{"report_id":"b2d05a01-6b0e-43e2-b76d-1db1a45bc24d","version":6,"status":"done","tags":[],"date":"2024-07-08T21:31:45Z","url":{"schema":"http","addr":"energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"title":"## Confirm notifications ##"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T10:28:08Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2024-07-08 19:47:13","alert_count":0,"request_count":2,"received_data":201506,"sent_data":774,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-07-08 18:24:16","alert_count":0,"request_count":5,"received_data":3496,"sent_data":1625,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2024-07-08 19:56:07","alert_count":0,"request_count":3,"received_data":59459,"sent_data":1585,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.rdntocdns.com","ip":{"addr":"45.9.149.210","port":0,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":4,"request_count":2,"received_data":12712,"sent_data":964,"comment":"","tags":null,"fingerprints":null},{"fqdn":"inputgreensorts.com","ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2024-04-29","domain_rank":0,"first_seen":"2024-05-04 10:37:27","last_seen":"2024-05-04 10:37:27","alert_count":0,"request_count":2,"received_data":34087,"sent_data":1070,"comment":"","tags":null,"fingerprints":null},{"fqdn":"energyleveldiagram.com","ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"domain_registered":"2022-01-28","domain_rank":0,"first_seen":"2022-01-28 22:37:37","last_seen":"2024-03-31 20:50:29","alert_count":0,"request_count":8,"received_data":208525,"sent_data":4690,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bind.bestresulttostart.com","ip":{"addr":"193.163.7.113","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-03-04","domain_rank":0,"first_seen":"2024-03-22 10:31:16","last_seen":"2024-04-26 11:17:55","alert_count":3,"request_count":3,"received_data":45999,"sent_data":1154,"comment":"","tags":null,"fingerprints":null},{"fqdn":"secure.gravatar.com","ip":{"addr":"192.0.73.2","port":0,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"2004-07-15","domain_rank":1671,"first_seen":"2012-05-22 07:36:38","last_seen":"2024-07-08 19:55:32","alert_count":0,"request_count":1,"received_data":1654,"sent_data":433,"comment":"","tags":null,"fingerprints":null},{"fqdn":"rest1.rdntocdns.com","ip":{"addr":"45.9.149.210","port":0,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-05-31","domain_rank":0,"first_seen":"2024-06-08 19:08:21","last_seen":"2024-06-08 19:08:22","alert_count":1,"request_count":1,"received_data":12087,"sent_data":391,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-08 18:12:20","alert_count":0,"request_count":8,"received_data":7099,"sent_data":2616,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:21Z","timestamp":1720474281,"ip_dst":{"addr":"193.163.7.113","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":36008,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)","source":"{\"timestamp\":\"2024-07-08T21:31:21.643427+0000\",\"flow_id\":503047418091365,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":36008,\"dest_ip\":\"193.163.7.113\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2051949,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_04_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2024_06_19\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_04_05\"]}},\"tls\":{\"sni\":\"bind.bestresulttostart.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":928,\"bytes_toclient\":4640,\"start\":\"2024-07-08T21:31:21.595813+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:21Z","timestamp":1720474281,"ip_dst":{"addr":"193.163.7.113","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":35992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)","source":"{\"timestamp\":\"2024-07-08T21:31:21.645773+0000\",\"flow_id\":45895394072283,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":35992,\"dest_ip\":\"193.163.7.113\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2051949,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_04_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2024_06_19\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_04_05\"]}},\"tls\":{\"sni\":\"bind.bestresulttostart.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":928,\"bytes_toclient\":4640,\"start\":\"2024-07-08T21:31:21.595675+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:21Z","timestamp":1720474281,"ip_dst":{"addr":"193.163.7.113","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":36014,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)","source":"{\"timestamp\":\"2024-07-08T21:31:21.656904+0000\",\"flow_id\":948579408091067,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":36014,\"dest_ip\":\"193.163.7.113\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2051949,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_04_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2024_06_19\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_04_05\"]}},\"tls\":{\"sni\":\"bind.bestresulttostart.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":4434,\"start\":\"2024-07-08T21:31:21.595899+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:22Z","timestamp":1720474282,"ip_dst":{"addr":"45.9.149.210","port":443,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":35918,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)","source":"{\"timestamp\":\"2024-07-08T21:31:22.236683+0000\",\"flow_id\":58855457978750,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":35918,\"dest_ip\":\"45.9.149.210\",\"dest_port\":443,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2053272,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_06_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_06_05\"]}},\"tls\":{\"sni\":\"cdn.rdntocdns.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":789,\"bytes_toclient\":1654,\"start\":\"2024-07-08T21:31:22.162174+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:22Z","timestamp":1720474282,"ip_dst":{"addr":"45.9.149.210","port":443,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":35928,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)","source":"{\"timestamp\":\"2024-07-08T21:31:22.699062+0000\",\"flow_id\":945884316204280,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":35928,\"dest_ip\":\"45.9.149.210\",\"dest_port\":443,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2053272,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_06_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_06_05\"]}},\"tls\":{\"sni\":\"rest1.rdntocdns.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3234,\"start\":\"2024-07-08T21:31:22.621816+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:23Z","timestamp":1720474283,"ip_dst":{"addr":"45.9.149.210","port":443,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":35938,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)","source":"{\"timestamp\":\"2024-07-08T21:31:23.190596+0000\",\"flow_id\":1861846221701728,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":35938,\"dest_ip\":\"45.9.149.210\",\"dest_port\":443,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2053272,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_06_05\"],\"deployment\":[\"Perimeter\"],\"malware_family\":[\"BALADA\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_06_05\"]}},\"tls\":{\"sni\":\"rest2.rdntocdns.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":789,\"bytes_toclient\":1654,\"start\":\"2024-07-08T21:31:23.115296+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-08T21:31:23Z","timestamp":1720474283,"ip_dst":{"addr":"172.67.186.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":47446,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET EXPLOIT_KIT Balada Domain in TLS SNI (specialtaskevents .com)","source":"{\"timestamp\":\"2024-07-08T21:31:23.341175+0000\",\"flow_id\":1125304427549960,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":47446,\"dest_ip\":\"172.67.186.218\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050223,\"rev\":1,\"signature\":\"ET EXPLOIT_KIT Balada Domain in TLS SNI (specialtaskevents .com)\",\"category\":\"Exploit Kit Activity Detected\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_01_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2024_05_23\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Exploit_Kit\"],\"updated_at\":[\"2024_01_18\"]}},\"tls\":{\"sni\":\"rate.specialtaskevents.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":789,\"bytes_toclient\":1654,\"start\":\"2024-07-08T21:31:23.333064+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":[{"sensor_name":"threatfox","sensor_type":"url","title":"","description":"ThreatFox","scan_date":"2024-06-08","alert":"Unknown malware","trigger":"cdn.rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Unknown malware","link":"https://threatfox.abuse.ch/","meta":null},{"sensor_name":"threatfox","sensor_type":"url","title":"","description":"ThreatFox","scan_date":"2024-06-08","alert":"Unknown malware","trigger":"cdn.rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Unknown malware","link":"https://threatfox.abuse.ch/","meta":null}]}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3e855977d9319fb012645fa33b4e654a","sha1":"2ddb2c71d3f0373b8685b15e6cf9f66f76a96eb0","sha256":"8b3706b8ce6bb71424b9ee00e64cbe6880ed483677d6bc991a2375c55cc821ff","sha512":"72b890b35bbff47e3694ce583ceddc487f2bc9983f64bfd86e420356636ad0f6d975622108c4e5215fcd105b17b944b99ad9ba568453fcc5ab1ce2941e486b83","ssdeep":"","tlshash":"5c012d0d54d70bd6e813f17d169d7649750884cfb905dac67beebe804fc207a55e4ac0","size":704,"data":"","first_seen":"2023-04-07T09:43:32Z","last_seen":"2026-02-05T13:30:45.012007Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9dd8aaddfb8828e8a7fb8eae261bc442","sha1":"09ab1ee0e3b46a1785bc8217c0eec65b1b01dd6f","sha256":"221a738792c4d64fbee224b84be243250394f1af0c6a00e063fb755c807e416d","sha512":"faf84618d2e6f9666d9936f91723f3d3f4d2aec596d18947c29cf9f4825a6c7c80054d76284727e9037c07b7a2b2bb73ef54c3b61b94f7d48e782d322b7dacb9","ssdeep":"192:sZBwhB3HNNiaoZb2+lji7dMQKJQOKrHpiTeOlhqlQY:saBXNLYqsi7dMDJQOIEXlgz","tlshash":"6f024cb531954cfbd3861169e019e1a6cb75741e3a92a8be7f0e0f18ce1bad071bf904","size":8245,"data":"","first_seen":"2024-08-19T17:33:54.72645Z","last_seen":"2024-08-19T17:33:54.72645Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c4824c2a16d2c8bb70469ed7b8508f34","sha1":"783dcaa37fcdd311197de60f0c55ab5367be4fe2","sha256":"f97308b8745f77dc6b279dafa3f98d4e64de2f494681e452a477afaa13b4d1fb","sha512":"11b81c2abf8117f6cb6f788bd72a3f48e276df274528d6fee0ab2c4cfcacf39c321aedacd568e70b87ffca67a15706ba33174781a6dabbedf3a4938d0e5e1e02","ssdeep":"","tlshash":"f6d080de006510340db730741f7f51903419505b340ba9047e6c42150f7875bc341e5d","size":203,"data":"","first_seen":"2023-03-07T01:15:57Z","last_seen":"2026-02-05T13:30:45.017809Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"ae7f0f1874bd3e9a6a0e9736f3307398","sha1":"f9ea5e0bc3f3f8039b7d2835e9d8aa775621b9d3","sha256":"cf8229ead2362ab9f5b9f608b9eb668414a21aca7c9bcc0c90b138415abf72cf","sha512":"cc5ed07615d99da76e3457249d980dd3da4be2df23c9e1aa8c023cfc7710d3e9517297116061904e60531f0cbc023d5ff8cbff9ec262b3493e3eed5bd7dd48cc","ssdeep":"768:8Lpt4uruqgHUZlhmE9gsZUWfqZ2RKg0T8HV8kOULYhyAofFgk:ytxrzhG20XUeULYhon","tlshash":"7ed2a58871026175cfe6f968217f61cb6a26aa01e5d8f851f4c5f3539c25c8bc0e3bb6","size":29317,"data":"","first_seen":"2023-03-07T01:15:57Z","last_seen":"2026-02-05T13:30:45.020042Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"68e280edf3cadafe4af8ccdc8782024d","sha1":"7467ad11f5f3a21a3a4e0ab8556912db67311d90","sha256":"3d8d725c431734a47f6dbbce8a3546d9490407d342cfbb48eba2eeddede260aa","sha512":"54c37251893e41b65d7aca0fb4899e47f3d04c6c01da858d0949305ce2b6315e37299d71eba8328191b74dda1ccb9bd5b5e153326ae1d407105a5062c11f3983","ssdeep":"","tlshash":"8251373fae0528b5aa2bbf5437f207d5373a3201b83344347b5cda6783954a45099be9","size":3073,"data":"","first_seen":"2023-03-07T01:15:57Z","last_seen":"2026-02-05T13:30:45.020868Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"e107c42e9c4c80175dc1980105298f97","sha1":"cce1c68cd7e445fea363c23ac1375fda49d40f89","sha256":"4cb6f8695c51fdbbc4e5b784c3e8d96eba2e4657c71b9f7a638fad14eee5b906","sha512":"1bd3950d5c65338b7a1b30e4e632bc50160f298faa01ab1def4043b374127aac3bee2a1068967373de826316fd06ae66ce5b4ef76af0b35c8dd0aad6874ff022","ssdeep":"","tlshash":"fbc080726d55c124498810670168eb3974c125442e65f06444d8cc1d3c00ee2987625c","size":165,"data":"","first_seen":"2024-04-06T15:27:35Z","last_seen":"2026-02-03T11:13:26.106013Z","times_seen":546,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"3074a59968a7d637f6cb91c306d9ed3d","sha1":"29901a3b2865c9b96fb7a38b726c355ea7905059","sha256":"4a07845be31728ca488c8a462b252448fd884a75fc40772e1aa71fa764fe8c48","sha512":"d7a47e0221b621ffe1c89252fc3222acbc2b14b9dfa18a0549e1ca3069adcfb8e92196b39946784ca01ad889b255183f17328cd1b0689ffe3ae6f4442017330f","ssdeep":"192:zcy7ECV0JKe/d7qm6PVhrcQkrikr6kTTiwdt+u3j:Iy4CV0Ei7qvNJy9ewNj","tlshash":"faf12b52a61c0133b3635273faa787d57836320e96a6105ddfa10f61e4dbe8653b2b8c","size":7866,"data":"","first_seen":"2024-08-19T17:33:54.730517Z","last_seen":"2024-08-19T17:33:54.730517Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:19.317378763Z","timestamp":1720474279317,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"41E6A348AAC9E9DB44BFA14B3AA29D411F4489B375AE1F1BE6B0D280AF98541D\"\r\nLast-Modified: Mon, 08 Jul 2024 01:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10187\r\nExpires: Tue, 09 Jul 2024 00:21:06 GMT\r\nDate: Mon, 08 Jul 2024 21:31:19 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b34ca6af54e2b9fea57d418f5d1928f7","sha1":"510b69f4470789a573217726d6f1a3d6ee765460","sha256":"41e6a348aac9e9db44bfa14b3aa29d411f4489b375ae1f1be6b0d280af98541d","sha512":"56fc288af1ca048d6ad95019c5fe4a6be829ae0e6d834e51d920e79cb96aa3de97763b94d41b4c691f461b7a46ef961dd157b791947e0463310e5d0abd1422c8","ssdeep":"","tlshash":"def0055627d5a6016a710a911de5d31a1e2058fb305018f223d451e33923bbe1ec8446","first_seen":"2024-07-08T05:19:45Z","last_seen":"2024-08-19T17:39:41.553406Z","times_seen":34939,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:19.368522717Z","timestamp":1720474279368,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"8E27309B919C0DCB3B0736DD99DAD8C7D3BC16B4816DD982E6AF6B79D7EAD9ED\"\r\nLast-Modified: Sun, 07 Jul 2024 03:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4017\r\nExpires: Mon, 08 Jul 2024 22:38:16 GMT\r\nDate: Mon, 08 Jul 2024 21:31:19 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"abec3934929082bd707108b7042796da","sha1":"4f200b04ad1c6fcac9833107c492a59ebf36dc6e","sha256":"8e27309b919c0dcb3b0736dd99dad8c7d3bc16b4816dd982e6af6b79d7ead9ed","sha512":"cab860d7ad427afe6f633e714c3c41da9055d0ff75b7366e2df1866a99077e350b7ac25f40c0675b0d830748b0725c07a4bdf934cb09f6085fb02f27c1a1610b","ssdeep":"","tlshash":"c4f00e82427c39147ae03e2b2bf9d12a1f34adf815611df5645013937453fed01c8e4b","first_seen":"2024-07-07T10:17:04Z","last_seen":"2024-08-19T17:44:50.422556Z","times_seen":23660,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:19.68640079Z","timestamp":1720474279686,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"E38B3080A1752122F5A174604BD307C54BE31C02E0CDB8E2D9354E2A04E1B50F\"\r\nLast-Modified: Sun, 07 Jul 2024 11:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=19087\r\nExpires: Tue, 09 Jul 2024 02:49:26 GMT\r\nDate: Mon, 08 Jul 2024 21:31:19 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"41036a4c62e61466443bce27a927e029","sha1":"39a2a8a258c5feaf020246696135700b0c30740d","sha256":"e38b3080a1752122f5a174604bd307c54be31c02e0cdb8e2d9354e2a04e1b50f","sha512":"50f9d880f413719b46b17c5f9633a79d3f2f4b41d3d415f05206c6c628277fe0acbc56cacdd931ec59b7a4fdcebb3b252b0bc80578bd35ee05112d2723a6fae3","ssdeep":"","tlshash":"2cf0c0aa29d5f88076711a24b864ea246b205e6a7810daf614d082fbf8057a6450844e","first_seen":"2024-07-07T14:27:09Z","last_seen":"2024-08-19T17:43:40.432277Z","times_seen":38887,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:20.000027752Z","timestamp":1720474280000,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"74180138E5609F4047B5A20BC58BFD360DEA9BBA200ACF14FD43FC2D6B5DA34B\"\r\nLast-Modified: Sun, 07 Jul 2024 04:18:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11152\r\nExpires: Tue, 09 Jul 2024 00:37:11 GMT\r\nDate: Mon, 08 Jul 2024 21:31:19 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c1f3573a71cfe2a8f30b3fbc7d2d3453","sha1":"101371f5030c41e4dad4e1e6ac102342db020318","sha256":"74180138e5609f4047b5a20bc58bfd360dea9bba200acf14fd43fc2d6b5da34b","sha512":"820baf1cd85b3df20be2ec47b112a3dbce7acb3ed6d5c1ed348669e7a45315b1c544dd62618ed8db4156d1b1703f043f697e8152e403a7db396c55879a936c10","ssdeep":"","tlshash":"5af00e650690bd027672462794d8c42d1f24a6f9344130e2a86011daac21feb9eac00b","first_seen":"2024-07-07T11:38:19Z","last_seen":"2024-08-19T17:44:28.537533Z","times_seen":17242,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.045960107Z","timestamp":1720474281045,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 11 Aug 2023 18:18:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64d67b72-1590\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 191595\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=4TT58WA4WwZ2aai3UkEF0cwQWzAti2PHH2Wf6%2BimCxVo8PcZhTjfP4lr6U2qUcuAq7WFVqDwFelOAyUmbGnCp0DpUdvyS%2BxbBJ0fXFtbqNQSfnx85FmPt7QuYsDFpQOwT7z5pDyEMU%2F%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3fab0a56c6-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2279,"size_decoded":5520,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4358)","md5":"6823120876c9afc8929418c9a6f8e343","sha1":"90b0adb37d70ffec5f9189c36bb0027c310c9502","sha256":"b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1","sha512":"63d84226815c831245754adb30040ee72dcf218d01f991a5619675374bbe3b706e3721d32f5120d9d27e500813e8214244992b3875b3a7e7e4bc7ded5201183a","ssdeep":"96:HwXAr75hrG6QBwuAr4R2LdgQ6B89w1UQllAqv5StcXyunriDoYeTZ/bOrIh0ksec:Hwwru6QBwrr4k+Q6i9wS+lhSS6r85jCN","tlshash":"a8c1314dfb777123024ae0f2731b520ab6b7509e652841ac765decf688b4d1a1a73fb0","first_seen":"2023-11-08T01:34:44Z","last_seen":"2026-04-03T22:31:34.369876Z","times_seen":147260,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-includes/js/masonry.min.js?ver=4.2.2","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.057705776Z","timestamp":1720474281057,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 13 Jun 2020 18:53:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5ee520a7-5e4a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 191595\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2FxJ0zqqep6a9nqJYvC3R1wixbPTKo%2FCCTY2ARJtPjy2UK78o4Jbjkt4AlrdGV%2BwqcNAyDJZ2%2F%2B2T%2F6O6iyqVrfbZfBaLe6OXW5D69EpWUXb5UjLGDtygjGpPfFo9dLunCv1N4oCv%2BZKQ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3fab0e56c6-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":8098,"size_decoded":24138,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (23966)","md5":"3b3fc826e58fc554108e4a651c9c7848","sha1":"76778fd446e2ff2377588a7b4ac4d79f258427c9","sha256":"e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb","sha512":"ae192d8d804f7dafd8b7a95220ceb66c0c308a51cdf42c172c20f71f50052e4529b01f8781c5f305e1e0d6c5367d9678f1d908ee4273db594fbb650c56a9f61b","ssdeep":"384:Ar7mIr/Dh5rA3rzB4rMhr/XWGHW/6rMz1xftF2OUVP4eAnbhfreD6dCBEOav7blM:+SxxGG2/71xftFqVP4eAnI0ROavPSCzo","tlshash":"b9b2848f73407425428bf16696af020fb137655c7a4790acba6ad8db1cb984d2037fbd","first_seen":"2023-03-07T01:02:57Z","last_seen":"2026-04-03T22:02:01.964141Z","times_seen":65219,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-includes/js/comment-reply.min.js?ver=6.5.5","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.069568421Z","timestamp":1720474281069,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-includes/js/comment-reply.min.js?ver=6.5.5 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 08 Apr 2022 20:07:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"625095f6-ba5\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 191595\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BHhBKFgSCW95%2B229C%2FSlGqfdfE%2B9qzPTAQGF%2Fyq1EIlTb5%2BjDz%2FPbbaGoqXvxF1M2e%2FpJDD9VTR5l%2BVrk1FPS5rf9rvXAzeQIpNyXSA9XVXgclaEoVSsr8lst21VycsyjODCuc5VV%2Fzh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3fab0f56c6-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1773,"size_decoded":2981,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (2946)","md5":"492f2c1a7ea7eb83fe42e0ff7cb51aa2","sha1":"db36a77f6aaa2063bfbec02c2c0e967438c5a245","sha256":"e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789","sha512":"eee6a1c268a519f4f281b2d76b5193bb068e94d1410372ef062587888589e139b20bb635e2331e97c857d7d835e9372f50822c5daed29b139ab91ff5633c7a7f","ssdeep":"","tlshash":"b15186e433cd5d365ac372365ebe520631312709a90405544822c89964bcffa23b6bbf","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-03T21:56:00.619555Z","times_seen":24955,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.googletagmanager.com/gtag/js?id=G-PDSG0SNMXZ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.190375176Z","timestamp":1720474281190,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /gtag/js?id=G-PDSG0SNMXZ HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\nexpires: Mon, 08 Jul 2024 21:31:21 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 96102\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":96102,"size_decoded":277839,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (3034)","md5":"32130cdb4efaa9d00eb325213a69191f","sha1":"f3be66d70ce3f22aaae766e62087d3b596313c08","sha256":"0a86a9d628dd61c67e10cd367b76a5badda4c4b2c2c41c2dbc1ffe0725b5ee13","sha512":"6c6f9515f226fbf7c2a3e9aa6d2edfcc9372bd1c885868358f59f6839ae7c2b8b7ef4511c61d8d73c26e0cfa2accae1e0cd361eb6455923dec371b01dbd20475","ssdeep":"3072:Zglg1aiJ9iVYZLQSFmhf3w0kj9nvLMzU467JXDBin0bukMt/SApLm/q+n:Og+VY9QSFW05HVin0qkMt/SApLm/q4","tlshash":"074419d973d6742643a7b478507f014ba17b6ce2b80cc894f189c8e42e74a9a527bf7c","first_seen":"2024-08-19T17:33:54.711425Z","last_seen":"2024-08-19T17:33:54.711425Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.googletagmanager.com/gtag/js?id=G-X5ZLCH30PH","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.268318049Z","timestamp":1720474281268,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /gtag/js?id=G-X5ZLCH30PH HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\nexpires: Mon, 08 Jul 2024 21:31:21 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 104201\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":104201,"size_decoded":314266,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5945)","md5":"80e6a81e4c3dfdcf418c54bc4e8b60b6","sha1":"cc7dbc9b9a4aa64747c640d25c125520883e536a","sha256":"8d9a21ea406113e893496767713a7bbeebcb608b8c19d657deccf8394ff3d7fe","sha512":"1588a5c75e15c3528b4f7ac66ef9c9963bcf33ca9cee631e59c7ee0ebb68b8af62764d8faba6d8a3c5e50b95697d35de70949c91fcc4719b9cd838cde2099daa","ssdeep":"3072:CW44gTnaiJ9iVYZLQOFVhf3w0Yj9nvLMzU467JXDBin0bukMYM/AAcLm/qHn:R4nn+VY9QOFro5HVin0qkM//AAcLm/qH","tlshash":"1f6428da73c674225296f478507f028ba57b2ce2b80cc895f189cce42e74a9a5137f7c","first_seen":"2024-08-19T17:33:54.712299Z","last_seen":"2024-08-19T17:33:54.712299Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-content/themes/quemag-wp/css/fontawesome-free-5.13.1-web/webfonts/fa-solid-900.woff2","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.320326366Z","timestamp":1720474281320,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-content/themes/quemag-wp/css/fontawesome-free-5.13.1-web/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://energyleveldiagram.com/wp-content/themes/quemag-wp/css/fontawesome-free-5.13.1-web/css/all.min.css?ver=5.13.1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 80328\r\nlast-modified: Fri, 18 Feb 2022 13:58:05 GMT\r\nvary: Accept-Encoding\r\netag: \"620fa5ed-139c8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 94236\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=7E0podqgtlOlLWC%2FYkjb1NvpQDtqn%2FTATmjiS7h2qBLMGIiOl4xxj0cCzRuMnHSxuN0elVHrwqAfbmqhnqdyochll2mwTBC3HVMbpxl2iOeScnp4FAMBGrBTxmF5cHYwyGEDWyjIZgaY\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e421d0756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":80328,"size_decoded":80328,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 80328, version 331.589","md5":"412a43d6840addd683665ec12c30f810","sha1":"f3be6605dbff23cf22ec3abddd1141a81a99e3aa","sha256":"0bf1b8d8ac1b4ef0caea0db8cbe1b6a35f8a84a2f5fffa2421936cc11a1a91fc","sha512":"aadf26f3d595c0b3c9cc1f2a762559b37ba9fa0be055e8128dfa98005510ea7e2ae412abe9af7d593034d1b9126be542d7bad8d986b0128f2c2dffc6b71ec66f","ssdeep":"1536:Yfry2m5ogN0SJFfJpaz+AbNW6iGKY+aNHUO4dhdx4LxfGhRf:YfIoguYjpa3b2GKYN0N0f+f","tlshash":"cd7302dcbb83b68bb583370f2e9c59615695080de0aa11e252e5eccc0add36ed175cce","first_seen":"2023-04-15T16:03:12Z","last_seen":"2026-04-03T19:11:36.48135Z","times_seen":1461,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-content/themes/quemag-wp/js/custom.js?ver=1.4","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.325900844Z","timestamp":1720474281325,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-content/themes/quemag-wp/js/custom.js?ver=1.4 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 18 Feb 2022 13:58:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"620fa5ed-1fe5\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 191596\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iuYQp6yZZyBr%2BjFWJIEs0HZr9P4OGM07KOw4K4ZNupegBykH%2BFz0KSoL6D38SKYnHTFjcwkaizDphbQdjs1o%2BynhdjMdyVOniLPKu0WAGsQ89ewtBtM21F6Vnyi8KA6Mulp%2Fr4E5NCyA\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3f9b0856c6-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2210,"size_decoded":8165,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"3123dd39c8876690c6bb7c7b5ea6a421","sha1":"d2132e290733c37bfbfd72ff75b53b46252ba676","sha256":"1007034373ce25a1ca75b694f32e76614c8501c645016c8f1e3644ae1417123c","sha512":"f1b6594b944aab828f290d441fa039ddd70b471048adac0ecc7e3a1f6f98112215b97feda2b335b5bd70502443c869468a045e739912b615870a98fe74cd3ce0","ssdeep":"192:47lPuoSUMZL9A+34etakkIuJ5uLu8KuOu5ufuQRcuQXubQCubuOuPuTup+uzcEuR:47lPuoyZLe+34etavISwBKtuGZcfeytH","tlshash":"37f1f05c300155f58577b7b58bbde508ff2a4527830ac264b87e32a81f7106861e3fae","first_seen":"2024-07-07T21:21:16Z","last_seen":"2025-10-29T02:54:25.655959Z","times_seen":4,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.327036032Z","timestamp":1720474281327,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"ec9d56a6b282ef752ec0666f04a671f0","sha1":"cab54daaa6774934facdad5fc4588d8126fdd704","sha256":"f43fa8a752a1866beb8d9b0df5bb5c023744cec10ae82290f4e39922c74360d7","sha512":"6001a6ccad5f473d7c733bed84e1ca8120e676f65dbbd76ce4860e9492404b6907409ee01947a9412fc171c624439e68ebd3707c5eb0b5fd4ed719207a983238","ssdeep":"","tlshash":"aaf0b3dc1bba6c02ee134c30289cf25eb1f1442c082c2a212039a2c0c0d62eb8b1cf5f","first_seen":"2024-07-08T00:04:11Z","last_seen":"2024-08-19T17:41:05.444831Z","times_seen":1594,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-content/themes/quemag-wp/js/jquery.sticky-kit.js?ver=1.1.2","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.361260079Z","timestamp":1720474281361,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-content/themes/quemag-wp/js/jquery.sticky-kit.js?ver=1.1.2 HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 18 Feb 2022 13:58:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"620fa5ed-af5\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 191595\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=zlYayFqP4YFX0M0uHFo2H2mkVauGrUKY%2Fi5SyJWVjm1Aw5spsf6sJmcSdt1RUxna95MVYeRA5b7ypIs5T08me0M7mFeK9cqkp9xcFBqQkbTFntWwc%2F6VmvtQ63TjigVb2xUS2%2BjPEKn2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3fab0956c6-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":78749,"size_decoded":2805,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (529), with CRLF line terminators","md5":"40e709c295efd6939ac5c72e9cfdc140","sha1":"c28ff6208d66201d0781ef5470263044254cd743","sha256":"ac9ffa0e8063cda13637ea791ef745b0b702daa77fd4e348fcddb60738815bdb","sha512":"a384b20ea66b5f6745fdb0a98b3922504cdd8c88468d947c5ebc7401a998f9fc62b7c9b18b5be07faf0d1af6b8c2040d1f968d56eb610d5b79b349c6530239ba","ssdeep":"","tlshash":"7951a9c4bb58f93846bfa2b063fe250591b6d3386ad38070ed0e5cc51959e6930f7b85","first_seen":"2023-03-12T21:06:10Z","last_seen":"2026-03-30T17:28:33.124098Z","times_seen":83,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.36227283Z","timestamp":1720474281362,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"775f52f5636af18295559b3196da2f9d","sha1":"f9e0e67290809e82162eb8a0cb60626c4e3b1a0f","sha256":"250e1806a60c4c0d34e0a9d81b7a1bd7484335f52b0d36cebbd5649fa62f0a8f","sha512":"b6c9ae4c88e07371d15dde8823908ef6c21d0d9e90684b4c27a30f02a4c2342cf56ecf46a2c14a62931567734a9a351f5076acb1b57b085a08dc65f7af0b549a","ssdeep":"","tlshash":"72f0d48609b8be444f22c82819eae6b83421df4c951e98292134db7484463ad651461a","first_seen":"2024-07-08T00:03:24Z","last_seen":"2024-08-19T17:41:03.865861Z","times_seen":1522,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"fonts.gstatic.com/s/ruda/v28/k3kfo8YQJOpFqngdaA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.373104994Z","timestamp":1720474281373,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /s/ruda/v28/k3kfo8YQJOpFqngdaA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://energyleveldiagram.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22076\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Jul 2024 05:03:57 GMT\r\nexpires: Fri, 04 Jul 2025 05:03:57 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 24 Aug 2023 21:12:58 GMT\r\ncontent-type: font/woff2\r\nage: 404844\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":22076,"size_decoded":22076,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22076, version 1.0","md5":"f2de0464ed367cf97ae862297000e074","sha1":"427e9810079a87c2d98b7041106aa9a0854f7505","sha256":"cc49df8b4c162b38fdc92a11b7cd2bd10d59af9e93302f1052b77857a02da7c0","sha512":"fb9173c3e4d30d9ee6162be3bb00beeb32509f0cc16fc45ba0d954c2a862c6c7a4bd1e586e3dcc5942cdb94157fd48abd8a320aab1cb43cc9958a217695ce61e","ssdeep":"384:SQF1sgNR40fxqiBumfZk6Fouk6eYq9VKwd6ET6Xp3JR/R+0z7jmeWBHzx8A:S2agNR4OxbB/fZkiouk6eYMKhEe5Z/tY","tlshash":"20a2e079e0d9bf27b810371cc782877c470fa4a297282ad641a88b9ed0791539f759d8","first_seen":"2023-08-28T19:49:46Z","last_seen":"2026-03-14T05:36:45.155895Z","times_seen":240,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.374471504Z","timestamp":1720474281374,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"775f52f5636af18295559b3196da2f9d","sha1":"f9e0e67290809e82162eb8a0cb60626c4e3b1a0f","sha256":"250e1806a60c4c0d34e0a9d81b7a1bd7484335f52b0d36cebbd5649fa62f0a8f","sha512":"b6c9ae4c88e07371d15dde8823908ef6c21d0d9e90684b4c27a30f02a4c2342cf56ecf46a2c14a62931567734a9a351f5076acb1b57b085a08dc65f7af0b549a","ssdeep":"","tlshash":"72f0d48609b8be444f22c82819eae6b83421df4c951e98292134db7484463ad651461a","first_seen":"2024-07-08T00:03:24Z","last_seen":"2024-08-19T17:41:03.865861Z","times_seen":1522,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.381707283Z","timestamp":1720474281381,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"775f52f5636af18295559b3196da2f9d","sha1":"f9e0e67290809e82162eb8a0cb60626c4e3b1a0f","sha256":"250e1806a60c4c0d34e0a9d81b7a1bd7484335f52b0d36cebbd5649fa62f0a8f","sha512":"b6c9ae4c88e07371d15dde8823908ef6c21d0d9e90684b4c27a30f02a4c2342cf56ecf46a2c14a62931567734a9a351f5076acb1b57b085a08dc65f7af0b549a","ssdeep":"","tlshash":"72f0d48609b8be444f22c82819eae6b83421df4c951e98292134db7484463ad651461a","first_seen":"2024-07-08T00:03:24Z","last_seen":"2024-08-19T17:41:03.865861Z","times_seen":1522,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"fonts.gstatic.com/s/ruda/v28/k3kfo8YQJOpFqngdaA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.428130093Z","timestamp":1720474281428,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /s/ruda/v28/k3kfo8YQJOpFqngdaA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://energyleveldiagram.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22076\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Jul 2024 05:03:57 GMT\r\nexpires: Fri, 04 Jul 2025 05:03:57 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 24 Aug 2023 21:12:58 GMT\r\ncontent-type: font/woff2\r\nage: 404844\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":22076,"size_decoded":22076,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22076, version 1.0","md5":"f2de0464ed367cf97ae862297000e074","sha1":"427e9810079a87c2d98b7041106aa9a0854f7505","sha256":"cc49df8b4c162b38fdc92a11b7cd2bd10d59af9e93302f1052b77857a02da7c0","sha512":"fb9173c3e4d30d9ee6162be3bb00beeb32509f0cc16fc45ba0d954c2a862c6c7a4bd1e586e3dcc5942cdb94157fd48abd8a320aab1cb43cc9958a217695ce61e","ssdeep":"384:SQF1sgNR40fxqiBumfZk6Fouk6eYq9VKwd6ET6Xp3JR/R+0z7jmeWBHzx8A:S2agNR4OxbB/fZkiouk6eYMKhEe5Z/tY","tlshash":"20a2e079e0d9bf27b810371cc782877c470fa4a297282ad641a88b9ed0791539f759d8","first_seen":"2023-08-28T19:49:46Z","last_seen":"2026-03-14T05:36:45.155895Z","times_seen":240,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.431290976Z","timestamp":1720474281431,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://energyleveldiagram.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 12808\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 03 Jul 2024 12:13:00 GMT\r\nexpires: Thu, 03 Jul 2025 12:13:00 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 15 Aug 2023 18:38:40 GMT\r\ncontent-type: font/woff2\r\nage: 465501\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":12808,"size_decoded":12808,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 12808, version 1.0","md5":"19cedc9fa126ec320571c1cfe9f06955","sha1":"647422a8abb7a90122b8170bfc3bba28496b6d1c","sha256":"201dc695ba7ad24f5b671ffbb0074bcf1880605ab9bbf91a380465b6fe760988","sha512":"ded3a3c8f550fad7bb83f9c0a99ed976b6df3ef594531f63d7bb7deb94bc0be32b854e575a5316c6992295db250703f95b93cc8013197e12d9f2eb8c959b6a1b","ssdeep":"384:FINipa7TG0hiQoRpoJ9qyzPhuWWQuh33i:tiy0iQoRpQnzPhung","tlshash":"1f42cf29cda17307e359ca30f9cc4f1c79620b91077ed2a86a16e67d1e498a1725e230","first_seen":"2023-08-25T09:05:38Z","last_seen":"2026-04-03T13:06:33.236374Z","times_seen":302,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.445453413Z","timestamp":1720474281445,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"775f52f5636af18295559b3196da2f9d","sha1":"f9e0e67290809e82162eb8a0cb60626c4e3b1a0f","sha256":"250e1806a60c4c0d34e0a9d81b7a1bd7484335f52b0d36cebbd5649fa62f0a8f","sha512":"b6c9ae4c88e07371d15dde8823908ef6c21d0d9e90684b4c27a30f02a4c2342cf56ecf46a2c14a62931567734a9a351f5076acb1b57b085a08dc65f7af0b549a","ssdeep":"","tlshash":"72f0d48609b8be444f22c82819eae6b83421df4c951e98292134db7484463ad651461a","first_seen":"2024-07-08T00:03:24Z","last_seen":"2024-08-19T17:41:03.865861Z","times_seen":1522,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bind.bestresulttostart.com/scripts/statistics.js?s=7.8.2","fqdn":"bind.bestresulttostart.com","domain":"bestresulttostart.com","tld":"com"},"ip":{"addr":"193.163.7.113","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.730364617Z","timestamp":1720474281730,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /scripts/statistics.js?s=7.8.2 HTTP/1.1\r\nHost: bind.bestresulttostart.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14956\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST\r\naccess-control-allow-headers: X-Requested-With\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000;\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":14956,"size_decoded":36986,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36986), with no line terminators","md5":"67931d4afa6241cb9dcd43f372d11eb6","sha1":"873e636f1e1190156d1eda637092f0ea607dc6af","sha256":"f0045fac6f511f58f5aa2600ddcecc0e60bc47cda0851d856e648270b658fa61","sha512":"a17c20bf8089109d857cb783d3972c2473e671defe0ae04fd33e25d6bcab74b3ccfe40738421d55bd366da3ba5a2675927e0f7f3c876d9a2097243675fb56b6a","ssdeep":"768:guijejWpX6b+Dhyvt7cy/5vFN3kdVxEutMSrpy2Ev9YQGw5jYgi7T6FObAooTZb3:k3iqAU8xpSWM+IPEtI8","tlshash":"8bf2a4c476c0b8c613079b377b29b1e9e969ace461c5489ffa04bc58f87d522fad0930","first_seen":"2024-06-01T17:35:02Z","last_seen":"2024-08-19T21:05:36.945746Z","times_seen":903,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"bind.bestresulttostart.com/scripts/statistics.js","fqdn":"bind.bestresulttostart.com","domain":"bestresulttostart.com","tld":"com"},"ip":{"addr":"193.163.7.113","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.743411489Z","timestamp":1720474281743,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /scripts/statistics.js HTTP/1.1\r\nHost: bind.bestresulttostart.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14956\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST\r\naccess-control-allow-headers: X-Requested-With\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000;\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":14956,"size_decoded":36986,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36986), with no line terminators","md5":"67931d4afa6241cb9dcd43f372d11eb6","sha1":"873e636f1e1190156d1eda637092f0ea607dc6af","sha256":"f0045fac6f511f58f5aa2600ddcecc0e60bc47cda0851d856e648270b658fa61","sha512":"a17c20bf8089109d857cb783d3972c2473e671defe0ae04fd33e25d6bcab74b3ccfe40738421d55bd366da3ba5a2675927e0f7f3c876d9a2097243675fb56b6a","ssdeep":"768:guijejWpX6b+Dhyvt7cy/5vFN3kdVxEutMSrpy2Ev9YQGw5jYgi7T6FObAooTZb3:k3iqAU8xpSWM+IPEtI8","tlshash":"8bf2a4c476c0b8c613079b377b29b1e9e969ace461c5489ffa04bc58f87d522fad0930","first_seen":"2024-06-01T17:35:02Z","last_seen":"2024-08-19T21:05:36.945746Z","times_seen":903,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"bind.bestresulttostart.com/xf4mKQ","fqdn":"bind.bestresulttostart.com","domain":"bestresulttostart.com","tld":"com"},"ip":{"addr":"193.163.7.113","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.76059538Z","timestamp":1720474281760,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /xf4mKQ HTTP/1.1\r\nHost: bind.bestresulttostart.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14956\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST\r\naccess-control-allow-headers: X-Requested-With\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000;\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":14956,"size_decoded":36986,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36986), with no line terminators","md5":"67931d4afa6241cb9dcd43f372d11eb6","sha1":"873e636f1e1190156d1eda637092f0ea607dc6af","sha256":"f0045fac6f511f58f5aa2600ddcecc0e60bc47cda0851d856e648270b658fa61","sha512":"a17c20bf8089109d857cb783d3972c2473e671defe0ae04fd33e25d6bcab74b3ccfe40738421d55bd366da3ba5a2675927e0f7f3c876d9a2097243675fb56b6a","ssdeep":"768:guijejWpX6b+Dhyvt7cy/5vFN3kdVxEutMSrpy2Ev9YQGw5jYgi7T6FObAooTZb3:k3iqAU8xpSWM+IPEtI8","tlshash":"8bf2a4c476c0b8c613079b377b29b1e9e969ace461c5489ffa04bc58f87d522fad0930","first_seen":"2024-06-01T17:35:02Z","last_seen":"2024-08-19T21:05:36.945746Z","times_seen":903,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"bestresulttostart.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"secure.gravatar.com/avatar/7602a1c5c04fceaee3ec939eb9833255?s=60\u0026d=mm\u0026r=g","fqdn":"secure.gravatar.com","domain":"gravatar.com","tld":"com"},"ip":{"addr":"192.0.73.2","port":0,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.864763164Z","timestamp":1720474281864,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /avatar/7602a1c5c04fceaee3ec939eb9833255?s=60\u0026d=mm\u0026r=g HTTP/1.1\r\nHost: secure.gravatar.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1125\r\nlast-modified: Wed, 11 Jan 1984 08:00:00 GMT\r\nlink: \u003chttps://gravatar.com/avatar/7602a1c5c04fceaee3ec939eb9833255?s=60\u0026d=mm\u0026r=g\u003e; rel=\"canonical\"\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline; filename=\"7602a1c5c04fceaee3ec939eb9833255.png\"\r\nexpires: Mon, 08 Jul 2024 21:36:21 GMT\r\ncache-control: max-age=300\r\nx-nc: HIT arn 1\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1125,"size_decoded":1125,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 60x60, components 3","md5":"ec04b2bedd3c334206008252fb5292ce","sha1":"5c1dbc8a1fea76c2ce472035711305e3cfb04dc5","sha256":"44f00ce69281d19a4f459f94e693dabb9aa5fb0964347359058a08282ffbf9bf","sha512":"ef13d2d906ae8c3095652cee8f6a3e22cfed5bc6b2e3bf876c121b9eb525e4b30f7eaea12755328f9954cdc5f14ec69b9c02fd830272f6566b3a925150b2e31d","ssdeep":"","tlshash":"5621426a974203e0fc26c3bf595b3cab92f869013a949e263bf502d2d690ed1854c90d","first_seen":"2023-04-11T22:38:48Z","last_seen":"2025-07-24T07:09:05.009364Z","times_seen":99,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.897254839Z","timestamp":1720474281897,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3368\r\nExpires: Mon, 08 Jul 2024 22:27:29 GMT\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.898112553Z","timestamp":1720474281898,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3368\r\nExpires: Mon, 08 Jul 2024 22:27:29 GMT\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.911309898Z","timestamp":1720474281911,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/ HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:20 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-pingback: https://energyleveldiagram.com/xmlrpc.php\r\nlink: \u003chttps://energyleveldiagram.com/wp-json/\u003e; rel=\"https://api.w.org/\", \u003chttps://energyleveldiagram.com/wp-json/wp/v2/posts/3164\u003e; rel=\"alternate\"; type=\"application/json\", \u003chttps://energyleveldiagram.com/?p=3164\u003e; rel=shortlink\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nx-permitted-cross-domain-policies: master-only, master-only\r\nreferrer-policy: same-origin, same-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=sE%2BMwB6KvScoElSKJIhPYxLTik8ALnbKiII25uCFkEwCjIcp0pIELXxn0Qk%2BW%2BnhDxb%2FJpza4c2NoDdWU7jNSc4WL3A1EvFKwk63SQBMUowTf9JS9CI1uNG4wv1%2BZXBVH9nPCk%2FB0ke6\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e3c8a5d7131-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":14321,"size_decoded":48187,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8586), with CRLF, LF line terminators","md5":"f90664448b27648be84466ebddc1f2ce","sha1":"bd768baec14620d6ff8cd73df792c200e2b5cc86","sha256":"6681b0d8a0a8d96b0f99281b61ed00ebd7c639f1e0a129b5118e02247c1be61b","sha512":"431487c4ea8a50308d13059300e30240a82c796dab965f580873926f4104d83186f978c0117c224f6a603430b1f2e2bb39bbd7ef205fdf0c08553e1ed94b68ac","ssdeep":"768:yDL0mZdapF+kb/ivI7kRSsyuzBFAeWm6gNFBg79bNedMUnKOUNjr3Qdz0VNlc3tp:yDLap9piGwG9hOUNjjQdz0VNl7mAzeK2","tlshash":"b123397160c4403a27075bb89619b368f7b1c646ff461ae6b2fc316cef90e7245a3939","first_seen":"2024-08-19T17:33:54.72101Z","last_seen":"2024-08-19T17:33:54.72101Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.912532152Z","timestamp":1720474281912,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3368\r\nExpires: Mon, 08 Jul 2024 22:27:29 GMT\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.913484716Z","timestamp":1720474281913,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3368\r\nExpires: Mon, 08 Jul 2024 22:27:29 GMT\r\nDate: Mon, 08 Jul 2024 21:31:21 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"energyleveldiagram.com/wp-content/uploads/2022/01/cropped-Energy-Level-Diagram-Logo-e1650030017572-32x32.png","fqdn":"energyleveldiagram.com","domain":"energyleveldiagram.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:21.927222396Z","timestamp":1720474281927,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-content/uploads/2022/01/cropped-Energy-Level-Diagram-Logo-e1650030017572-32x32.png HTTP/1.1\r\nHost: energyleveldiagram.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://energyleveldiagram.com/what-is-the-sequence-of-energy-transformations-that-occur-in-a-nuclear-reactor/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_PDSG0SNMXZ=GS1.1.1720474281.1.0.1720474281.0.0.0; _ga=GA1.1.901776518.1720474282; _ga_X5ZLCH30PH=GS1.1.1720474281.1.0.1720474281.0.0.0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:21 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 15 Apr 2022 13:40:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"625975d3-858\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 131666\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Zzc2vht3MyMDlhnOhPlRT%2BXTmJU833aqx4%2FpkwltasqJve%2BNHDbK4KPTzDGw6CTWQDf2%2FzZJxaeOZg7lZhpZ8wKrCxXHTnA7kIDX2OKivavtou9cgTxYxmSNZ0DjFL3EyloyKZ3uxQJt\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e455fd756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":14327,"size_decoded":14327,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"e1ce75dbe2b22bc87fd2cdd5152342b8","sha1":"6b71fb13e79d3963066a1c9844d099762ab5ff85","sha256":"8f4ba2e3f9e9326d112c3ffb35a3c340d58771d7da7f0d6896ef8f03d9af0cb1","sha512":"b098e01c4144ea55cea7345841961120ec64586a3a9269205332bc7b7f13d6a28c3ad356c785e8e92ca090f91f4c38f1a3a4a907d47e36d775a09ef9457d1b2e","ssdeep":"384:ovEKTrQpHaQLv5f3iWOePRjZQu6vW+0YbXMTFfkkrRq:ovEosDhKWBPolvW+QhkkrRq","tlshash":"7b52d039b1de2f1cd1eb16e6ba0d4524be15505eea14407d0cbd30e62f0eb886c9bad9","first_seen":"2024-08-19T17:33:54.721728Z","last_seen":"2024-08-19T17:33:54.721728Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"cdn.rdntocdns.com/rthrttu.php","fqdn":"cdn.rdntocdns.com","domain":"rdntocdns.com","tld":"com"},"ip":{"addr":"45.9.149.210","port":0,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:22.283926185Z","timestamp":1720474282283,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /rthrttu.php HTTP/1.1\r\nHost: cdn.rdntocdns.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 231\r\nOrigin: https://energyleveldiagram.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 6026\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST\r\naccess-control-allow-headers: X-Requested-With\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":6026,"size_decoded":14233,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (14233), with no line terminators","md5":"6c899067b95977c68fc5f8501428d1bd","sha1":"67700832cf8e0d6f21a57dbcdb315cedf7ff9504","sha256":"99c8d8e412d2f42c88eb77204937bb8e92aad289d959618e507dee5dcb7bfea6","sha512":"98c56927d8a2f561a1c872147ee3353cb4ae01a15e31b6ede01016d5121da0f273f6dcff1bac23e0b05209569a6fab09e2bba5dfcf769c16a37f21c200126113","ssdeep":"384:tDP0URygw15D4xOBhXpojfc73EgqOwY4PdtIYpnpmtHZYJbvN57dA5l5VBe31eEm:tDPi5D4xOB1pojE73rqFY4PdtIYpu2JC","tlshash":"ba52658d33d1b8d3829b9bbb771bb1f8f935589d715408cee844b824f8bd454da84231","first_seen":"2024-06-01T21:37:48Z","last_seen":"2024-08-19T21:04:28.568009Z","times_seen":1170,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"threatfox","sensor_type":"url","title":"","description":"ThreatFox","scan_date":"2024-06-08","alert":"Unknown malware","trigger":"cdn.rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Unknown malware","link":"https://threatfox.abuse.ch/","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"cdn.rdntocdns.com/rthrttu.php","fqdn":"cdn.rdntocdns.com","domain":"rdntocdns.com","tld":"com"},"ip":{"addr":"45.9.149.210","port":0,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:22.45056072Z","timestamp":1720474282450,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /rthrttu.php HTTP/1.1\r\nHost: cdn.rdntocdns.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 231\r\nOrigin: https://energyleveldiagram.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 6026\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST\r\naccess-control-allow-headers: X-Requested-With\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":6026,"size_decoded":14233,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (14233), with no line terminators","md5":"6c899067b95977c68fc5f8501428d1bd","sha1":"67700832cf8e0d6f21a57dbcdb315cedf7ff9504","sha256":"99c8d8e412d2f42c88eb77204937bb8e92aad289d959618e507dee5dcb7bfea6","sha512":"98c56927d8a2f561a1c872147ee3353cb4ae01a15e31b6ede01016d5121da0f273f6dcff1bac23e0b05209569a6fab09e2bba5dfcf769c16a37f21c200126113","ssdeep":"384:tDP0URygw15D4xOBhXpojfc73EgqOwY4PdtIYpnpmtHZYJbvN57dA5l5VBe31eEm:tDPi5D4xOB1pojE73rqFY4PdtIYpu2JC","tlshash":"ba52658d33d1b8d3829b9bbb771bb1f8f935589d715408cee844b824f8bd454da84231","first_seen":"2024-06-01T21:37:48Z","last_seen":"2024-08-19T21:04:28.568009Z","times_seen":1170,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"threatfox","sensor_type":"url","title":"","description":"ThreatFox","scan_date":"2024-06-08","alert":"Unknown malware","trigger":"cdn.rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Unknown malware","link":"https://threatfox.abuse.ch/","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/favicon.ico","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","date":"2024-07-08T21:31:24.260Z","timestamp":1720474284260,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"inputgreensorts.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 27 Jun 2024 10:35:05 GMT","end":"Wed, 25 Sep 2024 10:35:04 GMT"},"fingerprint":{"sha1":"F0:2D:D2:5C:8F:CF:FA:7C:A2:34:E8:67:1A:91:97:B2:F6:1D:E7:60","sha256":"15:7E:77:8E:67:E1:F2:63:6D:4D:43:C1:D2:05:3C:D1:AF:EB:B2:EF:16:A9:3E:E8:F0:F3:76:59:F9:7F:81:E2"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: inputgreensorts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas\r\nCookie: uuid=91d9949f-b3e0-4466-858f-0e3086a7bca0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Mon, 08 Jul 2024 21:31:24 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 6395\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=atAeImFiQY6NSy%2BHfp3PjdQI3XzDsjXsRnbWW9ynbcv%2FLIK5884Hkg4%2BSVFkx04IqOBf4v7NjCE%2Bp%2BhXaxUTuqw3%2BuRE%2F2QlzHk5oFNuLF0a1C99xdaECpJjzhtuT6zbbza26%2FYx\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8a032e5499d556c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"inputgreensorts.com/?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas","fqdn":"inputgreensorts.com","domain":"inputgreensorts.com","tld":"com"},"ip":{"addr":"172.67.171.26","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-08T21:31:24.037Z","timestamp":1720474284037,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"inputgreensorts.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 27 Jun 2024 10:35:05 GMT","end":"Wed, 25 Sep 2024 10:35:04 GMT"},"fingerprint":{"sha1":"F0:2D:D2:5C:8F:CF:FA:7C:A2:34:E8:67:1A:91:97:B2:F6:1D:E7:60","sha256":"15:7E:77:8E:67:E1:F2:63:6D:4D:43:C1:D2:05:3C:D1:AF:EB:B2:EF:16:A9:3E:E8:F0:F3:76:59:F9:7F:81:E2"}}},"request":{"raw":"GET /?p=mnstgnldme5gi3bpha3tqnq\u0026sub1=simn\u0026sub2=reterdas HTTP/1.1\r\nHost: inputgreensorts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Jul 2024 21:31:24 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\nset-cookie: uuid=91d9949f-b3e0-4466-858f-0e3086a7bca0; expires=Wed, 07-Aug-2024 21:31:24 GMT; Max-Age=2592000; path=/; domain=inputgreensorts.com\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EGxZLT5XblCOofGZGO6s05zBvtIa7zB63wBiFUBK%2FgH83H0HcOkOJCTmEs5E%2BALhdFQfy0gi6%2F7JRWl9E7%2F6zs6jczsi3nIVwB71NnqhTXhIWbEXMFeY8g0puYIXiOd3m9jXnwcj\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a032e536a5d5696-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32776,"size_decoded":53068,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29334)","md5":"74eb56508823a9a538d55ee48cc7c7cb","sha1":"e838e21dfaaf07f0db8cf914804400ca58ca4df3","sha256":"f82c758952d3c5b975ecb0a63cf94e6dde4a8864154c9bd03cd50f397e9d508e","sha512":"5c4b38aa580ac6f9af4bd6d1bb4b6a1508c624ebfceedbf0b1278e07c5fde40ba58eea08292057ce9cdc64079ed9606051cdc238e90312eec5c8b3bf7003eb06","ssdeep":"1536:Bumjy663mV8YPZ1WQMwEtxrzhG20XUeULYhop7Q0:ESy6YmVBPjWQMJxHhz0JC5","tlshash":"58333a5831422076cfa6b568227f61cb6e266902b4d5f865f5cce313cf29c46c0e3bb6","first_seen":"2024-08-19T17:33:54.723916Z","last_seen":"2024-08-19T17:33:54.723916Z","times_seen":1,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":25,"dns":4,"connect":1,"send":0,"wait":48,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"rest1.rdntocdns.com/DGC4PH?r1=energyleveldiagram.com","fqdn":"rest1.rdntocdns.com","domain":"rdntocdns.com","tld":"com"},"ip":{"addr":"45.9.149.210","port":0,"asn":49447,"as":"Nice IT Services Group Inc.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-08T21:31:29.728344305Z","timestamp":1720474289728,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /DGC4PH?r1=energyleveldiagram.com HTTP/1.1\r\nHost: rest1.rdntocdns.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Jul 2024 21:31:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\nexpires: Mon, 08 Jul 2024 21:31:22 GMT\r\nset-cookie: _subid=2epmg2jo6md6e; expires=Thu, 08 Aug 2024 21:31:22 GMT; path=/\na4fba=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjY2XCI6MTcyMDQ3NDI4Mn0sXCJjYW1wYWlnbnNcIjp7XCIxN1wiOjE3MjA0NzQyODJ9LFwidGltZVwiOjE3MjA0NzQyODJ9In0.Ia_o937lkVk8lwbY0ddiVUNpxaHroknQhcVeauH67I0; expires=Sun, 15 Jan 2079 19:02:44 GMT; path=/\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.4.33\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=yBY7kUlkHlTIB2xg5v1fukaLwF81fHT9vEcvbhqzsU4HShOy2AKFdJcO3EA5T6wCzpEFlhuQEdfdQ2LR2aXXdzRrm01wWmCFqAaad9tQ8aadWR0Wo5Tu%2FZeNsK5xH8U4amvALHxrJ%2FOVPmAN\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncf-ray: 8a032e4b0cd3b8a9-AMS\r\nalt-svc: h2=\":443\"; ma=60\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":10987,"size_decoded":10987,"mime_type":"application/x-gzip","magic":"gzip compressed data","md5":"129346e072fd95ee942652fa1b56e764","sha1":"d0dd4b76611d390abb22fef771f891e3d32a62fb","sha256":"e5416f7908ee480e969ef9591d4b62ab4e30cabbb287a27773ed5ea4499c5742","sha512":"ecf7947f1be8957dfdd5f24b94a71c91914e795be0c5b05e4104dd6fb6ad42a30aacfa70ded07261ddc3b2d907acba2866a9906fb0620e8866436066f001e4ca","ssdeep":"192:/4yfL1mXj3izZ0cq493+h/471mz5lJndBD6fv4iTWrP22JRcE7aK9rSD1ndmMEKl:/tRmGt1qm3XAzvtHDoAiT2BfcEetdmR2","tlshash":"5932c0566d77acdbe636787c6a9308004a203b6697e902185396fdce99cd284ab017f3","first_seen":"2024-08-19T17:33:54.72503Z","last_seen":"2024-08-19T17:33:54.72503Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-08","alert":"Sinkholed","trigger":"rdntocdns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}