{"report_id":"b528c729-d738-4b6c-aa7b-7215db3c094f","version":6,"status":"done","tags":[],"date":"2024-11-03T23:10:35Z","url":{"schema":"https","addr":"bleleadersto.com/s?f933e7ff","fqdn":"bleleadersto.com","domain":"bleleadersto.com","tld":"com"},"ip":{"addr":"172.67.165.252","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bleleadersto.com/s?f933e7ff","fqdn":"bleleadersto.com","domain":"bleleadersto.com","tld":"com"},"title":"Claim Your Free Token"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-01-12T23:10:35Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"oundhertobeconsi.com","ip":{"addr":"172.67.217.244","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2024-07-08","domain_rank":0,"first_seen":"2024-11-02T13:08:03.592165Z","last_seen":"2024-11-02T13:08:03.592165Z","alert_count":0,"request_count":2,"received_data":1717,"sent_data":999,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ukankingwithea.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-01-01","domain_rank":0,"first_seen":"2024-10-13T01:37:07.701375Z","last_seen":"2024-10-30T03:12:41.639963Z","alert_count":0,"request_count":2,"received_data":104551,"sent_data":860,"comment":"","tags":null,"fingerprints":null},{"fqdn":"yfueuktureu.com","ip":{"addr":"104.21.5.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-01-01","domain_rank":0,"first_seen":"2024-10-13T04:50:30.565285Z","last_seen":"2024-10-20T04:51:26.913738Z","alert_count":0,"request_count":1,"received_data":1138,"sent_data":510,"comment":"","tags":null,"fingerprints":null},{"fqdn":"d1wzdj81h1hubn.cloudfront.net","ip":{"addr":"54.230.241.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2023-01-18T21:11:48Z","last_seen":"2024-11-03T14:31:49.089704Z","alert_count":0,"request_count":1,"received_data":3631,"sent_data":440,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bleleadersto.com","ip":{"addr":"172.67.165.252","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2024-01-01","domain_rank":0,"first_seen":"2024-10-19T22:54:55.087486Z","last_seen":"2024-10-19T22:54:55.087486Z","alert_count":0,"request_count":2,"received_data":97815,"sent_data":920,"comment":"","tags":null,"fingerprints":null},{"fqdn":"undefined","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":142677,"first_seen":"2020-01-28T20:52:40Z","last_seen":"2024-10-30T05:23:08.209308Z","alert_count":1,"request_count":1,"received_data":0,"sent_data":966,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10T22:14:26Z","last_seen":"2024-10-30T01:31:34.131568Z","alert_count":0,"request_count":2,"received_data":3559,"sent_data":938,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dfdgfruitie.xyz","ip":{"addr":"172.67.132.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-08-22","domain_rank":0,"first_seen":"2022-12-12T12:59:22Z","last_seen":"2024-10-20T04:51:26.923537Z","alert_count":0,"request_count":1,"received_data":906,"sent_data":411,"comment":"","tags":null,"fingerprints":null},{"fqdn":"d3mqyj199tigh.cloudfront.net","ip":{"addr":"143.204.42.135","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2024-10-31T02:44:21.977724Z","last_seen":"2024-10-31T02:44:21.977724Z","alert_count":0,"request_count":1,"received_data":67830,"sent_data":416,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09T02:40:21Z","last_seen":"2024-10-30T01:31:12.759065Z","alert_count":0,"request_count":1,"received_data":8716,"sent_data":522,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"Mnemonic Secure DNS","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-11-03","alert":"Sinkholed","trigger":"undefined","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bleleadersto.com/s?f933e7ff","fqdn":"bleleadersto.com","domain":"bleleadersto.com","tld":"com"},"ip":{"addr":"172.67.165.252","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a30a7aebc3ba18b40c0841d70e551ddb","sha1":"746791c92b0f628592a3dbbb9f67f44737d28c74","sha256":"72138b9b1897bfeca05d235fea36d6cf4aaa02353d3826ee89026169a2a389ce","sha512":"046750a869ba735a3552c7b77c7afaf0749d005d0e410e3a229c8d3bc56c039995f889ebbebd7583bb69f4b4ae6753dd2253880978ead94bd25a82f8e845cb41","ssdeep":"1536:M/HFSWp4Hu0GqdPcgncjjH0GhBYaL8APizoV9dSywhyd5vfikUo5gWVBYvriC:QHOHPnyHbhBYaoA6y94ad5vak3nAriC","tlshash":"659312d06a9805b1077a142fb9e32f258342bda3dc4991083e7ce3839b8ef55c267136","size":92457,"data":"","first_seen":"2024-11-03T23:10:36.781261Z","last_seen":"2024-11-03T23:10:36.781261Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dfdgfruitie.xyz/adserver/yzfdmoan.js","fqdn":"dfdgfruitie.xyz","domain":"dfdgfruitie.xyz","tld":"xyz"},"ip":{"addr":"172.67.132.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"c710000000000000000000000000000030000000000000000000000000000000000000","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d3mqyj199tigh.cloudfront.net/?tid=1021163","fqdn":"d3mqyj199tigh.cloudfront.net","domain":"d3mqyj199tigh.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.135","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1b2e920a82ea8e97ed935dda24d6716e","sha1":"4bb59243e526fd4d46c398c5bddc96a9d8bb1ca7","sha256":"d48cceac7721746c267a9daf8bd763f68625beff857f12185669d892c49f57f8","sha512":"a485880ce78c2518ed46deef17c400e608c84e3a8752aacf5f58c992cdf296b9aae087956b45122291c95bf23a3f95b2743624b5ae61f2a2330d4af9ec4fc5bd","ssdeep":"3072:LQecf1ePVRGjoC1g8+8WhWtRlk8/wWBU2CwWBU2enUOOsCkEcMJ:LQDUDGMC1g8+8I8BQenUOOsCkEcU","tlshash":"24248e257616311a923314ea75ff2749f065d014fc024ad8a0d9c8b8a9e9ee621ff7fc","size":219764,"data":"","first_seen":"2024-11-03T23:10:36.761716Z","last_seen":"2024-11-03T23:10:36.761716Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.284Z","timestamp":1730675411284,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Oct 2024 08:25:41 GMT","end":"Mon, 30 Dec 2024 08:25:40 GMT"},"fingerprint":{"sha1":"74:3D:68:F7:64:93:DF:41:12:95:A6:69:57:38:7A:AF:75:38:44:2D","sha256":"AC:7E:75:A2:AA:A9:61:75:E0:B5:90:FF:A2:10:40:94:C2:B8:EC:8A:4D:3A:6E:68:37:D4:27:F9:E7:F5:98:7F"}}},"request":{"raw":"GET /css2?family=Roboto:wght@100;300;400;500;700;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 03 Nov 2024 23:10:11 GMT\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1371,"size_decoded":1371,"mime_type":"text/css; charset=utf-8","magic":"gzip compressed data, max compression","md5":"ce2c1cfa2b89b0d8b5f5dca46cc01313","sha1":"40e5856e7f66c7c7c413a3d99fa04b9f2f548505","sha256":"4d44fa39677d4b26cf6f76e404be6940cbf5748d43f53a1edbac87c62025ad1b","sha512":"3fedb7c30e91b776717b1fd6f6604c8523f3321d19a46e913d45f4c41a3bd8329ac42eca6cc079532b759d3afaff0f204be62168e154c9eb6d918f16d2bb2f6b","ssdeep":"","tlshash":"4221d6cc37b468cfce02ce76115a60b2186c48e908e1895f74b3c5090126b9d4ac2758","first_seen":"2024-11-03T23:10:36.755739Z","last_seen":"2024-11-03T23:10:36.755739Z","times_seen":1,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":74,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dfdgfruitie.xyz/adserver/yzfdmoan.js","fqdn":"dfdgfruitie.xyz","domain":"dfdgfruitie.xyz","tld":"xyz"},"ip":{"addr":"172.67.132.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.465Z","timestamp":1730675411465,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dfdgfruitie.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 22 Sep 2024 19:20:22 GMT","end":"Sat, 21 Dec 2024 19:20:21 GMT"},"fingerprint":{"sha1":"98:1D:5E:36:30:97:98:91:A0:7C:89:A5:C7:05:70:1B:28:90:ED:16","sha256":"35:BD:61:68:D0:24:EE:A4:AA:A8:29:DE:E7:D0:14:B9:5A:4C:1B:59:EE:35:63:1D:5D:8F:71:94:D0:63:33:80"}}},"request":{"raw":"GET /adserver/yzfdmoan.js HTTP/1.1\r\nHost: dfdgfruitie.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\ncontent-type: application/x-javascript\r\ncontent-length: 0\r\nlast-modified: Fri, 03 Feb 2023 19:26:28 GMT\r\netag: \"63dd5fe4-0\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1701\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=IFo9ODBUE6JmSDL3HCWqzYpIxS%2BjLznj88JPNJtRBwIfuF1tV0y%2FERNCiQxfVyvo%2Bsrn5gIsH7XCehApz35NEW67%2BxhdsjjosbZbsOuPMfnEShQT%2BlPAT4%2BPPe%2Bhn7O2uEM%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8dd0094a1af25697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=16514\u0026sent=6\u0026recv=9\u0026lost=0\u0026retrans=0\u0026sent_bytes=3286\u0026recv_bytes=1164\u0026delivery_rate=261151\u0026cwnd=221\u0026unsent_bytes=0\u0026cid=bb8f5d2bcec6fbc0\u0026ts=39\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/x-javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":64,"dns":20,"connect":17,"send":0,"wait":26,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d3mqyj199tigh.cloudfront.net/?tid=1021163","fqdn":"d3mqyj199tigh.cloudfront.net","domain":"d3mqyj199tigh.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.135","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.586Z","timestamp":1730675411586,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 30 Jul 2024 00:00:00 GMT","end":"Thu, 03 Jul 2025 23:59:59 GMT"},"fingerprint":{"sha1":"28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62","sha256":"41:BA:3A:6D:EE:23:CF:F9:B5:B7:FA:8C:6F:F5:D9:E5:89:D2:DD:DA:17:35:5C:E8:15:8F:DA:8E:2A:C8:5C:5E"}}},"request":{"raw":"GET /?tid=1021163 HTTP/1.1\r\nHost: d3mqyj199tigh.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 67371\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\naccess-control-allow-origin: *\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: 40e5cnUcTaTeuLGRrDKMfxhc-vuOOIo2X-KrFg4th-Cc_jSE38Ofkg==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":67371,"size_decoded":219764,"mime_type":"text/plain","magic":"JavaScript source, ASCII text, with very long lines (1743)","md5":"1b2e920a82ea8e97ed935dda24d6716e","sha1":"4bb59243e526fd4d46c398c5bddc96a9d8bb1ca7","sha256":"d48cceac7721746c267a9daf8bd763f68625beff857f12185669d892c49f57f8","sha512":"a485880ce78c2518ed46deef17c400e608c84e3a8752aacf5f58c992cdf296b9aae087956b45122291c95bf23a3f95b2743624b5ae61f2a2330d4af9ec4fc5bd","ssdeep":"3072:LQecf1ePVRGjoC1g8+8WhWtRlk8/wWBU2CwWBU2enUOOsCkEcMJ:LQDUDGMC1g8+8I8BQenUOOsCkEcU","tlshash":"24248e257616311a923314ea75ff2749f065d014fc024ad8a0d9c8b8a9e9ee621ff7fc","first_seen":"2024-11-03T23:10:36.761716Z","last_seen":"2024-11-03T23:10:36.761716Z","times_seen":1,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":41,"dns":31,"connect":1,"send":0,"wait":168,"receive":3,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oundhertobeconsi.com/Y2dkNDJMWAdHDy4xLnlmNQggbmo1QlZyUAQtFVJ6FxUlWXhSAlZbFBcOAAkDU1VVBQRQQRRdVl5UURJBFwYQQUFeVkJdXAUIWRJEXldKAhxRSVQSR15WQkBCAgBZBRQTExBYD1JQVwQEVFJQBQNbU1E","fqdn":"oundhertobeconsi.com","domain":"oundhertobeconsi.com","tld":"com"},"ip":{"addr":"172.67.217.244","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.853Z","timestamp":1730675411853,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oundhertobeconsi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 06 Sep 2024 06:41:01 GMT","end":"Thu, 05 Dec 2024 06:41:00 GMT"},"fingerprint":{"sha1":"11:41:9F:60:95:1F:46:D6:58:A2:99:F8:62:7C:B3:8D:24:7F:EF:94","sha256":"EE:8F:41:DB:4E:0C:3B:D8:1C:49:10:CB:42:53:81:4A:EA:38:2B:9F:D9:B9:30:B0:5B:14:F2:7C:5C:DF:7F:B4"}}},"request":{"raw":"GET /Y2dkNDJMWAdHDy4xLnlmNQggbmo1QlZyUAQtFVJ6FxUlWXhSAlZbFBcOAAkDU1VVBQRQQRRdVl5UURJBFwYQQUFeVkJdXAUIWRJEXldKAhxRSVQSR15WQkBCAgBZBRQTExBYD1JQVwQEVFJQBQNbU1E HTTP/1.1\r\nHost: oundhertobeconsi.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 03 Nov 2024 23:10:12 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Jo6JVDoIxlGUpHEh19mMgnSw811xHQZ4NyiBHfaCNoZV6NaKjALi%2FQ05TTZYN6%2FyZOf%2BpmGRp1j2kFuS4jsU9n7dJ28VkWrk8y6kdT86MeWwDRxGaqZ3o4AujkiAMa3XA1nljxRRPA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8dd0094c8d2956ae-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=21537\u0026sent=8\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3298\u0026recv_bytes=1330\u0026delivery_rate=262208\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=e367f34b24ea9526\u0026ts=152\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":284,"timings":{"blocked":74,"dns":21,"connect":17,"send":0,"wait":136,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ukankingwithea.com/","fqdn":"ukankingwithea.com","domain":"ukankingwithea.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.851Z","timestamp":1730675411851,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ukankingwithea.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 Nov 2024 13:54:20 GMT","end":"Sat, 01 Feb 2025 13:54:19 GMT"},"fingerprint":{"sha1":"72:95:BE:5B:B7:C6:8C:31:B9:5E:60:DA:66:68:99:88:EC:99:F6:E5","sha256":"43:82:FD:69:2B:D2:4F:08:16:BB:98:10:1E:F0:58:EC:A0:43:9A:6C:30:BD:E7:63:3F:DF:61:E4:58:F5:69:18"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ukankingwithea.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bleleadersto.com/\r\nOrigin: https://bleleadersto.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:12 GMT\r\ncontent-type: text/plain\r\nset-cookie: csu=36532801738314@1@1730675411; Max-Age=31104000; Secure; SameSite=None\r\naccess-control-allow-origin: https://bleleadersto.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: X-Requested-With, content-type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=KxWOz%2FpHm6KGoz%2BkChp%2Fn2BL1NTxO8Er3dgXm3HZibyPBpBuF2QJc5zAlKw13naP5JhF4I7I%2B9LU87gs3H4ncvhg1hq3aRBj%2FCSGgrJyQuuDTj7mNo4Lqdhl4xOeIj4yVFzxeV0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8dd0094c8982b4f9-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=17053\u0026sent=85\u0026recv=26\u0026lost=0\u0026retrans=0\u0026sent_bytes=107644\u0026recv_bytes=1151\u0026delivery_rate=2618444\u0026cwnd=260\u0026unsent_bytes=0\u0026cid=3196f2ff23c9683a\u0026ts=157\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":87,"size_decoded":25,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"42fed586254d1f2ba629077edda4b8fa","sha1":"293bbcb6423a22ea80bb39b023eaa595e17dba05","sha256":"fdf75e60c09144d86001e886e94b0e37533a274a432e3411c03a6c658a6386ca","sha512":"399504e767bb3152fb9cf25827806b37964bdbd182ee20d427c030aa873f856c871841a57ef2f4eea2f4d1c0dd5cb5e36b31ece9e1298d6e4e3099b987de7a32","ssdeep":"","tlshash":"8b700000000a00a00200a300002a28880a30000f202a0e2a020220022c80a0a2a022ab","first_seen":"2024-11-03T23:10:36.766921Z","last_seen":"2024-11-03T23:10:36.766921Z","times_seen":1,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":70,"dns":21,"connect":17,"send":0,"wait":141,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yfueuktureu.com/tc","fqdn":"yfueuktureu.com","domain":"yfueuktureu.com","tld":"com"},"ip":{"addr":"104.21.5.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:12.334Z","timestamp":1730675412334,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yfueuktureu.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 29 Sep 2024 10:51:26 GMT","end":"Sat, 28 Dec 2024 10:51:25 GMT"},"fingerprint":{"sha1":"25:7B:29:76:3C:CF:5F:B2:D0:90:15:56:F6:1F:2C:0A:C0:06:66:42","sha256":"F7:6D:AE:00:2B:06:99:23:45:F2:59:EB:64:65:75:74:3A:6A:07:A5:D7:1C:80:21:EE:E6:2B:BA:3C:DB:E2:E0"}}},"request":{"raw":"OPTIONS /tc HTTP/1.1\r\nHost: yfueuktureu.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://bleleadersto.com/\r\nOrigin: https://bleleadersto.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:12 GMT\r\ncontent-type: application/json\r\ncontent-length: 0\r\nset-cookie: ci=1184114175925887; Max-Age=86400; Secure; SameSite=None\r\naccess-control-allow-origin: https://bleleadersto.com\r\naccess-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-methods: POST, GET, OPTIONS, HEAD\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EY39%2BbxvTUyxfldGlsbdrYyWaQ01bKmt8IzJFC4BT1o5ibnq5DcB87iVfcYf1tIWBXireygq%2BF00t%2BnCIA5AVKGUibzGWyA%2Ff8VbzDy9CsmBXk1iTSVC8TH7H9EFz2dEAso%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8dd0094f8cc656a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=21990\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3283\u0026recv_bytes=1271\u0026delivery_rate=261955\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=aae32bf2578616f0\u0026ts=276\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":408,"timings":{"blocked":73,"dns":21,"connect":17,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d1wzdj81h1hubn.cloudfront.net/icons/apps.png","fqdn":"d1wzdj81h1hubn.cloudfront.net","domain":"d1wzdj81h1hubn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:13.118Z","timestamp":1730675413118,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 30 Jul 2024 00:00:00 GMT","end":"Thu, 03 Jul 2025 23:59:59 GMT"},"fingerprint":{"sha1":"28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62","sha256":"41:BA:3A:6D:EE:23:CF:F9:B5:B7:FA:8C:6F:F5:D9:E5:89:D2:DD:DA:17:35:5C:E8:15:8F:DA:8E:2A:C8:5C:5E"}}},"request":{"raw":"GET /icons/apps.png HTTP/1.1\r\nHost: d1wzdj81h1hubn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3115\r\nlast-modified: Tue, 07 Feb 2023 09:32:37 GMT\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 03 Nov 2024 02:46:49 GMT\r\netag: \"fe92fe3dee69ba5c6dc9ab4b1785c556\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: JV6YSm6vJIuSSWvq3QRLLsrmPPSXjMWVXZDAz_LLQhftNDDOdZdCHg==\r\nage: 73816\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3115,"size_decoded":3115,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"fe92fe3dee69ba5c6dc9ab4b1785c556","sha1":"444c3bcb27bde9c050a4bd51bf35d511951a3077","sha256":"2c07bad8f7225591d84faba9c558c4bff26e5acdac36f91f47a73796be04dbd0","sha512":"09b4b641278c07f96a4662c4886999deb20da899b64ebb1723513c8afe7530986d6d4fbe609e3d7585a00c72dfce81e22ae4c73458984c04e9d2a0974dc0a0f4","ssdeep":"","tlshash":"44513bf66bc88406c08adf75a4fb4b274727d14044f4e46e55eec8a248312f10c6d1fb","first_seen":"2023-09-28T12:53:45Z","last_seen":"2026-03-08T13:23:07.749239Z","times_seen":186,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":50,"dns":40,"connect":1,"send":0,"wait":1,"receive":3,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:13.125Z","timestamp":1730675413125,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Oct 2024 08:25:40 GMT","end":"Mon, 30 Dec 2024 08:25:39 GMT"},"fingerprint":{"sha1":"B0:78:E3:AA:FC:0D:C3:F5:76:B8:38:C6:A8:8D:AB:A8:9C:C3:FE:C9","sha256":"20:23:0D:49:4F:B6:FE:71:11:B3:F2:3F:A6:99:92:91:61:F8:E1:39:1E:A7:9E:06:59:C4:FD:91:7E:DF:CD:B8"}}},"request":{"raw":"GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bleleadersto.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 01 Nov 2024 19:07:54 GMT\r\nexpires: Sat, 01 Nov 2025 19:07:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Fri, 22 Mar 2024 00:00:38 GMT\r\ncontent-type: font/woff2\r\nage: 187339\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":7884,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-04T17:43:31.618506Z","times_seen":295620,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":78,"dns":1,"connect":21,"send":0,"wait":22,"receive":1,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bleleadersto.com/s?f933e7ff","fqdn":"bleleadersto.com","domain":"bleleadersto.com","tld":"com"},"ip":{"addr":"172.67.165.252","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-11-03T23:10:10.740Z","timestamp":1730675410740,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bleleadersto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Sep 2024 10:36:06 GMT","end":"Sun, 22 Dec 2024 10:36:05 GMT"},"fingerprint":{"sha1":"1E:1F:75:26:56:BE:7A:5B:15:78:54:21:01:6F:10:F0:4C:86:CF:65","sha256":"89:FA:D9:D7:EA:33:65:5F:64:FF:27:62:A3:B8:B7:7E:7E:B2:DD:1E:84:52:A4:B1:54:C2:21:F1:4E:90:D9:7C"}}},"request":{"raw":"GET /s?f933e7ff HTTP/1.1\r\nHost: bleleadersto.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\ncontent-type: text/html\r\naccess-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-methods: POST, GET, OPTIONS, HEAD\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=MGlTktAmF%2BIo8m50VQZ3QOO3nRE4sn5EdTNrOK0zmb7sG4KNA%2BYwxIuqFyy5SBmLrVv6E9TqohgLZYgFMnxp6n0Zd8wyUMx2w9ByEiMO%2FKCaKTR8bItT07%2BBZ3f7mwOIQG2p\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8dd0094599d656cc-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=21700\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3213\u0026recv_bytes=1125\u0026delivery_rate=262477\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=e0c16cacfba21c15\u0026ts=299\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":95430,"size_decoded":95430,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (61244)","md5":"e56424c24842dad99f0337b0d7b5739d","sha1":"ae7b22f86930bcd694684a686925f5a98a527e44","sha256":"2a08e1a4c782a9c868ce62c4162146d016645e46a8b6e10c212a371a30f8b7f7","sha512":"0e6cb69746aa8b54df1f109696f72377a5b0934941b2e8230aaa163b5dd7ebd0b41d2ee44c60ed8898334fd938d1ed23f046ec39cff5b1d00e5b88e6413d82a3","ssdeep":"1536:g/HFSWp4Hu0GqdPcgncjjH0GhBYaL8APizoV9dSywhyd5vfikUo5gWVBYvri7:0HOHPnyHbhBYaoA6y94ad5vak3nAri7","tlshash":"6c9302805ad405a2177b112eaae33f245356bda3dd49c5083ebce386cf8ef95c167235","first_seen":"2024-11-03T23:10:36.773363Z","last_seen":"2024-11-03T23:10:36.773363Z","times_seen":1,"resource_available":false,"data":null}},"time_used":416,"timings":{"blocked":74,"dns":6,"connect":18,"send":0,"wait":267,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oundhertobeconsi.com/popunder.gif","fqdn":"oundhertobeconsi.com","domain":"oundhertobeconsi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:12.258Z","timestamp":1730675412258,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oundhertobeconsi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 06 Sep 2024 06:41:01 GMT","end":"Thu, 05 Dec 2024 06:41:00 GMT"},"fingerprint":{"sha1":"11:41:9F:60:95:1F:46:D6:58:A2:99:F8:62:7C:B3:8D:24:7F:EF:94","sha256":"EE:8F:41:DB:4E:0C:3B:D8:1C:49:10:CB:42:53:81:4A:EA:38:2B:9F:D9:B9:30:B0:5B:14:F2:7C:5C:DF:7F:B4"}}},"request":{"raw":"GET /popunder.gif HTTP/1.1\r\nHost: oundhertobeconsi.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:12 GMT\r\ncontent-type: image/gif\r\ncontent-length: 58\r\naccess-control-allow-origin: *\r\npragma: public\r\ncache-control: public, max-age=604800, immutable\r\ncontent-encoding: gzip\r\ncf-cache-status: HIT\r\nage: 121346\r\nlast-modified: Sat, 02 Nov 2024 13:27:46 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2FpsjGKuLA9Q5HLaJuoZy9Ma2KjhmDiQPi5UwYp6D75vHsawdXTaJ3HpG%2Bj3mgOXj1ZNacTvJ0fU9TRubBT2u3IPaGWo%2FnbydFZRSaEb0Nzm2cBh291Pdcb2qszfGjOj24eTB%2BwFzzQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8dd0094ea9f95685-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=35278\u0026sent=11\u0026recv=6\u0026lost=0\u0026retrans=0\u0026sent_bytes=4065\u0026recv_bytes=1090\u0026delivery_rate=27377\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=4dc44b463b7bfa32\u0026ts=200\u0026x=1\", cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bleleadersto.com/favicon.ico","fqdn":"bleleadersto.com","domain":"bleleadersto.com","tld":"com"},"ip":{"addr":"172.67.165.252","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.448Z","timestamp":1730675411448,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bleleadersto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Sep 2024 10:36:06 GMT","end":"Sun, 22 Dec 2024 10:36:05 GMT"},"fingerprint":{"sha1":"1E:1F:75:26:56:BE:7A:5B:15:78:54:21:01:6F:10:F0:4C:86:CF:65","sha256":"89:FA:D9:D7:EA:33:65:5F:64:FF:27:62:A3:B8:B7:7E:7E:B2:DD:1E:84:52:A4:B1:54:C2:21:F1:4E:90:D9:7C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bleleadersto.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/s?f933e7ff\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\ncontent-type: text/html\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 158\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=lQMdgqeZ2%2Fn%2F1oNNiZ21joc55ivnUX%2F0QoKG4794gx8NTf5CHHilFy12Q6gHeH3wSRwKLYZLUE23%2BKT9rRDFamwDmuudI4vuydIl3kOCFN2D%2F0b7C3L%2B%2Bg4MZe7%2Fjof4k2ZW\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8dd009499bdab52d-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=19413\u0026sent=11\u0026recv=6\u0026lost=0\u0026retrans=0\u0026sent_bytes=4054\u0026recv_bytes=1095\u0026delivery_rate=34267\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=5708de2b6ee3f253\u0026ts=374\u0026x=1\", cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":561,"size_decoded":561,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (587), with no line terminators","md5":"ef8067f570d910ccebdf42ffc755bf66","sha1":"da4084be4933ddc66d1727f38bc514ae15de91fc","sha256":"1b386e7e1b13d52f377ab22266d9973bc86452bd70e58db468d7369b46a8ed46","sha512":"5b144d6c9aa11a19246a311aa9b5cac49e7e27617c1be0d7617e04d8024dc0ecd2c0006d1e0d24267da9f709f20018b5c895d1ce3aa08e75c81f8af0f13b0624","ssdeep":"","tlshash":"92f04f9b9f12346b2e278571f4c31165cf640916ebb914928749011ff9c90418cb9fad","first_seen":"2023-08-09T17:01:15Z","last_seen":"2025-04-06T18:51:58.449252Z","times_seen":250,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"undefined/aWdpR3IIBQoqTQhaC2EHGwtUYkAvQlsBFloKGD4YWF5QMxsOD0ckHgYSDSEABgkdaRwME0x1NC41AxEBMFU4KyUOLi8QCCMEKgFHPwMOIxY8CyN2NxEQOwYhKC4tIEorLAUGPCsQLHcgAQAkFBs/BigSJyYpPygxLFYCKSMvNigPGiMeIQEdIDcvCiU8DCA+Jh4PDBE1Kz0tFkItAhEKOC02DXAwLAgqBjE4Lj4CJzgpBSg6MQ8sKCc4DC8DIQE2KgInOy0eIDAtJV0xJTgmKhYqOx0+EkM8Ph4jETofEXQwLAs4DR8kLzEGSicsLAYnOwszdSY/SjsRPVomKxQkKAowMBYKIjsNGCsOWCYnBAAvFSczMA0rOyMmKH8CLCFdKyQHPiwfNCcxDSAgIzI/FhUxJV0AMwALJxQkLA4PMDwqMlkOCCohWWEYGggHN08IElEkCD0gGX4eEwETdg","fqdn":"undefined","domain":"undefined","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.858Z","timestamp":1730675411858,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /aWdpR3IIBQoqTQhaC2EHGwtUYkAvQlsBFloKGD4YWF5QMxsOD0ckHgYSDSEABgkdaRwME0x1NC41AxEBMFU4KyUOLi8QCCMEKgFHPwMOIxY8CyN2NxEQOwYhKC4tIEorLAUGPCsQLHcgAQAkFBs/BigSJyYpPygxLFYCKSMvNigPGiMeIQEdIDcvCiU8DCA+Jh4PDBE1Kz0tFkItAhEKOC02DXAwLAgqBjE4Lj4CJzgpBSg6MQ8sKCc4DC8DIQE2KgInOy0eIDAtJV0xJTgmKhYqOx0+EkM8Ph4jETofEXQwLAs4DR8kLzEGSicsLAYnOwszdSY/SjsRPVomKxQkKAowMBYKIjsNGCsOWCYnBAAvFSczMA0rOyMmKH8CLCFdKyQHPiwfNCcxDSAgIzI/FhUxJV0AMwALJxQkLA4PMDwqMlkOCCohWWEYGggHN08IElEkCD0gGX4eEwETdg HTTP/1.1\r\nHost: undefined\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-11-03","alert":"Sinkholed","trigger":"undefined","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Poppins:wght@300;400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:12.293Z","timestamp":1730675412293,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Oct 2024 08:25:41 GMT","end":"Mon, 30 Dec 2024 08:25:40 GMT"},"fingerprint":{"sha1":"74:3D:68:F7:64:93:DF:41:12:95:A6:69:57:38:7A:AF:75:38:44:2D","sha256":"AC:7E:75:A2:AA:A9:61:75:E0:B5:90:FF:A2:10:40:94:C2:B8:EC:8A:4D:3A:6E:68:37:D4:27:F9:E7:F5:98:7F"}}},"request":{"raw":"GET /css?family=Poppins:wght@300;400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bleleadersto.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 03 Nov 2024 23:10:12 GMT\r\ndate: Sun, 03 Nov 2024 23:10:12 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":838,"size_decoded":838,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (856), with no line terminators","md5":"c25051bb95d4fa6d7e3f033b907e2937","sha1":"d2333837bb15b092f77312df33bc9299e940af60","sha256":"5ac57cbea2276e5f432c2ecd83f52f348690c7515bab42460671ead4657ad0e3","sha512":"8e328bbf30a7a52de3da1a0c3e0f08eac29e9d6a4bc3b45af806e48c8e9d9412ec6e2b368540177dc7aae4a2263e28d72d7b99bc57dc642d241e65cb9bb53cc3","ssdeep":"","tlshash":"85118c81083be504a6830ec523da7933be0ea750a47062316bfd18ea6d97c55532272d","first_seen":"2024-10-16T01:52:43.289401Z","last_seen":"2024-12-04T10:28:08.413245Z","times_seen":99,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ukankingwithea.com/asd100.bin","fqdn":"ukankingwithea.com","domain":"ukankingwithea.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bleleadersto.com/s?f933e7ff","date":"2024-11-03T23:10:11.848Z","timestamp":1730675411848,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ukankingwithea.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 Nov 2024 13:54:20 GMT","end":"Sat, 01 Feb 2025 13:54:19 GMT"},"fingerprint":{"sha1":"72:95:BE:5B:B7:C6:8C:31:B9:5E:60:DA:66:68:99:88:EC:99:F6:E5","sha256":"43:82:FD:69:2B:D2:4F:08:16:BB:98:10:1E:F0:58:EC:A0:43:9A:6C:30:BD:E7:63:3F:DF:61:E4:58:F5:69:18"}}},"request":{"raw":"GET /asd100.bin HTTP/1.1\r\nHost: ukankingwithea.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bleleadersto.com/\r\nOrigin: https://bleleadersto.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 03 Nov 2024 23:10:11 GMT\r\ncontent-type: binary/octet-stream\r\naccess-control-allow-origin: https://bleleadersto.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: X-Requested-With, content-type\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2102\r\nlast-modified: Sun, 03 Nov 2024 22:35:09 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=yW409eT%2FJoIMrvJ0Zc5ONfXNfq6dX1%2BtvlJamFnuAJ9OnxnX2SmVPhBPcT574qNQdSyTgx%2FyH5q6P2TXkY3HerlYpk0Lo2spZYf63l2th6OihIe1UrOVED5q9n7uev3yIqN%2BRHc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8dd0094c8988b4f9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=16506\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3216\u0026recv_bytes=1151\u0026delivery_rate=262477\u0026cwnd=253\u0026unsent_bytes=0\u0026cid=3196f2ff23c9683a\u0026ts=55\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":102400,"size_decoded":102400,"mime_type":"binary/octet-stream","magic":"data","md5":"4c6426ac7ef186464ecbb0d81cbfcb1e","sha1":"5a6918eebd9d635e8f632e3ef34e3792b1b5ec13","sha256":"f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16","sha512":"5f6dbea410beee80292b16df6fcc767ae6baf058ab4c38fa6a4fc72b7828374af42bd6da094eada2ad006d1a0754f9ff7bdd94c0ef9540e6651729b74fb9ea46","ssdeep":"3::","tlshash":"9ca3000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-04-05T04:27:22Z","last_seen":"2026-03-16T07:24:59.73574Z","times_seen":12181,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":79,"dns":22,"connect":17,"send":0,"wait":33,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}