{"report_id":"b7875ab8-15e0-443d-8017-50e571ae3991","version":6,"status":"done","tags":[],"date":"2025-12-17T21:05:59Z","url":{"schema":"http","addr":"fullwarezcrack.com/","fqdn":"fullwarezcrack.com","domain":"fullwarezcrack.com","tld":"com"},"ip":{"addr":"172.67.164.100","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"title":"Page not found – Visit Soufli","dom":{"size":84669,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1746)","md5":"0caa977c72c7941d2b101ee19b3d371e","sha1":"42cb74b7df1023bb192122bb77eaac7df2a0babf","sha256":"52090a3c85f19b8839fdfa3fa95a437ed815d5409a53fe4a0b1aefeb5f75a0b1","sha512":"9a85a2878649d90f7e59d6b6b4815cc45b085d32cb31dd7a0b01bcf99470dd65fb60b927f96c44ad262af4a0296acbb91fa47e34577db4f36512c1c3aeca6e12","ssdeep":"768:0Eg825lFoYUy7D0bupaFB7MAIY+vEjZKI3ifrR4B5lhOc8jefFVIYfY2YkTR0MCC:09825scD0waIeKgTGcMef90MCeI3O","tlshash":"458319ae10d85b3c076b1b5a31de769c6b7bc021da046f8876fe846dd7c6e8500b768c","dom_hash":"domhashf9200381d2c0187756a5847541e37a4c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"fullwarezcrack.com/","fqdn":"fullwarezcrack.com","domain":"fullwarezcrack.com","tld":"com"},"ip":{"addr":"172.67.164.100","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-21T21:05:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2025-12-17","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/63/5d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"fullwarezcrack.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-17","alert":"Phishing Block","trigger":"fullwarezcrack.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"diskauto.xyz","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-07-18","domain_rank":0,"first_seen":"2025-12-17T21:06:00.180445Z","last_seen":"2025-12-17T21:06:00.180445Z","alert_count":0,"request_count":3,"received_data":2128,"sent_data":1432,"comment":"","tags":null,"fingerprints":null},{"fqdn":"45.84.0.235","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":0,"sent_data":480,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.ihogulu.top","ip":{"addr":"104.21.82.123","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-11","domain_rank":0,"first_seen":"2025-12-17T21:06:00.168941Z","last_seen":"2025-12-17T21:06:00.168941Z","alert_count":9,"request_count":3,"received_data":1044,"sent_data":1368,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.207.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-14T22:17:06.291076Z","alert_count":0,"request_count":1,"received_data":2802,"sent_data":483,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.shoespro.store","ip":{"addr":"23.227.38.74","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"Canada","country_code":"CA"},"domain_registered":"2025-06-26","domain_rank":0,"first_seen":"2025-12-17T21:06:00.176657Z","last_seen":"2025-12-17T21:06:00.176657Z","alert_count":0,"request_count":3,"received_data":23430,"sent_data":1656,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Shopify","description":"Shopify is a subscription-based software that allows anyone to set up an online store and sell their products. Shopify store owners can also sell in physical locations using Shopify POS, a point-of-sale app and accompanying hardware.","website":"https://shopify.com","common_platform_enumeration":"","icon":"Shopify.svg","categories":["Ecommerce","CMS"]},{"name":"jQuery:2.0.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"airsplendid.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2022-04-30","domain_rank":0,"first_seen":"2025-12-17T21:06:00.173944Z","last_seen":"2025-12-17T21:06:00.173944Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":884,"comment":"","tags":null,"fingerprints":null},{"fqdn":"customerconnectexpo.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-05-29","domain_rank":0,"first_seen":"2025-12-17T21:06:00.165262Z","last_seen":"2025-12-17T21:06:00.165262Z","alert_count":0,"request_count":2,"received_data":284,"sent_data":900,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"maps.google.com","ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":76,"first_seen":"2012-09-10T23:07:43Z","last_seen":"2025-12-15T02:02:41.886098Z","alert_count":1,"request_count":3,"received_data":1054863,"sent_data":1379,"comment":"","tags":null,"fingerprints":null},{"fqdn":"forsale.godaddy.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"1999-03-02","domain_rank":0,"first_seen":"2025-10-07T22:53:08.031371Z","last_seen":"2025-12-17T01:52:29.134942Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":667,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.visitsoufli.org","ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"domain_registered":"2025-09-17","domain_rank":0,"first_seen":"2025-12-17T21:06:00.172717Z","last_seen":"2025-12-17T21:06:00.172717Z","alert_count":0,"request_count":26,"received_data":1194657,"sent_data":14228,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Chosen:1.1.0","description":"Chosen is a jQuery plugin that makes long, unwieldy select boxes much more user-friendly.","website":"https://harvesthq.github.io/chosen/","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks"]},{"name":"WordPress:4.9.26","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate:1.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"visitsoufli.org","ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"domain_registered":"2025-09-17","domain_rank":0,"first_seen":"2025-12-17T21:06:00.180339Z","last_seen":"2025-12-17T21:06:00.180339Z","alert_count":0,"request_count":1,"received_data":83967,"sent_data":555,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fullwarezcrack.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":4,"request_count":2,"received_data":0,"sent_data":890,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.customerconnectexpo.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-05-29","domain_rank":0,"first_seen":"2025-12-17T21:06:00.170026Z","last_seen":"2025-12-17T21:06:00.170026Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":496,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-12-14T22:20:12.666465Z","alert_count":0,"request_count":4,"received_data":89670,"sent_data":1877,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"maps.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3442,"first_seen":"2012-05-22T14:23:23Z","last_seen":"2025-12-14T22:38:48.828301Z","alert_count":0,"request_count":1,"received_data":558,"sent_data":482,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.arswag.xyz","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-07-18","domain_rank":0,"first_seen":"2025-12-17T21:06:00.16217Z","last_seen":"2025-12-17T21:06:00.16217Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":882,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-14T22:13:59.416786Z","alert_count":0,"request_count":2,"received_data":28173,"sent_data":1106,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/js/base.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"3b9506442f5e9da937159ec8e978ac92","sha1":"a065a287369571adf621a0be14bb31b2bcef194c","sha256":"b9bdd9c21f6b831230a5edcd3c073f310bc4c518097adb15fc50bd25e3343e2b","sha512":"630ded7a1fc798ba19516f2e66dc58d37364ec14501b6c24b5b7df085db4b7b86db1c9ec1740c1d375027e59b7d2f9a00bf960f0e630d034221e1b3388cddbff","ssdeep":"192:xPzCvSMaV0ZATrR09wMmQZcNt3FaWHd0XS0ZgxKuZwQ9PdDmfFVxZ4HQlbzk:FzCKMPZATN09o0mtVaYdvndDsr2","tlshash":"1952b79a11b7103e9a272124efff165c74f602478010f926bfee8d478f81998d36abd5","size":13536,"data":"","first_seen":"2023-05-16T08:06:07Z","last_seen":"2026-04-16T09:21:35.350561Z","times_seen":489,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps/api/js?v=3.exp\u0026libraries=places\u0026key=AIzaSyA6_vvUAbiE3-WeBjxXLNFYbApwO6B3PAQ\u0026ver=3.22","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"557784a1ee928c0fa1db5800b16a4029","sha1":"5b02e6993f3b823aa65983dd5f93bd5eb05ba4a6","sha256":"55ea39c00a6696abfbf89adb9054df5de54aca2b8c7bbc6cc4eb0b5175a7741d","sha512":"3899a9438b3c9c00eba4229dae30283437f6bcdfc8ce26985a6b5b3ca91cbfa783f5570cf1bef6f9ddfba644949e3b1fa806ce27f3f5cf3cc63455969747bb09","ssdeep":"12288:chzNvixhGZPwFrmvRzLLX6hjZny1YsreTp2IgG3AMnjl1v+1eqVyXURx8CYH/3x3:chzNvixhGZPSrmvRzLLX6hjZy1YsreTn","tlshash":"53d45b65b2a135669363d4a0642b1201f338945af008cafc79addfe29ff7a414277f39","size":607610,"data":"","first_seen":"2025-12-17T21:06:07.295722Z","last_seen":"2025-12-17T21:06:10.662562Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":true,"md5":"1939f54489d0fdb79b24a85c586b4835","sha1":"5a20ddd219ce35390824d94f1d5cde3f1d09b617","sha256":"aa8ec80f274c99a43467d3fc28cc3f763cf37d2ec1bf30542d19c51435c58319","sha512":"3ca7207f9c7656f8e40ac177dc9a73adfc7eb79c9a4b86f8982099a706a332cdeead864b5b52289100b4201a7e12b9efcad3961e10c7aacfc4680424434b86a5","ssdeep":"","tlshash":"4941327a3b95645966f208b3f12f6b0f3f2595030089aa36c558a9b0293edd1d0fad19","size":2046,"data":"","first_seen":"2025-12-17T21:06:07.324967Z","last_seen":"2025-12-17T21:06:10.762816Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/plugins/CSSPlugin.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6bbddbd910e8bfac4e19220fe52e1af6","sha1":"fdfdca1739da6764c8881d33cb02864bbc21c5a9","sha256":"b5cc45eb6a71ddfc1e8c5f7a20b48120cfceded9a987af10113699cc8cc0aa8a","sha512":"36541c239d578b9090787fa0a225b8acb026e5871863839ac6b9ccd3460098218caaabdaadf833a8f8fb6ef914d0bb8870eb031c7c5d41f8cb49ba38ebc9de8c","ssdeep":"768:jEraRUobKUjx3jX8Fc91g7eek1108+n7a2vZabFYF3Y7//T9MT:jGQU3uxjM+7f08+nxvMC8/eT","tlshash":"87033bea3861302580832a8155ff0d42713eedb97816cc6af29486e87e15d9a11fff77","size":40599,"data":"","first_seen":"2023-03-07T13:21:46Z","last_seen":"2026-04-12T22:50:02.307456Z","times_seen":75,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/63/5d/util.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1594e2db428bc556a2201d9aef252ea2","sha1":"7b15a2adeaa82a9f4f8f7f8c7fd594c4de00af23","sha256":"264c094498ece322398c1710983e90863ad61ddb7f015c1a1700b03bb181f820","sha512":"68f30731789e26b99dfe979768b74b3dcabcf2ed981959273c39848493d63037c447bf45f532a5a2c14045e2066fdbcdba42398d7cfbd9f2b7a859d225f40846","ssdeep":"6144:SXotu1z/Nhbz+EzamYL8UzUjqk2gW+09TLpcGLNgYIsGsRtvyLLUy:SXotu1z/Nhbz+GamYL8UzUjqk2gW+09i","tlshash":"ec64c67c71326f4e6832c853c266310ed0356edbf964c8bdfee65654eaa5944f0e0a38","size":316911,"data":"","first_seen":"2025-12-11T20:11:57.87725Z","last_seen":"2026-01-07T20:10:50.830849Z","times_seen":26984,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/wp-embed.min.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"43928880ff5ebadcd513755b011732cd","sha1":"d0fdb17db490123ed700c2caa5d2d764794cb6d5","sha256":"37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38","sha512":"ba9ec90a842c0aad802294c3fe144c0ed737e51586ed19dc15dcf518dd0c9790e6ba5a1a8bc9e8a09d48cac3941df65c4d1d77b3b79d76a6cfac9b306c2da710","ssdeep":"","tlshash":"4d21526a3239d43e54e715d3bc8435cad2b21be9a85200d14a798848f5a8f93886afe1","size":1443,"data":"","first_seen":"2023-05-16T22:20:04Z","last_seen":"2026-04-16T20:37:44.925305Z","times_seen":12091,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"7121994eec5320fbe6586463bf9651c2","sha1":"90532aff6d4121954254cdf04994d834f7ec169b","sha256":"48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d","sha512":"b74a2f03c64e883b9a34de43690429327dfb4aa230a7a6afca8150a16e3d84e98461245ff264c26368d9904562cc34fe219f71f951d364fa5c68c039b76776cd","ssdeep":"192:kZrk/GNyd31svs7wkX8KzJcqSDdAcHX4YE5NLR:srhNyNO0kkMKzFSDdAcIYwLR","tlshash":"2e22c79db29a70625fba35f8617fc11b717a94fc2118d9e4a08c8ed1387dc9d403ab39","size":10056,"data":"","first_seen":"2023-03-07T01:02:37Z","last_seen":"2026-04-16T21:00:37.434991Z","times_seen":44221,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":true,"md5":"3ab9555979cf23287f4757d57cc9da7e","sha1":"ca20e09a52a6e4dca2eb18b210c60cadcf38241a","sha256":"57fadb2c9956be68c0c115db978ffe54f429b0df627835594544833e1228f113","sha512":"672ac7650152c113d7fe46188740b54161be564bef81dfc78159059cebc2451b832c137ddbd53186eda89b8ea6820a76d50b85e812ffbae871ae04a40aa5ce32","ssdeep":"","tlshash":"1f01fdac97ac3239403c501bab7ee7ca342de4bb2a0104a2ff88492811908a911650fa","size":846,"data":"","first_seen":"2023-03-07T01:32:44Z","last_seen":"2026-04-12T22:50:02.315104Z","times_seen":192,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":true,"md5":"b11ac11a849f5005c36540d29567633d","sha1":"424ae3ac256d6b03fafecb9639102587ad47605b","sha256":"0751c0e41b0d20fc7b6023cc5e3b04dbd91f3bb1ab61c0f22864b604c05ef81a","sha512":"5fc0173d71f089aceeddbeb272fef94fa34ff6ee2d2e1d9e6da836b2f68062c5c37a19f5c5b11c0643065f45c2881df2d5c5e0452ca45487c5818a0306261990","ssdeep":"","tlshash":"31b0120541c47d5441ee24ab22dee08047e782894c15dd05049dc3554dc3c008055509","size":94,"data":"","first_seen":"2023-03-07T13:53:44Z","last_seen":"2026-04-14T21:55:36.333329Z","times_seen":149,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":true,"md5":"61098d26871f1b69550c47f5e6dbaf9e","sha1":"e830f459135f16b1329005501e6d98b3c904875b","sha256":"aca0f45feed28d47bf3aeaa0b4445053a82250739c57c7bb400524399120a182","sha512":"86ff65bc771023fa38d47534ca33f36a59355679ca668dcc2c9255cc1e6d3a1038575070189eb45765a9c50d59acfd7b62338aa038bdc93531addd30e89b8a12","ssdeep":"","tlshash":"79e0abb082496f2606ea15d3b48936c4486b7306941cc82462dcc9d80aa5fa4d16ba87","size":412,"data":"","first_seen":"2025-12-17T21:06:07.32794Z","last_seen":"2025-12-17T21:06:10.768897Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"diskauto.xyz/","fqdn":"diskauto.xyz","domain":"diskauto.xyz","tld":"xyz"},"ip":{"addr":"76.223.54.146","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3effca764b1325dc476a4f275bb79d63","sha1":"83e96d57b2196e7dc7422e373d844941644d29ba","sha256":"6525c7cbcf52f274ffc5cbe01fd43c03fd77e9463d0757999a596776f0d4184b","sha512":"72188e1090ac227d6b67206326ff52924f0a264371024d22b1bed0a83a327e338b4044955da06d6bf02aa691b776990da4fddb1bdfead635696598d67646ad1b","ssdeep":"","tlshash":"20900289b011e5c411fa55265b17ba086063219bca105a4444010861653470f451abca","size":56,"data":"","first_seen":"2025-03-02T07:03:41.445505Z","last_seen":"2026-04-16T21:00:12.930747Z","times_seen":112585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/plugins/ScrollToPlugin.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ab37c9dbe447696daba949ed4899abf2","sha1":"609fd737c45dfd7fb9a60cbcdc6e667e3d3d7dd0","sha256":"806548b84857dbb3a3243a0d7c0aedc2afd647bf96b48de90985df9591ca4a4a","sha512":"1d8ff8d6c20009b1f98ff53bee0099e799fc53d99e957a8c217d78997b89c1181bd20c40762b9a648974c7743dbce68e1f0a00ed2459763b567c3dc21c710493","ssdeep":"","tlshash":"d951338e7700516552cc9eaa953fc7c7a2a6209b7355616e3c0dccfd3c1a73a3095e72","size":2557,"data":"","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-12T22:50:02.291297Z","times_seen":141,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/jquery/jquery.js?ver=1.12.4","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5ba5044fccc0297be7b262ce669a7c","sha1":"f137ff98ae379e35b0702967d3b6866a0a40e3be","sha256":"cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3","sha512":"bab5eb2c4acc0cb1c65e8dedbd6b422480fc20076d6c1b12879cbf1e5b352969e1553a0e878401c2f2b9507b64b02e8abd4c6d1ab7e3d2c06272a491ee712e8a","ssdeep":"1536:HYE1fGBiByJsbfXXeRJ/shgWCeLLccJdZVHk04ssx+/mvaSIFSet43tpXJIGVypf:fsAg0psxTva/FSeKy2bDD5a98HrU","tlshash":"2493e8d9b2d6715287b734a850bf410bb17a98dab80c4c60f058d8e47e78e9d607bf2d","size":96874,"data":"","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-04-16T20:42:22.461577Z","times_seen":9244,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/TweenLite.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3bb7bb8f4b38ac71b33dad50f1b17f49","sha1":"7fea35cfb6ddcf08c038222b8dabed67faf3206d","sha256":"15ff1b3821afd681d5c405d980a27e80997c0f1bca41ab01bb23533d75606df5","sha512":"433999e3f20a5bae24b479ae2febb7679217d5412035fd8cacb67e9d15ae5a6531e92cd2ed2a4757a2101ce63c36401249a23771e44c2e0a28af5ad6521048c5","ssdeep":"768:j6Hnr8RMCdGU0IFEmtViU/gmhDqgp6t4R57OLzrI4n:jmnS1ViU/thDzR57OL","tlshash":"3ac2b6867212a15245d611ea593f0783733798ebb4484e3cb549c9ce3f1dd8822bbf76","size":27241,"data":"","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-12T22:50:02.266334Z","times_seen":77,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/wp-emoji-release.min.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"fe0575b66568074463f12485d90f6d4c","sha1":"aeedd9ab3b7874e63f647042963cb1301a38b391","sha256":"647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7","sha512":"0d209cbc9550cfcf49ca7ca5a1243e1578c0a42f9fb28c1fa8d353cea26f24eed282547f47fe858126e1ba9a4aa4d8ddbd2cbdef9db5a45f24cfbfd6383bff9e","ssdeep":"192:WuKiKqdccoXJW+TJr3J//bEvAbWXXR6AooHyrOUVsbEJEoesM0m3dJXWP/2//:0qlkJW+TJr3J//bEI+XgA5UCOeffJmW3","tlshash":"8032229f732b5f9b743e36db8e96cf4d95d949932580e038cafef68129e005983b4850","size":11943,"data":"","first_seen":"2023-03-07T01:02:46Z","last_seen":"2026-04-16T20:37:44.851372Z","times_seen":5344,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":true,"md5":"8741636f2b9df3eb1f42fb53dfce2a78","sha1":"02b608e9172dab23b0a35c2c4b7f9a83377af875","sha256":"9cd54dae874f766049c939105a34088a920d6582594d72036eb0f73d81426b42","sha512":"9ee57c4e63c06dbbe946423fc4ce15cac43c478f2e0e4d72cb0b2071007406726043e51bede15058ec485597226267013b8cffe85891ef70b2c09ea08d665655","ssdeep":"","tlshash":"2ee0cd3c192254b8175da100dbd7af837ae990f576f45d14b30d0c5e9bc011f538e685","size":324,"data":"","first_seen":"2025-12-17T21:06:07.329165Z","last_seen":"2025-12-17T21:06:10.770532Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/themes/listable/assets/js/main.min.js?ver=1.15.1","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"f181c44d82d33f72b69c0ba296f7a8da","sha1":"2f1b4747c89d036ff1aee24e5142488b17122590","sha256":"c2337a9a966800b40b619c920c37e5c0d41587e1d19964dcd4bc9e2471380fa5","sha512":"edcf06e471e838601b645c0756df3bddba2c87a4908c0add3a66239a02b1b7d668b377ea8328f52d0f5590a6e9a13d046775d8ce851da0d644e322e4eaa7ca82","ssdeep":"1536:OTPOJAWhg+ooeA5cUv/dI0jKbB9cIRrRFvELeVRCewG8J+koablFQ08kOvEshxdL:OLEKb53AeGJ5akODBHdI0EnS","tlshash":"1804e78cb662b13142bf21e6655f640d73376b3da40a856cb428dce85db9c09722bf3d","size":174020,"data":"","first_seen":"2023-09-17T08:46:52Z","last_seen":"2026-03-12T06:42:12.221709Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/wp-job-manager/assets/js/jquery-chosen/chosen.jquery.min.js?ver=1.1.0","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"introduction_type":"scriptElement","is_inline":false,"md5":"6708dcea1716eff1b577fb319457cf91","sha1":"ef24bbbf87bc3e8b39ba5e2fbe27aa43fb8abc6a","sha256":"7662ec8d21c24b77d07b280c79033b8f939f16a338d6a48e2e7436e9e0dc004a","sha512":"0ea184c4a2d84fa9a89ddfae9bd2f1d69fbb324d09c481acf89bf87231acce41c291d0e1a647ce0d705f627ab823c6f3d4cf147185e371bc1aba70db8e97c9f8","ssdeep":"768:YdbhY5F8m7AE77EJwe0uZJwIgNb9EDTQYfCOeNj6b/:YRQBt7EJwe0uJgNb9EPbteNj6b/","tlshash":"09c24184bbf1a22141ba54eda45ea1c5a337a4dcd80c8ddcfe6ddde25468c0d712fa34","size":27347,"data":"","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-16T19:46:03.117866Z","times_seen":237,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/63/5d/common.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6f751f375ca93acd0382c53b1916141","sha1":"28256845c408a9aa64b4efabd265250b2a7ef0cf","sha256":"94363e2962505c099aa3960d59532e0e4d15eb3f1bc41f6088bc71ba4bb0fff2","sha512":"13c4dd8bf965496affee2569d7c7b64c135cb7584978e8ce0eedc8c1e3006d688a2e9f3bb1ee22ce74b43a09896be356cd7f3c3a1a14c6d2301fb6a3202c1bce","ssdeep":"3072:4AkzLM4Og4XWvtLN+caKtk1TbHP1lehT++GefE9TDbJ/+McyjsT+v:4AkzLM4Og4GvtLN+caKUTbHP1lj+Gecf","tlshash":"c4c3b6c5b19370b3a761a8e414e74102b665a895f02dcc2cb5fe8df2aff185611f9b38","size":128083,"data":"","first_seen":"2025-12-11T20:11:57.907506Z","last_seen":"2026-01-07T20:10:50.774075Z","times_seen":26984,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2025-12-17","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/63/5d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/css/dashicons.min.css?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.224Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-includes/css/dashicons.min.css?ver=4.9.26 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 30 Nov 2019 15:00:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5de28416-b518\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46360,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (46325)","md5":"1c364e777cd2b874ea6cf09100861c6c","sha1":"58bb8dabdb753287be070ac2840c0fdbbd27f533","sha256":"d0df2ff25fded9e43a0cfa5159393d4482725bfb390e8ca94f34da85b5304117","sha512":"7e5f18f12b56d711b70509ea80e5cae14326558ebff755a3d61a8d9156ffcdad243274195d83fe27c6e295feccc19a285ad358ebbcd720846820b51e22389f3d","ssdeep":"768:Jy79SeLdo/v4lcBBcX2MI6wuWASjxuKsbss0UjEhREyIPRQ:J2hoXmcBi9xwuSupbbJyIPe","tlshash":"0823d4b5e74900d227b1c893bfa5726a1483bd39f8518dcbf84b511c0af3639429deb8","first_seen":"2023-04-06T21:37:21Z","last_seen":"2026-04-16T16:02:36.569544Z","times_seen":1271,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/wp-job-manager/assets/css/frontend.css?ver=1.34.2","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/wp-job-manager/assets/css/frontend.css?ver=1.34.2 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 14:44:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac933-6b8f\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27535,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (27535), with no line terminators","md5":"d49049ce167203868e6dbec54a1642df","sha1":"0a170556fc8e86fb5a7a634f3dea42449b9227b3","sha256":"31dd90a1993e6c724529d3e6193006151d243214fde7c7bec0a37024195a3888","sha512":"5821c2027b5495671ec9853e35d1022ec69322d9af4adea7f1da65b17ed9ad7f07fb5ba807be12952d9dcdadd7979fa69ea58ba0ddec30b9c639850ee999fb93","ssdeep":"192:7P/h6MPlb45jozb6Zb2yb2jb2hTJOgyVgS3dOdu3IfnYK4r/n5FpEgcOtdOiOJOG:HK8gS3dOdu3IfnYK4r/n5FpEghsUAn","tlshash":"f4c2306e939c0e4c6b9bc337bfdf63ce252e8021d590e469d775d9b84ac788d02a3644","first_seen":"2023-05-04T20:04:16Z","last_seen":"2026-03-14T19:28:19.385803Z","times_seen":44,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:41.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/ HTTP/1.1\r\nHost: visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0\r\nlocation: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nx-proxy-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":83579,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":738,"timings":{"blocked":306,"dns":73,"connect":22,"send":0,"wait":126,"receive":0,"ssl":211},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"airsplendid.com/","fqdn":"airsplendid.com","domain":"airsplendid.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.752Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: airsplendid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"diskauto.xyz/favicon.ico","fqdn":"diskauto.xyz","domain":"diskauto.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://diskauto.xyz/","date":"2025-12-17T21:05:38.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"diskauto.xyz","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 01 Aug 2025 21:26:21 GMT","end":"Sat, 01 Aug 2026 21:26:21 GMT"},"fingerprint":{"sha1":"12:C9:E2:70:6C:36:EA:F7:A4:1E:56:AC:6F:5E:A1:0A:16:C1:F9:FB","sha256":"F3:1D:C9:3D:8B:29:EF:94:CC:F8:B3:31:69:4B:19:B2:0E:31:F7:53:3F:CA:97:85:65:AB:1E:CD:AF:58:11:1C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: diskauto.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://diskauto.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2016 03:11:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"573e8060-2748\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10056,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9959)","md5":"7121994eec5320fbe6586463bf9651c2","sha1":"90532aff6d4121954254cdf04994d834f7ec169b","sha256":"48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d","sha512":"b74a2f03c64e883b9a34de43690429327dfb4aa230a7a6afca8150a16e3d84e98461245ff264c26368d9904562cc34fe219f71f951d364fa5c68c039b76776cd","ssdeep":"192:kZrk/GNyd31svs7wkX8KzJcqSDdAcHX4YE5NLR:srhNyNO0kkMKzFSDdAcIYwLR","tlshash":"2e22c79db29a70625fba35f8617fc11b717a94fc2118d9e4a08c8ed1387dc9d403ab39","first_seen":"2023-03-07T01:02:37Z","last_seen":"2026-04-16T21:00:37.434991Z","times_seen":44221,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"45.84.0.235/","fqdn":"45.84.0.235","domain":"45.84.0.235","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.044Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 45.84.0.235\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":57,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/uploads/2018/06/cropped-00_listable_demo-32x32.jpg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/uploads/2018/06/cropped-00_listable_demo-32x32.jpg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1523\r\nlast-modified: Wed, 17 Sep 2025 14:45:31 GMT\r\netag: \"68cac98b-5f3\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1523,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 32x32, components 3","md5":"5279c4652512450cce4a8653d91d55a3","sha1":"b0707ab32f71b0423ea8d8402ae9f9653191e183","sha256":"76a2e3179822260c246ad232707579c39d703381bd94cecf03661e558465205f","sha512":"539499e0d82600133606d079bf6037d4c08222558f453eb1ced557a34bfbeae98bcaaa8515f38b5be19a6735166757e79b16c1f9064c89eb65555e8e67c15dca","ssdeep":"","tlshash":"5831960bf740a481e075df712cf2a52aaa3509c1f5e0ed63e6f1c112d8bd0ea99121c7","first_seen":"2025-12-17T21:06:07.322726Z","last_seen":"2025-12-17T21:06:10.637592Z","times_seen":15,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"customerconnectexpo.com/","fqdn":"customerconnectexpo.com","domain":"customerconnectexpo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.123Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: customerconnectexpo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":162,"connect":37,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/select2/4.0.5/css/select2.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.233Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/select2/4.0.5/css/select2.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1624\r\ncf-ray: 9af9614efb880afe-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03fcb-3b5c\"\r\nlast-modified: Mon, 04 May 2020 16:16:11 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 2314001\r\nexpires: Mon, 07 Dec 2026 21:05:42 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=5BQFvgw6LBH10%2FcqpxNyRiveXpYo24%2FmflJVO6cd275kGOXhxrE7ZZGkkIX4sabRyf1TfZOPtRjxrl5h0V%2F3vb4WmyGsBsAic2XR2ovm2q7ho4fAlRXQCnz%2BEQfxaeLd0AK1gzy2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15196,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (15195)","md5":"d44571114a90b9226cd654d3c7d9442c","sha1":"83b595db66fbf173436fbca475b8b695ef48eb8e","sha256":"c493991dfa712d1fee861d41c18152e5f8663807484506a23ae97917f6fbbf7b","sha512":"d8bd1d12320dfc30264d5e69b87ae2108b9053f20bdc2a0f9bfe1ec99a776ccf1d9da5eb8ba94af2ee830b92fde9bf984acf5fdcb7bcd5d0d1654498797e1071","ssdeep":"192:pL5u/nTfc3aqWJCeQ9CPjOtWlUJKLJcH9tPOF:3u/TfX1TQ9htWGSJcdwF","tlshash":"8362aa29bacc2235b0bf8e7f6cf274946739dd5fc4111b9ab8e9e554c8e04540a8b60f","first_seen":"2023-04-05T15:19:41Z","last_seen":"2026-04-16T19:54:46.257007Z","times_seen":6487,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":4,"dns":9,"connect":2,"send":0,"wait":13,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/jquery/jquery.js?ver=1.12.4","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 12 Jan 2020 01:34:33 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e1a77a9-17a6a\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96874,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31997)","md5":"dc5ba5044fccc0297be7b262ce669a7c","sha1":"f137ff98ae379e35b0702967d3b6866a0a40e3be","sha256":"cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3","sha512":"bab5eb2c4acc0cb1c65e8dedbd6b422480fc20076d6c1b12879cbf1e5b352969e1553a0e878401c2f2b9507b64b02e8abd4c6d1ab7e3d2c06272a491ee712e8a","ssdeep":"1536:HYE1fGBiByJsbfXXeRJ/shgWCeLLccJdZVHk04ssx+/mvaSIFSet43tpXJIGVypf:fsAg0psxTva/FSeKy2bDD5a98HrU","tlshash":"2493e8d9b2d6715287b734a850bf410bb17a98dab80c4c60f058d8e47e78e9d607bf2d","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-04-16T20:42:22.461577Z","times_seen":9244,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps/api/js?v=3.exp\u0026libraries=places\u0026key=AIzaSyA6_vvUAbiE3-WeBjxXLNFYbApwO6B3PAQ\u0026ver=3.22","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:38:53 GMT","end":"Mon, 16 Feb 2026 08:38:52 GMT"},"fingerprint":{"sha1":"98:61:A1:01:94:12:1C:03:5E:13:41:74:51:6D:2D:18:E9:F2:69:05","sha256":"4E:24:16:A8:D6:22:3F:BE:06:74:9D:F4:9B:CB:DF:31:D8:E5:8A:F9:E7:B3:7F:8D:5E:50:F2:25:34:EA:7A:94"}}},"request":{"raw":"GET /maps/api/js?v=3.exp\u0026libraries=places\u0026key=AIzaSyA6_vvUAbiE3-WeBjxXLNFYbApwO6B3PAQ\u0026ver=3.22 HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\netag: 65ea4ba2\r\ncache-control: public, max-age=1800, stale-while-revalidate=12600\r\ntiming-allow-origin: *\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Language, Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 171547\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=45\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":607610,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11652)","md5":"557784a1ee928c0fa1db5800b16a4029","sha1":"5b02e6993f3b823aa65983dd5f93bd5eb05ba4a6","sha256":"55ea39c00a6696abfbf89adb9054df5de54aca2b8c7bbc6cc4eb0b5175a7741d","sha512":"3899a9438b3c9c00eba4229dae30283437f6bcdfc8ce26985a6b5b3ca91cbfa783f5570cf1bef6f9ddfba644949e3b1fa806ce27f3f5cf3cc63455969747bb09","ssdeep":"12288:chzNvixhGZPwFrmvRzLLX6hjZny1YsreTp2IgG3AMnjl1v+1eqVyXURx8CYH/3x3:chzNvixhGZPSrmvRzLLX6hjZy1YsreTn","tlshash":"53d45b65b2a135669363d4a0642b1201f338945af008cafc79addfe29ff7a414277f39","first_seen":"2025-12-17T21:06:07.295722Z","last_seen":"2025-12-17T21:06:10.662562Z","times_seen":15,"resource_available":true,"data":null}},"time_used":810,"timings":{"blocked":350,"dns":18,"connect":8,"send":0,"wait":54,"receive":29,"ssl":350},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/wp-emoji-release.min.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.26 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 15 Apr 2021 12:38:55 GMT\r\nvary: Accept-Encoding\r\netag: W/\"607833df-2ea7\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11943,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9063)","md5":"fe0575b66568074463f12485d90f6d4c","sha1":"aeedd9ab3b7874e63f647042963cb1301a38b391","sha256":"647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7","sha512":"0d209cbc9550cfcf49ca7ca5a1243e1578c0a42f9fb28c1fa8d353cea26f24eed282547f47fe858126e1ba9a4aa4d8ddbd2cbdef9db5a45f24cfbfd6383bff9e","ssdeep":"192:WuKiKqdccoXJW+TJr3J//bEvAbWXXR6AooHyrOUVsbEJEoesM0m3dJXWP/2//:0qlkJW+TJr3J//bEI+XgA5UCOeffJmW3","tlshash":"8032229f732b5f9b743e36db8e96cf4d95d949932580e038cafef68129e005983b4850","first_seen":"2023-03-07T01:02:46Z","last_seen":"2026-04-16T20:37:44.851372Z","times_seen":5344,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":80,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:41.941Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/ HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Wed, 17 Dec 2025 21:05:41 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\nLocation: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":83579,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":76,"timings":{"blocked":24,"dns":1,"connect":25,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"diskauto.xyz/","fqdn":"diskauto.xyz","domain":"diskauto.xyz","tld":"xyz"},"ip":{"addr":"76.223.54.146","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"diskauto.xyz","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 01 Aug 2025 21:26:21 GMT","end":"Sat, 01 Aug 2026 21:26:21 GMT"},"fingerprint":{"sha1":"12:C9:E2:70:6C:36:EA:F7:A4:1E:56:AC:6F:5E:A1:0A:16:C1:F9:FB","sha256":"F3:1D:C9:3D:8B:29:EF:94:CC:F8:B3:31:69:4B:19:B2:0E:31:F7:53:3F:CA:97:85:65:AB:1E:CD:AF:58:11:1C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: diskauto.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nDate: Wed, 17 Dec 2025 21:05:38 GMT\r\nContent-Length: 114\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":114,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"e89f75f918dbdcee28604d4e09dd71d7","sha1":"f9d9055e9878723a12063b47d4a1a5f58c3eb1e9","sha256":"6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023","sha512":"8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0","ssdeep":"","tlshash":"eeb092ddbc61e48018e535511ea3b60d146a22ebb9018b4018c00836a96035f8d0aac5","first_seen":"2024-03-15T21:37:10Z","last_seen":"2026-04-16T21:00:12.914969Z","times_seen":125045,"resource_available":true,"data":null}},"time_used":809,"timings":{"blocked":354,"dns":75,"connect":103,"send":0,"wait":102,"receive":0,"ssl":173},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"diskauto.xyz/lander","fqdn":"diskauto.xyz","domain":"diskauto.xyz","tld":"xyz"},"ip":{"addr":"13.248.169.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:38.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"diskauto.xyz","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 01 Aug 2025 21:26:21 GMT","end":"Sat, 01 Aug 2026 21:26:21 GMT"},"fingerprint":{"sha1":"12:C9:E2:70:6C:36:EA:F7:A4:1E:56:AC:6F:5E:A1:0A:16:C1:F9:FB","sha256":"F3:1D:C9:3D:8B:29:EF:94:CC:F8:B3:31:69:4B:19:B2:0E:31:F7:53:3F:CA:97:85:65:AB:1E:CD:AF:58:11:1C"}}},"request":{"raw":"GET /lander HTTP/1.1\r\nHost: diskauto.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://diskauto.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 307 Temporary Redirect\r\nContent-Type: text/html; charset=utf-8\r\nLocation: https://forsale.godaddy.com/forsale/diskauto.xyz?utm_source=TDFS_BINNS2\u0026utm_medium=parkedpages\u0026utm_campaign=x_corp_tdfs-binns2_base\u0026traffic_type=TDFS_BINNS2\u0026traffic_id=binns2\u0026\r\nSet-Cookie: fb_sessiontraffic=S_TOUCH=\u0026pathway=9e902be3-a260-439e-a2bb-de36a89109dc\u0026V_DATE=\u0026pc=0; Path=/; Domain=afternic.com; Expires=Wed, 17 Dec 2025 21:25:38 GMT\npathway=9e902be3-a260-439e-a2bb-de36a89109dc; Path=/; Domain=afternic.com; Expires=Wed, 17 Dec 2025 21:25:38 GMT\nvisitor=vid=9e902be3-a260-439e-a2bb-de36a89109dc; Path=/; Domain=afternic.com; Expires=Wed, 16 Dec 2026 21:05:38 GMT\nmarket=nb-NO; Path=/; Domain=afternic.com; Expires=Thu, 17 Dec 2026 21:05:38 GMT\n_abck=7C480EA3FE8BFD91C29824B41BC425ED~-1~YAAQqYEyF8F97SubAQAA//8hLg8o1AKhmNB9Ysz2rCxkFD7AX+584HO1nkULvV6PGS6ZZa/kp1F5ABalDKVxWg4vTFvN/So5eII6LQRi2Mfk+PDLwSHZYnFx+JR/8SIiu+V0Xx+mdmz8gW3/ZKdTYWlJsd2EdvUJr8QOsiEWm4FxrR/ZL4/8JczRO9Zzurcf54R/301s/xzCHn3VV3n2xKY9jgBf/CfmjXMWTwRzjOfNKhK+vNQiPaEnpCC5SS0SL8Tt5/+NJMQWcaI4g8fCnb0Y7Vn/7CKd/Rj5jS6CVpIGh9zY/pI2BdddaAcxYV8Q1zE85UaO5cuzMoXO6zedMDDrfza/3cQcBMnFUpa7m5oHZ8PF47lhUz85Vos/B6A4oH2jAXanJV80TZN+IrVGt2oJECjSGOsI7vrfIeWv8a+/vt7eYysy5SaES7uNNtvKlOMBkFP+0g==~-1~-1~-1~-1~-1; Path=/; Domain=afternic.com; Expires=Thu, 17 Dec 2026 21:05:38 GMT; Max-Age=31536000\nbm_sz=EE00766F9C63CD3A95C3DA3E17D3FB97~YAAQqYEyF8J97SubAQAA//8hLh6cm/PTO3XdiCHzWmlVqFGx5oPuRB6DO7ysTrarmz2Lfv3GdaV4MHMB55+KDmLy9FmIRqVZ13Rb0VgmfsERc0oDAqdHwVFGRS2WJyDOXQe+EnaFXLVu8E8UGFr7YIcb/aSZTIrHAz3z1ENCkw44XgvxzyWslRzc4UGdqLQhnj68o8okUFlGHcybFVHuOH6YfA5Kkmvq9KEozByvpMrHOxaQ9htZa69oy3fUVoOwQs4nYPhhxFJNDVQ4VCSFO6JXRG5G9KmdxS1mTsW3UA8up23mKIyZjXnSXvAy0WrPOAs2bz1TllDw/lHJpRZ3wR+M+yrTF7h0vgLrFkwjKHk2jFz3B2ix~4470341~3617847; Path=/; Domain=afternic.com; Expires=Thu, 18 Dec 2025 01:05:38 GMT; Max-Age=14400\r\nDate: Wed, 17 Dec 2025 21:05:38 GMT\r\nContent-Length: 231\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":572,"timings":{"blocked":212,"dns":1,"connect":102,"send":0,"wait":145,"receive":0,"ssl":111},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.ihogulu.top/","fqdn":"www.ihogulu.top","domain":"ihogulu.top","tld":"top"},"ip":{"addr":"104.21.82.123","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:40.780Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ihogulu.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Wed, 17 Dec 2025 21:05:40 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: https://www.ihogulu.top/\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fB3dyNAnsd6LIxE9OQJDRewV4F0na%2FBKMaMp1LJALbqyHRZ4qKdp9rwoCsMvCtJl2gBwcOpqvrYdiMVO8GvC3v%2BYbcgtgmpQS5zu0JQ%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9af96145eec6712a-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":2,"dns":1,"connect":1,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/flags/svg/en.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/flags/svg/en.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-35e\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":862,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f9bbc4885a348eff84e4ef4155121fae","sha1":"afaa1646576b96aa105a66c3273f13f0cb30e0c3","sha256":"de46013c87c1d6b0e4804a6bd8be50f2c5f961c5adbc42ba40b8913af33afe75","sha512":"b0e944509060a802c1b2d4c014070e41bd9b8af4d1969670094cecdff21b537b14a2d64e3368881f49694bd9582f10ee58674b90e0e7acf36e70d51c0b08b664","ssdeep":"","tlshash":"5211a384996a505c2c86c6cbfed46e8443ff72cef6650984644d229c7149d9f47c4b1d","first_seen":"2023-04-08T13:53:30Z","last_seen":"2026-04-16T18:51:44.889628Z","times_seen":9741,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:14 GMT","end":"Mon, 16 Feb 2026 08:40:13 GMT"},"fingerprint":{"sha1":"DF:9F:85:F6:4A:53:64:E2:D3:A4:9C:9B:0A:4D:88:F2:DD:8C:92:6C","sha256":"99:65:94:2E:11:0B:3A:F6:B6:E7:38:F9:58:D0:01:2A:B6:CA:D4:2D:38:BB:87:ED:72:23:CA:63:32:85:95:35"}}},"request":{"raw":"GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.visitsoufli.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 23\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.visitsoufli.org\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=10\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8a80554c91d9fca8acb82f023de02f11","sha1":"5f36b2ea290645ee34d943220a14b54ee5ea5be5","sha256":"ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356","sha512":"ca4b6defb8adcc010050bc8b1bb8f8092c4928b8a0fba32146abcfb256e4d91672f88ca2cdf6210e754e5b8ac5e23fb023806ccd749ac8b701f79a691f03c87a","ssdeep":"","tlshash":"c7200000000000000000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-04-16T21:13:05.746253Z","times_seen":350652,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":40,"dns":16,"connect":8,"send":0,"wait":23,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.arswag.xyz/","fqdn":"www.arswag.xyz","domain":"arswag.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:39.193Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.arswag.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":0,"dns":82,"connect":102,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Didact%20Gothic:ital,wght@0,400\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.207.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:14 GMT","end":"Mon, 16 Feb 2026 08:40:13 GMT"},"fingerprint":{"sha1":"DF:9F:85:F6:4A:53:64:E2:D3:A4:9C:9B:0A:4D:88:F2:DD:8C:92:6C","sha256":"99:65:94:2E:11:0B:3A:F6:B6:E7:38:F9:58:D0:01:2A:B6:CA:D4:2D:38:BB:87:ED:72:23:CA:63:32:85:95:35"}}},"request":{"raw":"GET /css2?family=Didact%20Gothic:ital,wght@0,400\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 17 Dec 2025 21:05:42 GMT\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2116,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"d7d809a39e7f33e653fbf5cf157da184","sha1":"b9e5e672bb578919049d680e948d565cfafa7b12","sha256":"b0499c2df17523dd1bb0091f761e4e005732cf9084e485560b0dc5afb602199a","sha512":"014c6872a417daf36bea14f2bc6c1b163ac6490c28e6353e21e7934b0d3553dc83fbd13c2e2d611eb104dbda9d2c918b93e1330813b560ffbfad248b5d6a928c","ssdeep":"","tlshash":"78419991005b9900ebe31cd537dfbf3a9d4e10127086e5798ffe1898acdac72921072e","first_seen":"2025-09-26T11:25:08.539426Z","last_seen":"2026-04-16T17:29:46.299299Z","times_seen":169,"resource_available":false,"data":null}},"time_used":637,"timings":{"blocked":307,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":300},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/wp-job-manager/assets/css/chosen.css?ver=1.1.0","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/wp-job-manager/assets/css/chosen.css?ver=1.1.0 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 14:44:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac933-2b2a\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11050,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10685)","md5":"0e75ce6155c276e70362526703e87bd3","sha1":"e3f41d35156282b7372b7d202cfda162495a5dbc","sha256":"3f8b153dfbbb7bd6b4549ad06c763ffc8b70122a0ec928821fee375399ef7647","sha512":"6ae494412ab0ca8d2ab3c647f7be9a6909376194cb266046458ff9ca401743af806ddb705742a2c635726aef1b25679fec70d81f7157e11448183f68c45f2b4e","ssdeep":"192:SA8LQLebAUnwT1p/jyELohd+aEMuawTa0c:SrL5qWVEbw","tlshash":"3f32016aabe1292db4f3c9fca05122dd6730c4e2d6090facbe6b75e5c6c58d20053e5d","first_seen":"2023-05-09T05:55:47Z","last_seen":"2026-04-12T07:00:09.783416Z","times_seen":70,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/plugins/ScrollToPlugin.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/gsap/1.18.5/plugins/ScrollToPlugin.min.js?ver=4.9.26 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 934\r\ncf-ray: 9af9614f0b890afe-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e71-9fd\"\r\nlast-modified: Mon, 04 May 2020 16:10:25 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1099513\r\nexpires: Mon, 07 Dec 2026 21:05:42 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ZlhMP6AbJeOTEw9GZUGNQPG%2FpUqzM%2BDtT8%2Fq9EhcDWrheqcU4FCAtD5vMAIoHcF56Y2vmHF3gRuAb%2F0cxkBsUD%2B7RudJ%2FJ4wiJjkK0J1vBSUbtTDFf6fpDA6ZR9A8e2kPLmaeA6U\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2557,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2173)","md5":"ab37c9dbe447696daba949ed4899abf2","sha1":"609fd737c45dfd7fb9a60cbcdc6e667e3d3d7dd0","sha256":"806548b84857dbb3a3243a0d7c0aedc2afd647bf96b48de90985df9591ca4a4a","sha512":"1d8ff8d6c20009b1f98ff53bee0099e799fc53d99e957a8c217d78997b89c1181bd20c40762b9a648974c7743dbce68e1f0a00ed2459763b567c3dc21c710493","ssdeep":"","tlshash":"d951338e7700516552cc9eaa953fc7c7a2a6209b7355616e3c0dccfd3c1a73a3095e72","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-12T22:50:02.291297Z","times_seen":141,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":1,"connect":3,"send":0,"wait":11,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ihogulu.top/","fqdn":"www.ihogulu.top","domain":"ihogulu.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:40.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ihogulu.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 18:05:24 GMT","end":"Mon, 09 Mar 2026 19:04:10 GMT"},"fingerprint":{"sha1":"D4:C0:51:CA:70:0D:BF:2F:D5:EA:ED:80:B9:26:7B:F7:EF:3C:8F:26","sha256":"99:5B:9C:FA:5A:36:A9:D9:25:43:CC:D2:03:FF:F7:B7:EA:CE:13:B2:3C:8D:6C:48:1F:08:A4:92:3F:83:F1:C0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ihogulu.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:41.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/ HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0\r\nlink: \u003chttps://www.visitsoufli.org/wp-json/\u003e; rel=\"https://api.w.org/\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Chosen:1.1.0","description":"Chosen is a jQuery plugin that makes long, unwieldy select boxes much more user-friendly.","website":"https://harvesthq.github.io/chosen/","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks"]},{"name":"WordPress:4.9.26","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate:1.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":83579,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1746)","md5":"8962700190fec32279739bf5662b53dd","sha1":"f5582865445dd40d6c1b35db85f1f0df10d97f43","sha256":"bce5cc6cb99c2fb9b7c089ea95a9bd2dfbe50bd2bedd96eddd30b32a5941c0f3","sha512":"def66354d06a17096e4a453c2ff80ea3db3071014e3f0bc14bf1244631cf3438dc42832eb5641156cb00cdf633e7893e15fc0c2ca0dfa96935261f6eb9857a8b","ssdeep":"768:sgwoctsYoYUy7D0bupaFB7MAIY+vEjZKI3ifrR4K8lhDxqIrjDVIYfY2YkTR+YUx:sboctkcD0waIeKgXbxfrjL+YU6g7l","tlshash":"4c8319ae11d85b3c076b0a6a31de765c677bd025da056f8876fe846cc7c6e8100b7acc","first_seen":"2025-12-17T21:06:07.319801Z","last_seen":"2025-12-17T21:06:10.676107Z","times_seen":15,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/63/5d/common.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:47.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:38:53 GMT","end":"Mon, 16 Feb 2026 08:38:52 GMT"},"fingerprint":{"sha1":"98:61:A1:01:94:12:1C:03:5E:13:41:74:51:6D:2D:18:E9:F2:69:05","sha256":"4E:24:16:A8:D6:22:3F:BE:06:74:9D:F4:9B:CB:DF:31:D8:E5:8A:F9:E7:B3:7F:8D:5E:50:F2:25:34:EA:7A:94"}}},"request":{"raw":"GET /maps-api-v3/api/js/63/5d/common.js HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37762\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 13 Dec 2025 10:38:54 GMT\r\nexpires: Sun, 13 Dec 2026 10:38:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Dec 2025 09:57:48 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 383213\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":128083,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (726)","md5":"d6f751f375ca93acd0382c53b1916141","sha1":"28256845c408a9aa64b4efabd265250b2a7ef0cf","sha256":"94363e2962505c099aa3960d59532e0e4d15eb3f1bc41f6088bc71ba4bb0fff2","sha512":"13c4dd8bf965496affee2569d7c7b64c135cb7584978e8ce0eedc8c1e3006d688a2e9f3bb1ee22ce74b43a09896be356cd7f3c3a1a14c6d2301fb6a3202c1bce","ssdeep":"3072:4AkzLM4Og4XWvtLN+caKtk1TbHP1lehT++GefE9TDbJ/+McyjsT+v:4AkzLM4Og4GvtLN+caKUTbHP1lj+Gecf","tlshash":"c4c3b6c5b19370b3a761a8e414e74102b665a895f02dcc2cb5fe8df2aff185611f9b38","first_seen":"2025-12-11T20:11:57.907506Z","last_seen":"2026-01-07T20:10:50.774075Z","times_seen":26984,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2025-12-17","alert":"Hunting_JS_WebAssembly","trigger":"maps.google.com/maps-api-v3/api/js/63/5d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"http","addr":"www.shoespro.store/","fqdn":"www.shoespro.store","domain":"shoespro.store","tld":"store"},"ip":{"addr":"23.227.38.74","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:36.942Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.shoespro.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Wed, 17 Dec 2025 21:05:36 GMT\r\nContent-Type: text/html\r\nContent-Length: 167\r\nConnection: keep-alive\r\nCache-Control: max-age=3600\r\nExpires: Wed, 17 Dec 2025 22:05:36 GMT\r\nLocation: https://www.shoespro.store/\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=SF%2FPcUK7JpXQWiE93dC74acalxaanE2k3HL%2FAsbo0Kpg3qNyEjz6TU6YWxUbxDFmJqt1AUWIeVf0ekpKc0ivJCVNavppab8o4cZszfxFPp6wajvW2AVtaR6h9ENJtRZQGxHIcw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nVary: Accept-Encoding\r\nServer-Timing: cfRequestDuration;dur=47.999859\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Permitted-Cross-Domain-Policies: none\r\nX-Download-Options: noopen\r\nServer: cloudflare\r\nCF-RAY: 9af9612de878569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":1,"send":0,"wait":52,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/uploads/2025/10/DownloadontheAppStore.png","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/uploads/2025/10/DownloadontheAppStore.png HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: image/png\r\ncontent-length: 5205\r\nlast-modified: Fri, 03 Oct 2025 11:34:56 GMT\r\netag: \"68dfb4e0-1455\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5205,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 44, 8-bit/color RGBA, non-interlaced","md5":"168980a85b59a3994a58cfd43be38bee","sha1":"26f44e3177ba29fee2b62aac91b85530f70c105e","sha256":"d6da73ec714c500a6b2342147c480d893d1e406cd39ec78a2a8f1748b959c51f","sha512":"a0b2c6e1fb9241a8d6b00271c37f8877f9ebb8cbdc4fc8f982ff5fdfc130186d38a4b8e553b73ae2ae756be4e65d35d5e80b186f00462ca4df155c1acd06fc2b","ssdeep":"96:HL2bW1SSUCKGELr1KLGcrEFubx1TxNrOCe0fQejyNfzuV:b1pKGELrgTr4u1toajsbuV","tlshash":"c3b16e4ba6269199c1649be338de42177f314bc0a4fdc4be2cda9c1151616ffed531c8","first_seen":"2025-12-17T21:06:07.31361Z","last_seen":"2025-12-17T21:06:10.67775Z","times_seen":15,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fullwarezcrack.com/","fqdn":"fullwarezcrack.com","domain":"fullwarezcrack.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:36.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fullwarezcrack.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 14 Dec 2025 09:17:19 GMT","end":"Sat, 14 Mar 2026 10:15:58 GMT"},"fingerprint":{"sha1":"3F:52:19:44:EA:E8:D7:AC:86:56:83:D7:BB:6C:00:84:44:57:E2:94","sha256":"C4:A3:BC:1B:B3:E7:30:90:62:F8:F3:5E:AC:41:65:6D:83:23:6C:1A:19:D1:02:3B:28:77:89:AD:C1:FA:10:86"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fullwarezcrack.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":31,"dns":20,"connect":1,"send":0,"wait":0,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"fullwarezcrack.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-17","alert":"Phishing Block","trigger":"fullwarezcrack.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/event-post/css/eventpost.min.css?ver=4.5","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/event-post/css/eventpost.min.css?ver=4.5 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 14:43:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac923-12ec\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4844,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with very long lines (4844), with no line terminators","md5":"ec7843c2eae1b7c35ec95386e7a10c64","sha1":"94a529bc8a0fc5522fbbc31297ee8feb14fe93cf","sha256":"15169112cbf94044160271671c0a913a284518bc93d00213bd420c6099bad754","sha512":"f122eb476a7b83735535f5ec265b82e0f2de421c3f8e156baf658f73338f13a31525f8209bf00226a03b89d5b4cef5471c41ef564b55b3eb1c64dbaf155f0e72","ssdeep":"48:KCwqkUiFfe1ID4SBNf+9xIrNo7ZQzUo/5Uo2pS5DlijklHI3rdxxHh:+qQtJA9xIrN06zUo/5Uo2pSSQS3rL","tlshash":"92a10f317685d2ad32efed3fe75033492d749bc6d5173e399d38fea88a8209a2d61104","first_seen":"2025-12-17T21:06:07.291432Z","last_seen":"2025-12-17T21:06:10.678518Z","times_seen":15,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/TweenLite.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/gsap/1.18.5/TweenLite.min.js?ver=4.9.26 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 8700\r\ncf-ray: 9af9614efb850afe-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e71-6a69\"\r\nlast-modified: Mon, 04 May 2020 16:10:25 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 2520130\r\nexpires: Mon, 07 Dec 2026 21:05:42 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QWtb42EKsZpQh%2BNe6b6o0XC3Aw28D73se13bFaoO%2BXp%2B2FdAlc390bRIbbtBxpxhaG%2FXACasMh3F8IhQeXbe%2B9TQh62cmciuHRYA%2FEZc6Rq1Qe5evVdaQd7z81V9A4xnuvO8Ndca\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27241,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (26857)","md5":"3bb7bb8f4b38ac71b33dad50f1b17f49","sha1":"7fea35cfb6ddcf08c038222b8dabed67faf3206d","sha256":"15ff1b3821afd681d5c405d980a27e80997c0f1bca41ab01bb23533d75606df5","sha512":"433999e3f20a5bae24b479ae2febb7679217d5412035fd8cacb67e9d15ae5a6531e92cd2ed2a4757a2101ce63c36401249a23771e44c2e0a28af5ad6521048c5","ssdeep":"768:j6Hnr8RMCdGU0IFEmtViU/gmhDqgp6t4R57OLzrI4n:jmnS1ViU/thDzR57OL","tlshash":"3ac2b6867212a15245d611ea593f0783733798ebb4484e3cb549c9ce3f1dd8822bbf76","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-12T22:50:02.266334Z","times_seen":77,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":4,"connect":1,"send":0,"wait":14,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/didactgothic/v21/ahcfv8qz1zt6hCC5G4F_P4ASlUuYpg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:14 GMT","end":"Mon, 16 Feb 2026 08:40:13 GMT"},"fingerprint":{"sha1":"FF:92:1F:D0:E9:98:18:CB:FA:1B:90:BE:3E:B9:41:44:DE:05:28:15","sha256":"0C:A2:FB:F0:F6:40:B0:82:E4:FB:1A:51:96:48:D8:22:C9:05:C4:41:67:1F:41:D4:8C:F2:B6:85:A4:D2:3A:AF"}}},"request":{"raw":"GET /s/didactgothic/v21/ahcfv8qz1zt6hCC5G4F_P4ASlUuYpg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.visitsoufli.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 17836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 13 Dec 2025 10:57:59 GMT\r\nexpires: Sun, 13 Dec 2026 10:57:59 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:27:22 GMT\r\ncontent-type: font/woff2\r\nage: 382064\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 17836, version 1.0","md5":"30b9dee9d0fcd6516b6a1c30d6749f0a","sha1":"86ccc60897ec6cd37c79feff92470540a1a77fb4","sha256":"a70246317c186a410244c8947aef7fedc04afe1da634eef3e6b2f37b72d5c627","sha512":"8cd8d93ae70117f0728b7824d922d206f74429f9e1eede19498bb6cadfafccde26485b7ddcb11959c1a1e589106bb054b7b0152026c7297672114893a0ea6d20","ssdeep":"384:Did3TlaHWjNGk/mFnH8pSCCebHTd26evtdCWgD2D6VWzzkySTXcOYE4j:+lFjl/EH8pSpeNxelZReoky+cOf4j","tlshash":"e082d0497090a85dd2e5bff5d17fa100d4bc3c0951667f301b5cb92f822b28ba9ac869","first_seen":"2025-09-17T20:18:14.458895Z","last_seen":"2026-04-15T20:18:32.281629Z","times_seen":668,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":59,"dns":1,"connect":8,"send":0,"wait":9,"receive":2,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/didactgothic/v21/ahcfv8qz1zt6hCC5G4F_P4ASlUiYpnLl.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:14 GMT","end":"Mon, 16 Feb 2026 08:40:13 GMT"},"fingerprint":{"sha1":"FF:92:1F:D0:E9:98:18:CB:FA:1B:90:BE:3E:B9:41:44:DE:05:28:15","sha256":"0C:A2:FB:F0:F6:40:B0:82:E4:FB:1A:51:96:48:D8:22:C9:05:C4:41:67:1F:41:D4:8C:F2:B6:85:A4:D2:3A:AF"}}},"request":{"raw":"GET /s/didactgothic/v21/ahcfv8qz1zt6hCC5G4F_P4ASlUiYpnLl.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.visitsoufli.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 8668\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 13 Dec 2025 10:57:59 GMT\r\nexpires: Sun, 13 Dec 2026 10:57:59 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:27:22 GMT\r\ncontent-type: font/woff2\r\nage: 382064\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8668,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 8668, version 1.0","md5":"dab492dac6a3c8f2369cc2a8d05f7734","sha1":"3d89505b8f28aa4cbf6142c072717f96e333e0ae","sha256":"2a9b401cf07499a1cc7c50f28d3938ea28b0fb8cf3458792696883fcf11316c5","sha512":"142d7be954474883c3c436770398a197e3caa2b340b14e98c1c65bdef9d12367b9ecc063a73aeb141308303725847f936f94ac74f6830cd0044ac31f98397014","ssdeep":"192:3WSHXbOe29GsaPcvMJN7ftHVoO+/SkyYsdoB/P5:3bXbiGsAVN71HvkfvB/h","tlshash":"9502b059231a4dbae2e8d37174507ad39115805d810d79868c78c349c69ad35faf3cfd","first_seen":"2025-09-17T20:18:14.432304Z","last_seen":"2026-04-08T04:51:29.434623Z","times_seen":122,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":116,"dns":1,"connect":8,"send":0,"wait":9,"receive":1,"ssl":113},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/flags/svg/el.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/flags/svg/el.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-2b6\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":694,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b84374a32f0741686dda53799d10b2ad","sha1":"b434aad74d85c74503c8ed35ef890bdef14ddede","sha256":"8df55bbaf97f7ec255c4edd00172fa549fda7c6b0f805a3f5bfda56244e4064d","sha512":"01ee73f7ccc0189a75a52a75430c3d61be3a0469ab78a49c9e618baf54f74c29454822d9ca495f82bf452955d8f58b9ea5702ae432c85b577d3c6d5503454f9e","ssdeep":"","tlshash":"930121f222787069390703a6ebad34d7c0b5b08e204a02e8f86411396e4e75ffca6641","first_seen":"2023-05-26T16:48:49Z","last_seen":"2026-04-16T06:09:41.352868Z","times_seen":432,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.shoespro.store/","fqdn":"www.shoespro.store","domain":"shoespro.store","tld":"store"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shoespro.store","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 22 Oct 2025 08:46:58 GMT","end":"Tue, 20 Jan 2026 09:46:52 GMT"},"fingerprint":{"sha1":"FF:93:DD:0F:35:F4:33:7E:C3:2D:F7:C6:7A:3F:BF:BD:A2:0E:88:9A","sha256":"8D:98:2C:90:80:6A:18:EA:A6:40:DB:49:A5:D7:97:E2:0E:80:FD:2D:7C:F7:A9:29:FC:7A:77:93:5E:2C:AA:4E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.shoespro.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _shopify_essential=:AZsuIfg_AAEA4jXYa3kP-aMTQdMJF3-W1ZxG7qu3sj7Z4u_mtu9Za1a7vAXtnlo03U2stqt-x4-xzCl95uy97-Z68DWCO3GrklLRXsD_rRLz0jFdCTwNOCcQFCy1mDjXVUmDE9poseJmL68-Cv5frekX5G-yW_b0INwdVGGS6etkDwEm-PjF8f1zTTxzboSxCyhmPBO8wqgKeKVndbnl79IDtsAcUkppgDChjqSU3YJLb97SDxbKOfBS:\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/themes/listable/style.css?ver=1.15.1","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/themes/listable/style.css?ver=1.15.1 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 14:44:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac93a-7558d\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":480653,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (1162)","md5":"dc3d589df9ff3c6e17efe7c1d002b88d","sha1":"14c37fa5881d9d1361c83ca01977e201947a102f","sha256":"496d498b96dd9db9597ac31bc55239d6ba6e03899781dbc5600ce92fc7e33edc","sha512":"458dfc37c3dcebe2ce8bf091d218ed24f8429286e4e23a50e30633ffb074784dad390fe44dc712f81c35f8d00349827f6f16c5b76caed73db832327582768e71","ssdeep":"6144:8KbISz7vcPzwFTO/APge0PJmP4WCvbVJwlZ:8Kb9z7AwFTO/AP0PJmP4WCvbVJwlZ","tlshash":"a8a4a5db59f606141a26821527eb7798b3248017da0edde9b9ee614ccfca7c450e3bcc","first_seen":"2025-12-17T21:06:07.315565Z","last_seen":"2025-12-17T21:06:10.699652Z","times_seen":15,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/themes/listable/assets/img/select-arrow.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/themes/listable/assets/img/select-arrow.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/wp-content/themes/listable/style.css?ver=1.15.1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:44:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac93b-39a\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":922,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7ea556866f4833fbfc5f2f38c9926cb5","sha1":"65968c209b15eea0a188af7bb6b58e7c96ed7715","sha256":"76956c8078388d8b57a8040cd935811a55ea4744a7c9f9e32630e9109be89b7b","sha512":"7c2d23b7fa8bbb5884a53678bdb7238945c984fd2659a7bf582dd0d0bed38702f334e4fc179a661095f8ff2d4e42e68353c1462a333a4eb04f4936caec1679af","ssdeep":"","tlshash":"871189c051fa5818d096c701e3f9ba46cd3db0c716c40489b6dd165eaf390aa4b8f24a","first_seen":"2023-09-17T08:46:52Z","last_seen":"2026-03-12T06:42:12.211324Z","times_seen":25,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/flags/svg/bg.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/flags/svg/bg.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-101\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":257,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1e109682c7a6302e0d362edc4647c49d","sha1":"96f8b72b45182657d0102a5e18ed6d698665325c","sha256":"bbbd0544dea156ec45b7713db5e66f0efc768482f5a61ddf0cdc9a928f194661","sha512":"3fe4b9bbccac61a6ca63207d5af65abb0e54313fe2534f471a89eb35d20e34a41f3d44a5f2b5a722896588565c6db89b6b498ce3869f492f5c9a8e22c7ab70a7","ssdeep":"","tlshash":"77d05ee6a268bf58ad0ac7708f6835d6c4a6308a208910c9f4e02625224e7afaccd915","first_seen":"2023-05-18T15:31:02Z","last_seen":"2026-04-16T06:09:41.688275Z","times_seen":415,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"airsplendid.com/","fqdn":"airsplendid.com","domain":"airsplendid.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.812Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: airsplendid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.arswag.xyz/","fqdn":"www.arswag.xyz","domain":"arswag.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:39.535Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.arswag.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/event-post/css/openlayers.css?ver=4.5","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/event-post/css/openlayers.css?ver=4.5 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 14:43:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac923-f15\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3861,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3861), with no line terminators","md5":"9307a55d70f7a6c5db88a42baeee5fe1","sha1":"76a820e476d7b22e21598924d8658239d5066ba4","sha256":"ad0ab8171a6adcb94f43cc8fd758ba676940a3cd9be8008381ddf908ac8d101c","sha512":"0f673f9e6495970a19936f522f024af0690bc82c8fb8d6d9fef6502ff94dcf0fa8fb25f3b1b9c9b7b94afe209f7419a0c8b4438b4ab1dbb82913c65bd42e88ee","ssdeep":"","tlshash":"be81553e1512226b6263c1329ec2e954b639f936e832277dfa11e650dede4fc057610f","first_seen":"2023-05-11T19:37:23Z","last_seen":"2026-04-10T02:47:32.406205Z","times_seen":120,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/wp-job-manager/assets/js/jquery-chosen/chosen.jquery.min.js?ver=1.1.0","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/wp-job-manager/assets/js/jquery-chosen/chosen.jquery.min.js?ver=1.1.0 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 14:44:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac933-6ad3\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27347,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (27226)","md5":"6708dcea1716eff1b577fb319457cf91","sha1":"ef24bbbf87bc3e8b39ba5e2fbe27aa43fb8abc6a","sha256":"7662ec8d21c24b77d07b280c79033b8f939f16a338d6a48e2e7436e9e0dc004a","sha512":"0ea184c4a2d84fa9a89ddfae9bd2f1d69fbb324d09c481acf89bf87231acce41c291d0e1a647ce0d705f627ab823c6f3d4cf147185e371bc1aba70db8e97c9f8","ssdeep":"768:YdbhY5F8m7AE77EJwe0uZJwIgNb9EDTQYfCOeNj6b/:YRQBt7EJwe0uJgNb9EPbteNj6b/","tlshash":"09c24184bbf1a22141ba54eda45ea1c5a337a4dcd80c8ddcfe6ddde25468c0d712fa34","first_seen":"2023-03-07T13:48:47Z","last_seen":"2026-04-16T19:46:03.117866Z","times_seen":237,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/js/base.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/js/base.js?ver=4.9.26 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-34e0\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13536,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3129)","md5":"3b9506442f5e9da937159ec8e978ac92","sha1":"a065a287369571adf621a0be14bb31b2bcef194c","sha256":"b9bdd9c21f6b831230a5edcd3c073f310bc4c518097adb15fc50bd25e3343e2b","sha512":"630ded7a1fc798ba19516f2e66dc58d37364ec14501b6c24b5b7df085db4b7b86db1c9ec1740c1d375027e59b7d2f9a00bf960f0e630d034221e1b3388cddbff","ssdeep":"192:xPzCvSMaV0ZATrR09wMmQZcNt3FaWHd0XS0ZgxKuZwQ9PdDmfFVxZ4HQlbzk:FzCKMPZATN09o0mtVaYdvndDsr2","tlshash":"1952b79a11b7103e9a272124efff165c74f602478010f926bfee8d478f81998d36abd5","first_seen":"2023-05-16T08:06:07Z","last_seen":"2026-04-16T09:21:35.350561Z","times_seen":489,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/uploads/2018/06/cropped-00_listable_demo-192x192.jpg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/uploads/2018/06/cropped-00_listable_demo-192x192.jpg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 10348\r\nlast-modified: Wed, 17 Sep 2025 14:45:31 GMT\r\netag: \"68cac98b-286c\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10348,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 192x192, components 3","md5":"f466e7bc8e295f70c45be23bfc1b0f01","sha1":"4c26560e29deb5504afa003efe3f0b6517d42653","sha256":"a31a3a140658112cdbc6401bdabd9b5045e9cfe19c66267a90aac1cba2794dde","sha512":"c8a91bcb5b1049e5f0cca55e8280492e785845ec4e349b0a51483f3ddbf2396d90efccbd89ee81e51296290dde57f93e6b8faa9d57459d746233a79c0d3746c0","ssdeep":"192:jnVAMPqMDruD99s14cCLysz6NU6BTXou/yNTbn9UW2UFem6x6S/Le9nS:jVyC6rPcCLyy6Nau/yJRn2PxNR","tlshash":"13229f238fe7c50650a16d7101fb5563fe195ad78881cda8b9f0dd78c7a82c9992406d","first_seen":"2025-12-17T21:06:07.302617Z","last_seen":"2025-12-17T21:06:10.713745Z","times_seen":15,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.shoespro.store/","fqdn":"www.shoespro.store","domain":"shoespro.store","tld":"store"},"ip":{"addr":"23.227.38.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:36.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shoespro.store","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 22 Oct 2025 08:46:58 GMT","end":"Tue, 20 Jan 2026 09:46:52 GMT"},"fingerprint":{"sha1":"FF:93:DD:0F:35:F4:33:7E:C3:2D:F7:C6:7A:3F:BF:BD:A2:0E:88:9A","sha256":"8D:98:2C:90:80:6A:18:EA:A6:40:DB:49:A5:D7:97:E2:0E:80:FD:2D:7C:F7:A9:29:FC:7A:77:93:5E:2C:AA:4E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.shoespro.store\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Wed, 17 Dec 2025 21:05:36 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncf-ray: 9af9612c0bfa23eb-OSL\r\nx-sorting-hat-podid: -1\r\nx-storefront-renderer-rendered: 1\r\nshopify-complexity-score: 0\r\nset-cookie: _shopify_essential=:AZsuIfg_AAEA4jXYa3kP-aMTQdMJF3-W1ZxG7qu3sj7Z4u_mtu9Za1a7vAXtnlo03U2stqt-x4-xzCl95uy97-Z68DWCO3GrklLRXsD_rRLz0jFdCTwNOCcQFCy1mDjXVUmDE9poseJmL68-Cv5frekX5G-yW_b0INwdVGGS6etkDwEm-PjF8f1zTTxzboSxCyhmPBO8wqgKeKVndbnl79IDtsAcUkppgDChjqSU3YJLb97SDxbKOfBS:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax\r\nx-frame-options: DENY\r\ncontent-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;\r\nx-shardid: -1\r\nvary: Accept,accept-encoding\r\ncache-control: private, no-store\r\npowered-by: Shopify\r\nserver-timing: processing;dur=18, asn;desc=\"50304\", edge;desc=\"OSL\", country;desc=\"NO\", pageType;desc=\"index\", servedBy;desc=\"bmgg\", requestID;desc=\"948dc504-7517-4f12-ab69-1fd9df3f4412-1766005536\", _y;desc=\"86a5041a-4a4c-4eba-b719-0a9788e4d0a6\", _s;desc=\"bd30eac5-28dc-4190-bb0e-89b2ea12048b\", cfRequestDuration;dur=262.999773\r\ncontent-encoding: gzip\r\nx-dc: gcp-europe-west4,gcp-us-east1,gcp-us-east1\r\nx-request-id: 948dc504-7517-4f12-ab69-1fd9df3f4412-1766005536\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rMOGBEK2KVj6q8gn%2Fc1HxpomjJb7aby%2F90YFRiZV97zPIKq49x%2BjYP%2By2qapkgGcrzNN%2FuYkfJcHFs3NpofrNQt2P0oONs9msXe4QrS4NRf9EN7oPF5uCuWc5%2F9wGSeRpI91iQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-permitted-cross-domain-policies: none\r\nx-download-options: noopen\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Shopify","description":"Shopify is a subscription-based software that allows anyone to set up an online store and sell their products. Shopify store owners can also sell in physical locations using Shopify POS, a point-of-sale app and accompanying hardware.","website":"https://shopify.com","common_platform_enumeration":"","icon":"Shopify.svg","categories":["Ecommerce","CMS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:2.0.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":20725,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1787)","md5":"c098351e94be4564ce8831e4cb48b81a","sha1":"8bb0f0d62495f4c4af9f5b9d1f9af41038ec9534","sha256":"ac56f574a2881b5795e4be2126214308045f21cc87e1cf9a1d32320a37c97883","sha512":"577145decb683f8e5789dea77975541ec3f7d0917a57d971deb638c17c421bd937c76dc9ffb62e93de69a6bed7df5de6b075fc5f56a792bac45ad8f75534ef38","ssdeep":"384:VgzO5W04F3tvF0ghVoJG/3MyUURJkMT48HANtIxatJaijL5:SKW04FdvF0ghiKTBgg4tJDx","tlshash":"02921afb55e312e4648387a4fb3e2220b60aa4fbd757c991b79c5bc85f814848d47dc8","first_seen":"2025-12-17T21:06:07.659212Z","last_seen":"2025-12-17T21:06:10.714581Z","times_seen":5,"resource_available":false,"data":null}},"time_used":424,"timings":{"blocked":79,"dns":68,"connect":1,"send":0,"wait":265,"receive":0,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.customerconnectexpo.com/","fqdn":"www.customerconnectexpo.com","domain":"customerconnectexpo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.customerconnectexpo.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Thu, 07 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:A1:CB:9C:20:37:D5:17:DC:69:25:FC:E2:95:FF:73:3B:FA:F9:17","sha256":"6E:A4:FF:4D:63:19:F9:1B:43:BB:55:60:02:3D:9B:1D:5C:C5:04:1E:07:61:84:1C:E6:60:BA:77:2A:78:77:57"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.customerconnectexpo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":502,"timings":{"blocked":251,"dns":73,"connect":39,"send":0,"wait":0,"receive":0,"ssl":139},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/uploads/2025/10/GetItOnGooglePlay.png","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/uploads/2025/10/GetItOnGooglePlay.png HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: image/png\r\ncontent-length: 5524\r\nlast-modified: Fri, 03 Oct 2025 11:34:56 GMT\r\netag: \"68dfb4e0-1594\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5524,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 44, 8-bit/color RGBA, non-interlaced","md5":"63ac7aec6ebfec7ef180c8e1d2e12bd6","sha1":"a476cdea496320e761eb4fd224f24dac50f29069","sha256":"4c06270c7920772b1a690972beec161ca175a3cb23a946886692ec7e73c354a1","sha512":"b66e21a3f3f2c83d5dd6f897816a7afa4dfd89304d7dca2aba936c47855e264f84d160fe04ac596609e29ed5e2b7c287b269eff66e14a3538f23aa8a547c1c14","ssdeep":"96:HL2bTo83Xo1kXARCXPtVmOL+pFKbNVD93gYXzL+b99ygMSraYYo:2o1kwRC1VzL+T8D9NXz49iSraI","tlshash":"61b16cd4b206486a0856b9212c48865300175c61d871f934b81bdd8bbeb20ff609d9ff","first_seen":"2025-12-17T21:06:07.300893Z","last_seen":"2025-12-17T21:06:10.716764Z","times_seen":15,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/themes/listable/assets/js/main.min.js?ver=1.15.1","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/themes/listable/assets/js/main.min.js?ver=1.15.1 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 14:44:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac93b-2a7c4\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":174020,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (29255)","md5":"f181c44d82d33f72b69c0ba296f7a8da","sha1":"2f1b4747c89d036ff1aee24e5142488b17122590","sha256":"c2337a9a966800b40b619c920c37e5c0d41587e1d19964dcd4bc9e2471380fa5","sha512":"edcf06e471e838601b645c0756df3bddba2c87a4908c0add3a66239a02b1b7d668b377ea8328f52d0f5590a6e9a13d046775d8ce851da0d644e322e4eaa7ca82","ssdeep":"1536:OTPOJAWhg+ooeA5cUv/dI0jKbB9cIRrRFvELeVRCewG8J+koablFQ08kOvEshxdL:OLEKb53AeGJ5akODBHdI0EnS","tlshash":"1804e78cb662b13142bf21e6655f640d73376b3da40a856cb428dce85db9c09722bf3d","first_seen":"2023-09-17T08:46:52Z","last_seen":"2026-03-12T06:42:12.221709Z","times_seen":19,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"fullwarezcrack.com/","fqdn":"fullwarezcrack.com","domain":"fullwarezcrack.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:36.558Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: fullwarezcrack.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":1,"dns":1,"connect":1,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"fullwarezcrack.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-17","alert":"Phishing Block","trigger":"fullwarezcrack.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ihogulu.top/","fqdn":"www.ihogulu.top","domain":"ihogulu.top","tld":"top"},"ip":{"addr":"104.21.82.123","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:39.583Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ihogulu.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 18:05:24 GMT","end":"Mon, 09 Mar 2026 19:04:10 GMT"},"fingerprint":{"sha1":"D4:C0:51:CA:70:0D:BF:2F:D5:EA:ED:80:B9:26:7B:F7:EF:3C:8F:26","sha256":"99:5B:9C:FA:5A:36:A9:D9:25:43:CC:D2:03:FF:F7:B7:EA:CE:13:B2:3C:8D:6C:48:1F:08:A4:92:3F:83:F1:C0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ihogulu.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Wed, 17 Dec 2025 21:05:40 GMT\r\ncontent-length: 0\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cdvGqpUzHH66e2T9G5kUsw8vjucpDnJmDtgr%2F8U%2BlQYLYnu6wn6panWjCgkJgsA9REAoX65sNCoSJbtpZknMpHyBmnHX%2Bc39UXQbhig%3D\"}]}\r\ncf-ray: 9af9613edfba0b69-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":1218,"timings":{"blocked":71,"dns":57,"connect":2,"send":0,"wait":1076,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-17","alert":"Sinkholed","trigger":"www.ihogulu.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/gsap/1.18.5/plugins/CSSPlugin.min.js?ver=4.9.26","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/gsap/1.18.5/plugins/CSSPlugin.min.js?ver=4.9.26 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14131\r\ncf-ray: 9af9614f0b8c0afe-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e71-9e97\"\r\nlast-modified: Mon, 04 May 2020 16:10:25 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 5441117\r\nexpires: Mon, 07 Dec 2026 21:05:42 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=cMabUapWX00PIw09QCkQ2KJS1QZWFhUywdfnnB%2BBJ98kw6jgNyc0IlpXQTY4mUsXIHuHN%2F0hb7kiP80xd1Qwm%2BQTdmSr5B3aKs4dG%2BmJmZ2eppTbcPL1y%2BDITTwo99t%2BY%2BlD%2B7Ji\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40599,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32045)","md5":"6bbddbd910e8bfac4e19220fe52e1af6","sha1":"fdfdca1739da6764c8881d33cb02864bbc21c5a9","sha256":"b5cc45eb6a71ddfc1e8c5f7a20b48120cfceded9a987af10113699cc8cc0aa8a","sha512":"36541c239d578b9090787fa0a225b8acb026e5871863839ac6b9ccd3460098218caaabdaadf833a8f8fb6ef914d0bb8870eb031c7c5d41f8cb49ba38ebc9de8c","ssdeep":"768:jEraRUobKUjx3jX8Fc91g7eek1108+n7a2vZabFYF3Y7//T9MT:jGQU3uxjM+7f08+nxvMC8/eT","tlshash":"87033bea3861302580832a8155ff0d42713eedb97816cc6af29486e87e15d9a11fff77","first_seen":"2023-03-07T13:21:46Z","last_seen":"2026-04-12T22:50:02.307456Z","times_seen":75,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":12,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-includes/js/wp-embed.min.js?ver=4.9.26","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:42.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-includes/js/wp-embed.min.js?ver=4.9.26 HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 16 May 2023 20:32:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6463e855-5a3\"\r\nexpires: Sat, 27 Dec 2025 21:05:42 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1443,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1443), with no line terminators","md5":"43928880ff5ebadcd513755b011732cd","sha1":"d0fdb17db490123ed700c2caa5d2d764794cb6d5","sha256":"37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38","sha512":"ba9ec90a842c0aad802294c3fe144c0ed737e51586ed19dc15dcf518dd0c9790e6ba5a1a8bc9e8a09d48cac3941df65c4d1d77b3b79d76a6cfac9b306c2da710","ssdeep":"","tlshash":"4d21526a3239d43e54e715d3bc8435cad2b21be9a85200d14a798848f5a8f93886afe1","first_seen":"2023-05-16T22:20:04Z","last_seen":"2026-04-16T20:37:44.925305Z","times_seen":12091,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/flags/svg/zh-CN.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/flags/svg/zh-CN.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-1b9\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":441,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"14696939907f84620252f4c7c622c18e","sha1":"63b4e04fd6836faa8f61253c66ab3dc33bcf831e","sha256":"165d70b8e244c0c39ca6ee97e4f4ae19fa6388049692682d08ea3e72922a8478","sha512":"3d216fabb6397300cd84ae878040191734f5fa0324b57986ed42aac4d0fa86d23ac1c715fbf1307528b8577943ef77be17fdfac249ed0e994bbfd3c019618700","ssdeep":"","tlshash":"02f0a3aad6f7540c5fe889604cae33c680363167009e1c6f20f81490f10dd671f14f54","first_seen":"2023-05-08T20:24:04Z","last_seen":"2026-04-15T23:13:32.198791Z","times_seen":371,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/wp-content/plugins/gtranslate/flags/svg/tr.svg","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:43.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /wp-content/plugins/gtranslate/flags/svg/tr.svg HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:43 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 17 Sep 2025 14:43:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68cac925-27a\"\r\nexpires: Sat, 27 Dec 2025 21:05:43 GMT\r\ncache-control: max-age=864000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":634,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a318ff59f0ddc17d0800cc076df547c1","sha1":"6dda08956e0883652c27f8468ef7f9fbb46c7e90","sha256":"07c4650655213ff4393d7be2563d3e95eb26cdc0f08f208951e8cba9e860d062","sha512":"40a52eee4a92c7816acc98f85403b1ef058ac8dcfdfdd60df1a1d8b8ccc7b45426b71f1a356a75dd20f289aae4e939fea8e103158f033504f920f7246175ef95","ssdeep":"","tlshash":"2ef07dfd66186f605d0943bc633814982576a88e51f588ca725b9591728076fd844d94","first_seen":"2023-05-08T20:24:04Z","last_seen":"2026-04-16T06:09:41.473103Z","times_seen":481,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"customerconnectexpo.com/","fqdn":"customerconnectexpo.com","domain":"customerconnectexpo.com","tld":"com"},"ip":{"addr":"75.2.20.63","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:37.370Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: customerconnectexpo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 302\r\nDate: Wed, 17 Dec 2025 21:05:37 GMT\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 22\r\nConnection: keep-alive\r\nServer: Apache\r\nX-Content-Type-Options: nosniff\r\nlocation: https://www.customerconnectexpo.com/\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"302","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":114,"timings":{"blocked":37,"dns":1,"connect":37,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"forsale.godaddy.com/forsale/diskauto.xyz?utm_source=TDFS_BINNS2\u0026utm_medium=parkedpages\u0026utm_campaign=x_corp_tdfs-binns2_base\u0026traffic_type=TDFS_BINNS2\u0026traffic_id=binns2\u0026","fqdn":"forsale.godaddy.com","domain":"godaddy.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:38.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.godaddy.com","organization":"GoDaddy Inc."},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Wed, 01 Oct 2025 23:48:17 GMT","end":"Mon, 02 Nov 2026 23:48:17 GMT"},"fingerprint":{"sha1":"97:37:16:16:62:86:0E:24:5F:36:4E:A0:34:6C:95:EF:57:E5:CD:92","sha256":"C0:3A:BE:D8:80:65:2D:3C:E5:F8:85:15:55:72:BE:E1:43:0D:63:3F:72:49:F9:55:E2:AD:15:A9:2A:B7:34:90"}}},"request":{"raw":"GET /forsale/diskauto.xyz?utm_source=TDFS_BINNS2\u0026utm_medium=parkedpages\u0026utm_campaign=x_corp_tdfs-binns2_base\u0026traffic_type=TDFS_BINNS2\u0026traffic_id=binns2\u0026 HTTP/1.1\r\nHost: forsale.godaddy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://diskauto.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":69,"timings":{"blocked":34,"dns":29,"connect":1,"send":0,"wait":0,"receive":0,"ssl":4},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","fqdn":"www.visitsoufli.org","domain":"visitsoufli.org","tld":"org"},"ip":{"addr":"213.158.90.73","port":443,"asn":34762,"as":"Combell NV","country":"Italy","country_code":"IT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-17T21:05:41.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.visitsoufli.org","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:F6:48:00:D8:7A:90:0F:6B:29:D4:BC:7C:8C:DC:90:37:56:C9:5B","sha256":"09:31:A6:D4:4E:00:D3:0C:9E:70:84:DD:0D:78:80:E2:02:F5:6F:80:FE:5B:AA:14:BC:43:16:AC:AA:32:70:AA"}}},"request":{"raw":"GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/ HTTP/1.1\r\nHost: www.visitsoufli.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 17 Dec 2025 21:05:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0\r\nlink: \u003chttps://www.visitsoufli.org/wp-json/\u003e; rel=\"https://api.w.org/\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Chosen:1.1.0","description":"Chosen is a jQuery plugin that makes long, unwieldy select boxes much more user-friendly.","website":"https://harvesthq.github.io/chosen/","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery Migrate:1.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress:4.9.26","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":83579,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1746)","md5":"08555e2b6e39480a5e4ca6812f31e7e8","sha1":"6a5ec2844348417e5c70b10520db61f59e018d4b","sha256":"721e528fdddd7f202d374e6c289b04ed20a77400385877fe7c0d37b15b4dfa68","sha512":"e00cc4385f2ad7004153d7ea2d9cf916de952d6545836621b7389408dad487effc8f22061bda9f0385b307136233cf756b0e17b36273f6c8b39594014b88de77","ssdeep":"768:sgwoctsYoYUy7D0bupaFB7MAIY+vEjZKI3ifrR4K8lhDxqIrjDVIYfY2YkTR+YUX:sboctkcD0waIeKgXbxfrjL+YU6g7b","tlshash":"848319ae11d85b3c076b0a6a31de765c677bd025da056f8876fe846cc7c6e8100b7acc","first_seen":"2025-12-17T21:06:07.277778Z","last_seen":"2025-12-17T21:06:10.760599Z","times_seen":15,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":26,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.google.com/maps-api-v3/api/js/63/5d/util.js","fqdn":"maps.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.visitsoufli.org/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10130633\u0026pdata=http:/","date":"2025-12-17T21:05:47.972Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:38:53 GMT","end":"Mon, 16 Feb 2026 08:38:52 GMT"},"fingerprint":{"sha1":"98:61:A1:01:94:12:1C:03:5E:13:41:74:51:6D:2D:18:E9:F2:69:05","sha256":"4E:24:16:A8:D6:22:3F:BE:06:74:9D:F4:9B:CB:DF:31:D8:E5:8A:F9:E7:B3:7F:8D:5E:50:F2:25:34:EA:7A:94"}}},"request":{"raw":"GET /maps-api-v3/api/js/63/5d/util.js HTTP/1.1\r\nHost: maps.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.visitsoufli.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 71825\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 13 Dec 2025 11:01:56 GMT\r\nexpires: Sun, 13 Dec 2026 11:01:56 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Dec 2025 09:57:48 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 381831\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":316911,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (526)","md5":"1594e2db428bc556a2201d9aef252ea2","sha1":"7b15a2adeaa82a9f4f8f7f8c7fd594c4de00af23","sha256":"264c094498ece322398c1710983e90863ad61ddb7f015c1a1700b03bb181f820","sha512":"68f30731789e26b99dfe979768b74b3dcabcf2ed981959273c39848493d63037c447bf45f532a5a2c14045e2066fdbcdba42398d7cfbd9f2b7a859d225f40846","ssdeep":"6144:SXotu1z/Nhbz+EzamYL8UzUjqk2gW+09TLpcGLNgYIsGsRtvyLLUy:SXotu1z/Nhbz+GamYL8UzUjqk2gW+09i","tlshash":"ec64c67c71326f4e6832c853c266310ed0356edbf964c8bdfee65654eaa5944f0e0a38","first_seen":"2025-12-11T20:11:57.87725Z","last_seen":"2026-01-07T20:10:50.830849Z","times_seen":26984,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}