYTYZX8zxXuCZSDVVhk6uGVy982KcElYHIYwKZlWSSxb7160LT0N5eRlSZ1yJ3mxiRP1WcxQUIRl2%2FwZA%3D%3D\"}]}\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: BYPASS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 99f66622ab0056bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-04-04T06:44:00.83433Z","times_seen":115549,"resource_available":true,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"alexistogel79win.online","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/ag.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/ag.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:04:27 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2687\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":2687,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"9ec82a0ac2423d44bb1cda3855552475","sha1":"8828193e6fc256da3d7271efecd390da90178cb3","sha256":"6d7e3da449b02f557eae2ca54876242e463caa64c07e4ca876987c51ec43c7b8","sha512":"43a139f62f68c03fa17cbd62137685e142bf0b343a2856c6fefa997aa4b8f194b200b3a5173df9dabcab7698aefab6442730322fbac2359aa00c6ada80a06267","ssdeep":"","tlshash":"27511ae3a474fca58c796663073128b1174b88c862b88747108ce84895affac48f90e7","first_seen":"2025-08-04T07:43:21.434382Z","last_seen":"2026-03-29T22:55:54.753189Z","times_seen":48,"resource_available":false,"data":null}},"time_used":2537,"timings":{"blocked":701,"dns":70,"connect":159,"send":0,"wait":1103,"receive":8,"ssl":479},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Gates_Of_Olympus_1000.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Gates_Of_Olympus_1000.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 72809\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":72809,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced","md5":"96eec605edfc20f387400c63dd86ed36","sha1":"1066777d76a0a7fb5751a5795af5185aed8da460","sha256":"d727af290ebf9fa32251c757ce0f9eb03accf041a88867d8270d09fa91282667","sha512":"14baa0cec2d2e79e94b4aed74a85f0dfa3066d6c4b6179c48301602bec5506a6c75ba2f5a1c6c43d6c50bc0c28ea9be9c9dc6d81a5c8cf9efa6e81547606a8cf","ssdeep":"1536:TQw3aNpfJiCcpdpPZkNHBZVKQYuCD4aSUZSzLBA:93azqpdpPOZBYuAqA","tlshash":"c563027b78836947cb47d3a8cb252da14db6e2b5a8777849e3c2b4e900240175f8df1b","first_seen":"2025-11-09T07:22:35.735987Z","last_seen":"2026-03-29T22:55:54.720728Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1801,"timings":{"blocked":672,"dns":0,"connect":0,"send":0,"wait":1112,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Starlight_Princess_1000.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Starlight_Princess_1000.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:53 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20534\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":20534,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"8856089ab4b68d53bdd836fdd3576888","sha1":"81dfbda447ae714e52058a1e9ae7f02a06a92b8f","sha256":"6487950f5df3d7c69655c80faa7aebf12f4fd4f9cd379717a6ac00a6a83326e0","sha512":"ca858723ffc89ac94d82b22810edbf759bf8d4755d3e743cc38f2cf746aa239e44b8073d24d199699f9d81684fb27027e98fd3d6719253c49aa682336bdc56a3","ssdeep":"384:SNgtVerrhUVOY2bprkrAMDl2+Ja886egfdJNigcNYOvt2iq9DQCRxf7jw:SutchRbhiDlMgfdSgcNxW9Mkzk","tlshash":"9992d1201e5ad6536f084972c899cb5b803988b405ff6adfd32359bf96b64235caa730","first_seen":"2025-11-09T07:22:35.733101Z","last_seen":"2026-03-29T22:55:54.751813Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1794,"timings":{"blocked":670,"dns":0,"connect":0,"send":0,"wait":1112,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Lucky_Neko.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Lucky_Neko.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:39 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19236\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":19236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"b06c087aa3f1526a775c9b3fd633f5a8","sha1":"a831d3ca5bc091e8f88cd1ed7c4f184db7a2e5d2","sha256":"4044872c3e5d744d5fb0695775ce46089c6b3406b0db8f79525586275c6811d3","sha512":"f5b882dea2fb321d361f359e52faa955bb25577c9fe9def543171b15eb95de94cdd7145c874b1cbd0dc977debdb6d2834c495b18d752ca7237a0359be65a2d74","ssdeep":"384:uUc6MbovGpR5xJHjPqGbgqoVEn3i2tnIsK0W:uXBpFlqegqoVE3iMI9j","tlshash":"5082d06d35cdc0e4a709e498696be0a41be1c8fe5a1d2171ac285c9fd06fa43c1f0c5e","first_seen":"2025-11-09T07:22:35.725861Z","last_seen":"2026-03-29T22:55:54.72012Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1791,"timings":{"blocked":672,"dns":0,"connect":0,"send":0,"wait":1112,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/jackpot.gif","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/jackpot.gif HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/gif\r\nlast-modified: Tue, 11 Nov 2025 12:06:04 GMT\r\naccept-ranges: bytes\r\ncontent-length: 37274\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":37274,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 944 x 152","md5":"2c3a8618de935022ed758178ae7f9296","sha1":"ade54978fa891be0e6c902c441f3e88dda8749dc","sha256":"c354e0c19cf4e773db138503626afb7627343c97bca47a8a3a894f71b8b13747","sha512":"c1b3550d6392274451be8d15d198e18d1f36a1c1a703022280df07f6ec25f8ed023a2e1b0f250ecf33e6704429556fbab35ae1c152f01211ebd7a5a2876eabe3","ssdeep":"768:uAeUNPDMWfSXshIElcF8vw1Ml6b8A+QXF9lXtzc0cyFHPpdkVzlE:oyDlfSchIElcavw1Ml6b3ZX7jvExE","tlshash":"06f2f14bca775ad88c7171303c3b112b5e0c64e436f6ac6954f46242b21761fb9c8be3","first_seen":"2025-10-02T15:47:03.186224Z","last_seen":"2026-04-01T18:07:49.50901Z","times_seen":173,"resource_available":false,"data":null}},"time_used":1165,"timings":{"blocked":694,"dns":0,"connect":0,"send":0,"wait":331,"receive":140,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/habanero.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/habanero.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:04:49 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1835\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1835,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"aca8bded8b722bae0f80ac17a6b02da5","sha1":"bbbf8781e136cdd33e88cbde73d4c0aac50d4a92","sha256":"5be6825417fad6d0fabbfc4d478f21ae8cb1ea46e6726930e206cfdfae4f8d89","sha512":"4d7368514ebc7ebaec35c9940aa7bf05d450e08578a0a0a7a293595f40aeae406ae5f531ff604d728f5caa24ce606a132159346b30665ae3b1c727fb8d3b3766","ssdeep":"","tlshash":"1331f87ecaeac2c967c0933b4f30850f2226705eda28304fe45b55024624ba8674dadf","first_seen":"2025-08-04T07:43:21.420087Z","last_seen":"2026-03-29T22:55:54.753857Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2533,"timings":{"blocked":699,"dns":68,"connect":171,"send":0,"wait":1101,"receive":8,"ssl":484},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/logo.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/logo.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 06 Nov 2025 14:24:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 563899\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":563899,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 753, 8-bit/color RGBA, non-interlaced","md5":"f12b74c6bf0d7fa0ff3e2e55b04d7cbf","sha1":"891db4677584f84817c6e689addc25b5a1d683db","sha256":"8d7e09db7265faf19cfccbae4194c6e1acb3869ae9f98cdffd85c0686e0e674e","sha512":"78c4fdeb46df71d2b96e2d58b3a120c6c9d0e9ae3269d31bdfc4bc6b62f511015bc5ac86108d742d487fca2571dea64abb447d26315a3f661a724c694bfa7052","ssdeep":"12288:0vkk6gU2kBSfhan5Wj8TDUNppoISHCOvl5uYSyrWU:UM8kwi5WIpI09/SI5","tlshash":"3fc4235a9871e92cffab443bb5019f0b17a7655f32d8949bd09ab80cae02c7d07944cf","first_seen":"2025-03-23T09:29:16.05051Z","last_seen":"2026-03-21T13:32:43.341899Z","times_seen":47,"resource_available":false,"data":null}},"time_used":2717,"timings":{"blocked":704,"dns":71,"connect":157,"send":0,"wait":1104,"receive":182,"ssl":488},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/playtech.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/playtech.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:15 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2138\r\ndate: Sun, 16 Nov 2025 10:45:28 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":2138,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"51240eddaf3c2d8bee4ebe2e35805cff","sha1":"bf7ca3ba327efeec1dc57a3759eccec5b243f2d6","sha256":"2fa5e88ebef8569d133724c0fbb4dcb6e6ec68898a00f1ff7c2b064d57f56938","sha512":"d82f9805eb741133135cb288390680852589255bf07f0890b9625d8540c61df4eaca97b77b7022008e7ea532f2798c73ee3dc9fdd25289c8350851c9c17bc543","ssdeep":"","tlshash":"4e412a55d6cedd65c165b4a1ca8eaef008f186206c384e669811fca1c0f8f5054db0ff","first_seen":"2025-08-04T07:43:21.384034Z","last_seen":"2026-03-29T22:55:54.754577Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1159,"timings":{"blocked":683,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/skywind.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/skywind.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:23 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2527\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2527,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"a0b38f92e69d86d82b06b924702b94ea","sha1":"f274f160adbe994020f989734531a1898017c215","sha256":"dabaf93d04d9e3daa51e0d6e42a015c5db50c67255a8629388dc06913ccd7227","sha512":"918fcc9345bd7d59dfa7f0a016f7ef00044f3455ad53cd74471ae976e5bd38d0a8187c41e543269fce29140abe0040e3dae03127d15cadf34d2b58a5934b1c6c","ssdeep":"","tlshash":"bf512a68a076e436d7ed5ead07027b1fad62069048cdeecf65db366c8c3170966c805b","first_seen":"2025-08-04T07:43:21.458306Z","last_seen":"2026-03-29T22:55:54.731892Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1791,"timings":{"blocked":680,"dns":0,"connect":0,"send":0,"wait":1111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/provider/spadegaming.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/provider/spadegaming.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:26 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1574\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1574,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"4827d3a0789913967f7fef1a211f2ffa","sha1":"11d42dd123c8966fb207a37592199e20b7f25fcc","sha256":"cf6e6ef5e5f492884b09c6842bcde098b9541a762e607eb7976cfbf63468e046","sha512":"04212fdea17a6a4defd3e8bf647ab37d4751a2e379e8e4d134e39392788c90631dc48d181cae0ff704ca36fd3f70f88c4dc19cabfa094ee3d830d0991be3f1d6","ssdeep":"","tlshash":"3b31d7ea038bde3d402d827902484f707a93905776d6d0ad630b88227ea53f46a9a17b","first_seen":"2025-08-04T07:43:21.423542Z","last_seen":"2026-03-29T22:55:54.744504Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1792,"timings":{"blocked":680,"dns":0,"connect":0,"send":0,"wait":1112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pijatnuru.store/assets/slot-gacor/Maneki_Neko.png","fqdn":"pijatnuru.store","domain":"pijatnuru.store","tld":"store"},"ip":{"addr":"162.254.39.17","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://alexistogel79win.online/","date":"2025-11-16T10:45:28.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pijatnuru.store","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Nov 2025 00:00:00 GMT","end":"Wed, 11 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:8E:8F:AD:80:79:B0:98:58:F3:A9:EF:1D:17:65:44:2C:5F:9D:3D","sha256":"8C:A6:2B:EE:23:2F:8B:1E:E6:58:09:C6:26:28:4A:56:78:0E:10:6C:59:E1:D8:1D:7B:8E:B0:97:60:03:3F:05"}}},"request":{"raw":"GET /assets/slot-gacor/Maneki_Neko.png HTTP/1.1\r\nHost: pijatnuru.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://alexistogel79win.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 23 Nov 2025 10:45:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 11 Nov 2025 12:05:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20184\r\ndate: Sun, 16 Nov 2025 10:45:29 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":20184,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"e399385611bd8b9127191b104ac628cd","sha1":"5360107e96c9c6c415586df7be5390d273aee91f","sha256":"5d9f673ecc3ac41d3a5b7fe6d4762515f8911ee7c3d7c44da293cd44535d4fe1","sha512":"7869b36389cbb60292b6dbd09fa02c9d621fd84fd0d17d36428aa5bc0dc6fd2c44a8e71840ebc3bb4a7142a0c42cafb7ef45f18cf3c93bc10ae76f9c3b13dc85","ssdeep":"384:HTNdSM613ujS4q7SWmQhUP8n07+BAnr0fbjo3Sc:cujS4Bs+Pv7rgjj3c","tlshash":"1392e0ec011dd1f6ecc517b9e5a49cb6430a2037ca05be495beb3fe60bf29156288e25","first_seen":"2025-11-09T07:22:35.714246Z","last_seen":"2026-03-29T22:55:54.719503Z","times_seen":43,"resource_available":false,"data":null}},"time_used":1801,"timings":{"blocked":678,"dns":0,"connect":0,"send":0,"wait":1112,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-16","alert":"Sinkholed","trigger":"pijatnuru.store","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}