{"report_id":"c42f5cca-b616-456a-a40d-363b06c49f15","version":6,"status":"done","tags":[],"date":"2026-03-22T12:52:26Z","url":{"schema":"http","addr":"jeremyrooks.com","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":0,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"jeremyrooks.com/index.html","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"title":"_im钱包官网-im钱包苹果下载","dom":{"size":13995,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9965)","md5":"0457ac3fd217c549a01ccf70b0e78b69","sha1":"3c4bf7b293bd43f40088bf683368968aee2f0fd8","sha256":"6d4bcb973d243a62364128fb2e4c0459c25af72cd2100efa8572a2408377624e","sha512":"f032d895ef9e9eaf8fcd7b75f38379d07282ef18e110fe8401e322e3084b8d836e529b69a16b4bf6db1142ff084cf588df92fe2196afcc26bb10c554d191ea02","ssdeep":"192:FdKClJA/LmQ6CnaDAbmHV5mdk/qap/r3FspPF3tMn9F4T2Qv:TKCm6saPnF8N3tMn9F4T26","tlshash":"a852403294d5653b12536de8f0b16f5de0c3821ec66a2c48b3fd8bc69fd1e989d02987","dom_hash":"domhash67b2a411027d4ae93f3ad9176b4c5159","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jeremyrooks.com","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":0,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-26T12:52:26Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":3,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-22T12:52:06Z","timestamp":1774183926,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":54896,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-22T12:52:06.903664+0000\",\"flow_id\":1618407664813736,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":54896,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":906,\"bytes_toclient\":1634,\"start\":\"2026-03-22T12:52:06.493224+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-22T12:52:06Z","timestamp":1774183926,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":54890,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-22T12:52:06.946025+0000\",\"flow_id\":1710663562329088,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":54890,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":906,\"bytes_toclient\":6402,\"start\":\"2026-03-22T12:52:06.490496+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-22T12:52:06Z","timestamp":1774183926,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":54906,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-22T12:52:06.962057+0000\",\"flow_id\":964082282174029,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":54906,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6402,\"start\":\"2026-03-22T12:52:06.497229+0000\"}}"}],"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2024-01-09T10:28:12Z","last_seen":"2026-03-20T05:04:28.275285Z","alert_count":0,"request_count":3,"received_data":6088,"sent_data":1303,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"m.app80.skin","ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-26","domain_rank":0,"first_seen":"2026-03-19T01:38:36.738331Z","last_seen":"2026-03-19T01:38:36.738331Z","alert_count":0,"request_count":37,"received_data":3748568,"sent_data":16467,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jeremyrooks.com","ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-03-03","domain_rank":0,"first_seen":"2026-03-22T12:52:29.099186Z","last_seen":"2026-03-22T12:52:29.099186Z","alert_count":69,"request_count":23,"received_data":390630,"sent_data":10446,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"collect-v6.51.la","ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":348646,"first_seen":"2021-03-08T16:03:54Z","last_seen":"2026-03-16T04:41:01.468216Z","alert_count":0,"request_count":1,"received_data":356,"sent_data":465,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hm.baidu.com","ip":{"addr":"111.45.3.198","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":54491,"first_seen":"2012-05-26T08:38:45Z","last_seen":"2026-03-16T02:58:13.619816Z","alert_count":0,"request_count":1,"received_data":175,"sent_data":436,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/win.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"introduction_type":"scriptElement","is_inline":false,"md5":"98a503315c24467d307a603737bfafe6","sha1":"721dfccece9969dec2a26abd2f6780a2b7c5557f","sha256":"678b17c373c18082f9ae6b9cb2b3d5d8559a9b686f0be1c7e3a3c6bff9b45cc2","sha512":"6f12ee72a4cd7ab369fcd1b94523a0b213d96dc2d7a6229e8d79549f390c52b832b909bd1a8a86e27b6422920c5b639970b16acc5a8227dbc7b875350827822c","ssdeep":"","tlshash":"82516ddc77e6e24f6b8c5da3fe05afda11b5853ba0d17247c79cb98d20e920ac65c044","size":2975,"data":"","first_seen":"2026-03-19T01:38:43.514361Z","last_seen":"2026-03-23T08:34:47.251845Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/app.845283e8.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"708c641dec8bfaf92e52dfff28503b76","sha1":"124e681f9faa72c7b733c2c9da173f11f3fe08d7","sha256":"c6dcdab92506282c75a6061a41eb61964662618e7b0768aca18b5d39f97af4f9","sha512":"0d896692d4e2e47792eba7550aaa3ebdef46b2866766691ca9f2599093a6926f2012545e8bae3598200341a94ae58209435c63da2f7acda4a5be53c4df7c3182","ssdeep":"3072:mupUqvDzVgE0j0etKGsW4+whqIAjFnOelEfxM7xd4dCG+/f28/gnUsq0ACGharNm:FpzLzVr0j0STtMM7zuC/2VUsq0JGUrg","tlshash":"c5546c0ba74a3778080336a522df25dce228d4add22685b5fa7dc4d913e1a7d0373add","size":300990,"data":"","first_seen":"2024-07-11T22:37:16Z","last_seen":"2026-06-01T02:27:04.908392Z","times_seen":1883,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/chunk-vendors.72f83685.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f98c3f2e30ab7e16271e08cdddd6da27","sha1":"bb1d30f4ef4875a81cbd9c93f05de583aac06e0f","sha256":"cd8bb92a826b0ee3c18b95ee744a5768e34753c866a1a6c15e51d8e874481c58","sha512":"abd215263061d554b699b287c11735a9efae0f0dadb5c9c735167d5a3845d88454c92a1f69d6ca1d372e163817114eb06dd659987afc0719f1d2471460799fa2","ssdeep":"12288:0r2fW0/CNOHtCxSdztgX9eTjDkJI7kcPNQmG2hFm/3e:0r2uV20caXAPYUkcPqmG2hFm/O","tlshash":"2e15195cb244a1bc5ab767b8853b1012b36e95ee70948324f36ecce076710dce2a7d9d","size":961375,"data":"","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.894997Z","times_seen":1885,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/website.f36331df.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3f284454092abf5682e1c00c84581de3","sha1":"56f58ad6c3101d392c011abf24122ba0c2ed6097","sha256":"aea81c7fa964a8b9e9e47768845f1e7f6f3899b3ed67ee785062423268e9dc37","sha512":"2be99363a09ffef79a1944678e4024e63a8ec19302f4e21c59471ee86a27ce2d13ca819d2cc5f6ab1bf133f4a29d93040a4491366dff2bf639cb115a23048f1a","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHGqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWnDsj0FwG3rZ5oNvqV","tlshash":"f1d4025d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","size":650354,"data":"","first_seen":"2026-03-21T13:26:37.63371Z","last_seen":"2026-04-02T15:50:32.047482Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"70e3a62299dc4b491f76b48a1860d60c","sha1":"2c0f2dd6de2a4f14872f391e9697cc34c966de97","sha256":"40c726d7fd4182e8e8dad2feeea156d5ba3a04a5e50ffea8387a2301cb38221e","sha512":"2903563abeaf662dd162b6aad39542aac32f054709039a41ee9f570d80adcb35932c500a386c10bf3fb2fd556e9b5c8ea97eec6e47fa0ef2eef989134bb634bd","ssdeep":"","tlshash":"e79002200e72848f60072582831001c3a0590340021c4004e687c2604f6a84a60c5133","size":54,"data":"","first_seen":"2024-08-19T21:19:08.351854Z","last_seen":"2026-06-01T02:27:04.910006Z","times_seen":1808,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-06-08T00:40:13.201748Z","times_seen":98189,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/so.js?20240707","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d109972f744d46952f66de49cc82bf3","sha1":"a130e3faa2cf35feff778075302eb7867b4882db","sha256":"ca3d5be2e9aad6bf68b32538d337e5cb3b845b7976e2ede3a4337bd749892177","sha512":"a57995ffa158976181650d02f7a725c8e91be6214254d13710606a42e68764f8c85cb06bd23b62148ece31c7fbb8e9b847a1056099c9ec68898f66bdf1627107","ssdeep":"","tlshash":"b7f0125e6e56ea20552409dce571eaa8a0fda135f555cd6c85ee042515c8fcd090ec44","size":547,"data":"","first_seen":"2024-12-23T19:49:18.361695Z","last_seen":"2026-06-07T16:45:45.896227Z","times_seen":1555,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"2ecd5791d23718ca181cdafedb3be0ef","sha1":"0f8d74f4121be6f03476ce3222bc8570705f61e6","sha256":"4f351f75ee32bfa5ea9b948a12e88a5dde8d97e732b423f96d68552a75009940","sha512":"8bdb52367a45f2b601c2f3fa74fb49c75e1e0550556d48fa0386b4e4a51646e74b6a2f282737376f08080f3b28cb0a51b82de7c102880cf68bce6cbe1f4aacb5","ssdeep":"","tlshash":"9b9004375f04dc510c355d4c5577df5d10fc55101150cc3413dd000405417dccc73400","size":40,"data":"","first_seen":"2024-12-23T19:49:18.380071Z","last_seen":"2026-06-07T07:20:42.697764Z","times_seen":2391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"7003ee2e79ad8feb6bf581f30cfe5031","sha1":"508ad6732e0bebe9bb244a987a1c361cd292cb90","sha256":"1d59fa8b0097de536d13bab5955cb03e898e2e2a7b00d38cc0bd855f66744bbd","sha512":"f08bbd5aec3d9dfffb25f5991fee9dd4a1a3589375c08e4158b44b1033eb8ad1f9c9c45f8891595c6cc17e1d54cf0c40c4cbdca2ec90f0eb70781fd8c674d2f7","ssdeep":"","tlshash":"c2b0124f7d82c01050500ddcc161fa6ce045726b9654cd8cc5e44471654cbcd090e488","size":102,"data":"","first_seen":"2024-10-25T18:50:30.631426Z","last_seen":"2026-06-07T07:20:42.693628Z","times_seen":2683,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"78ac2aa5ccc29c90a345c90aab40b442","sha1":"cac604932faa4add2955602b41de8a8bff362ebd","sha256":"53db339b0b80637f13dfc63813d7366c899cebe0db896602886ece619163d82e","sha512":"5c76abfa8f4091277643f4dad57c37d9eb71d33c9691f0e85bc82ac5f303d4e3da4937cbc2354e4d5c5d0022746d7c06f975f209067df2cefa55bd3827d892a7","ssdeep":"","tlshash":"31b01242d0575c0e0170c236ec485418474d4a7d9fa708010dc6ab5c0c99f1405e549c","size":103,"data":"","first_seen":"2023-03-07T01:06:53Z","last_seen":"2026-06-07T08:03:11.676707Z","times_seen":13596,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"d180e5edc020160081c750b37a9650ca","sha1":"5541a8db0b73b588ef8d8096deac227d49d13f83","sha256":"0b985295d52ecb47d69f5559a5c6c83f5ba9ed9d2846fd10b72e213ddf66b120","sha512":"f4e197dcd0828c46e126690e42808159483c5f49701afff670f84f8eb36463c7c670bcf48a00fdc230438a3355721dcc4a3a54835bd97215aa5dacb296614940","ssdeep":"","tlshash":"4eb01271c999e468c125f104e0c48bce26340189b7779f084538aa62508fe942c3c5c0","size":97,"data":"","first_seen":"2023-03-08T12:37:01Z","last_seen":"2026-06-07T08:03:11.678127Z","times_seen":3603,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6de30a424ddf05d953c938ca433a579b","sha1":"64a0ed447d69e38e42bbff0e63434d1d2b013ee1","sha256":"0b1ce380ba9a9d402c8e42e7b431a2ed73498acf353e4e7fa8b8e0a6c6d3b619","sha512":"cedf50705c8a47fb975096710c4a2d83affa9c7f3de497e1531506b8b407db552082589778f9de50aaa885881d6fb86aaca5f5f9883173ea68c8b23345533ea5","ssdeep":"","tlshash":"a1b0124f7d82c41090500ddcd161f96cd046726be654c98cc5e44410258cfce090e494","size":103,"data":"","first_seen":"2024-10-25T18:50:30.635213Z","last_seen":"2026-06-07T07:20:42.692696Z","times_seen":2514,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"f8e9ec089869466485725098ee73438e","sha1":"58b6f12e767e397a502771f7dda052a0579e08e6","sha256":"a729d8319ae51adc28cb8c352c50dd88575b7d05a0038d1a29ea56e2672fabda","sha512":"d248e3773a2385eaf906a947bdb018e80b62d190e161f50f073ea7c9954fabbc63690bc9223aa6b6cb1483731a44543d6cb3ba9b919cfe1ae843133679bb8fb4","ssdeep":"","tlshash":"48b0124b7d82c01050500ddcc161f9ace045726ba658cd8cc9f44421654cbcd090e484","size":102,"data":"","first_seen":"2024-10-25T18:50:30.629865Z","last_seen":"2026-06-07T07:20:42.69886Z","times_seen":2522,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a074a9008c8597a84c516a22f789c3af","sha1":"6d55682d1521a6603e4b2454f4b5fef944994355","sha256":"701c0791e545e430b04d14e7596e4e6c9eee7f4cdadeff9befc77fc0a902859f","sha512":"813a6710b9b1ec408ae5c11f5e0a5ed4ad36d21aaa1829225a8e7dcc3fe67e93d6de8083e5f8f72ab51028235729a8b3ffc00a2b9b7800371f8e83112013163f","ssdeep":"","tlshash":"4b8004575f04d4500c3455445474d4dc30d455003150cc3455fd01150d005d44c31400","size":38,"data":"","first_seen":"2024-12-23T19:49:18.384594Z","last_seen":"2026-06-07T07:20:42.699865Z","times_seen":2387,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6ba4dbe4dd8d138aa16b1c6c2c73501c","sha1":"1b86c774926d6e214539e79f822a9df0d3406b7e","sha256":"b29221726e4be450fdeea882e7353dc1f03ce77d69b82339f29bb255fbb4bbfe","sha512":"abde95ea9372982e811dd4f9a36165dca639d58c6312042b4c65845022b96d8efe14c80da2c6d33fb1350009aceb4b49f63da64db10cdc9e673656d82bb3210a","ssdeep":"","tlshash":"d680041f5f04d4700c3454445474d45c10d455001150cc3451dd00150d005d44c3140c","size":38,"data":"","first_seen":"2024-12-23T19:49:18.387413Z","last_seen":"2026-06-07T07:20:42.694548Z","times_seen":2388,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"8ea3877ae0db4dd2c39f03c0b95939cb","sha1":"d1c3c9141d0521cc4401c29f81cf3f268065cb32","sha256":"acac378766e6365effed4521f0301e1bda13ab580b2a1fec957b82d4819083c4","sha512":"763be8bac55a4565239c21cf6bf367d2684c1db2bb7e7cb85d05317e6a8a0c19bfd8802afbe95290b1d9aec8b8661d6973caeab46e3c1a81c7adccce3d86af6f","ssdeep":"","tlshash":"00c02b250f313222a470c2f93c56feac0912806087a5890c31ef7836c3a720500210d1","size":133,"data":"","first_seen":"2023-03-08T12:37:01Z","last_seen":"2026-06-07T08:03:11.677408Z","times_seen":3603,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2dbda5e1ca0596e915b4413328e7e3c3","sha1":"0ff58dbefa6d1facd4265c8f84f295ae9d319d45","sha256":"16a0c6896e666393888d8b06ecd1df552b58be544846cfdbe5076ff196f20093","sha512":"9ce24108c9512e515768d0486318ab3efdf94bbdb7cfc33c42f3016f7c35fddc7156e637e2ff46c3ac9ba49340c82162ea36279a33d5a79d365cc08fa593ee39","ssdeep":"","tlshash":"2fc08cb314a6604c8920c1b8b03808089042ae49fb07aa7079f27c65228d1e81af47ed","size":164,"data":"","first_seen":"2026-03-19T01:38:43.568454Z","last_seen":"2026-03-23T08:34:47.275117Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"0a3a0b592b9c285e050805307cee87c2","sha1":"125a168e24b2bd38aadb84cbb5f87f316b073c41","sha256":"aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23","sha512":"4097f05a9ce819914160aeba71fa11524f6b291a39b7c948509d756318b600934f1d195980df66bc7731e327979135bfcbe0e9ff3758d779a72481ed623cd3a5","ssdeep":"","tlshash":"a34000000000000000000000003000000000c000000000000000000000c0000cc00000","size":6,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-06-07T08:16:34.45127Z","times_seen":242447,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/win.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /win.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Sun, 22 Mar 2026 12:52:07 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nx-oss-request-id: 69BFE5F7FFEFC43333C48966\r\nLast-Modified: Wed, 18 Mar 2026 14:09:50 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2346159637403705227\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: mKUDMVwkRn0wemA3N7+v5g==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2975,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2975), with no line terminators","md5":"98a503315c24467d307a603737bfafe6","sha1":"721dfccece9969dec2a26abd2f6780a2b7c5557f","sha256":"678b17c373c18082f9ae6b9cb2b3d5d8559a9b686f0be1c7e3a3c6bff9b45cc2","sha512":"6f12ee72a4cd7ab369fcd1b94523a0b213d96dc2d7a6229e8d79549f390c52b832b909bd1a8a86e27b6422920c5b639970b16acc5a8227dbc7b875350827822c","ssdeep":"","tlshash":"82516ddc77e6e24f6b8c5da3fe05afda11b5853ba0d17247c79cb98d20e920ac65c044","first_seen":"2026-03-19T01:38:43.514361Z","last_seen":"2026-03-23T08:34:47.251845Z","times_seen":17,"resource_available":true,"data":null}},"time_used":1861,"timings":{"blocked":828,"dns":0,"connect":204,"send":0,"wait":204,"receive":1,"ssl":621},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/discord.2aa7ce83.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/discord.2aa7ce83.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1779-543\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xRkpDzhdbbRgeYvD0U4hG97CSokSXA2vNmxVq6b102QPApku4WIRb0lee3D4%2BunSDELJfwnxTCZbHfN8t6cs6TUaWznoCJXuf7prvw%3D%3D\"}]}\r\ncf-ray: 9e0554f1ad03eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1347,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2aa7ce8352d369374287bc6eaa17fb7d","sha1":"6640365975f4dab2b9da69ded94f9c66454920e5","sha256":"5bf64d9f650da48ba47165ea48faf54928f70998651a01992c989315f956febd","sha512":"b2dcbc1666a5c6ea2b7fd79fd4f96313bd99c76604bd65a186aca07e6ae24648aa0c335f12108485365c1c08f2b1526f1ada10326a0c3439afd9edb7c057be28","ssdeep":"","tlshash":"1021cef283e464e4a4479fc9e4398913f61b34fab75e8a484780ebc17b2501b984eca0","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.900215Z","times_seen":1791,"resource_available":false,"data":null}},"time_used":427,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":427,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/alarm.a0de5c93.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/alarm.a0de5c93.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EOmgG4xK9Ub92eEMxagspoWbPAGTanigFC%2B8747%2FsxOsFVRL4Wmbh9rGwEaVrVw2ZG0uMyg%2Bzcpw11lGEaZQ7TMvesLRJFABDJbR6Q%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:32 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"65fd1778-219\"\r\ncf-ray: 9e0554f25d2ceff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":537,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a0de5c93f3b0606b03fbed44264a1773","sha1":"1b251f8f3aaf8e4118cd6aca1205f88bdf76a9d5","sha256":"53dd292857091700369fceb24f1aed8bf0ca87556e9cd3466cc3a4e7d0f15263","sha512":"4eaf9a604f29b55106caba0f8833e2844f24be44c57b8b6edd8e9221f239abdd0c4f3434d38b531bea1cffc55cc7df53a558967698659692cccf439dfd3c8cc5","ssdeep":"","tlshash":"a7f05094578c9e7cb7224f24db1032b6207b31373b5d9258d863643b216411d683f9fc","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.892497Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-ethereum.eccb8895.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-ethereum.eccb8895.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-25dc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ITHEGqxMvUktf%2FG9yPd69mJjl3qgu96J7%2FWeX3DsAFEt6VKY89eLeUrKNm6c%2BzPxkSbU37lWFhGYC9wkQZLvdSvl7xDYcR1zciuAqQ%3D%3D\"}]}\r\ncf-ray: 9e0554f27d3aeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9692,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eccb8895c4c4a30c4dc7cf760ed716dc","sha1":"c372a5e54aad04520dc33d54fb620d0f2832a1dd","sha256":"c1152187cb44ce6c94f077fc12eeb6a5e9f4ac6a0de37d3daa152ba1a85955cf","sha512":"a69f12180ca4219003bb696e3782be885554b122cc2235b2f59852a329de73feb1ee073e42c58a059ac5459d625191bd5c26985f015fa7e2921bd66792608940","ssdeep":"192:jF5f0Jy+wEq+/EvYE1SUOdiCOahHBggiUNGpeyZLSdqHXFm:7CwEvcvYEQwCOjgUpeEPHX4","tlshash":"ac12b6dc6f3389fcb8c5e1fedb1554e836549cee780686a9d3782d056c42928dd0a8e3","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.893948Z","times_seen":1781,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-0x.75c21f2b.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-0x.75c21f2b.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-17bd\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k1oc1ndCKP4nSvjyxaHAp9qlBXVFZKlnq24kD8UQhlWotITujdZ9JDpYjQJ02wdpXtRdnUyBHQEQseT3Vd0S8toi%2FXsPmZzsoSzyQg%3D%3D\"}]}\r\ncf-ray: 9e0554f28d45eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6077,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"75c21f2b7b83b30a26e07efa9995c741","sha1":"59d18dbb3548d4f3f4badcbc14ac33d67d83aa23","sha256":"5046c5408029db86fa360fbec102839d16e920ddaa52f578b3cc250316506119","sha512":"80574688c969adce0ca257d18499b9279f2aad57aa23f801c4267426e07bc49ba7fec1ac14816e283c474680402fd1b1fe85af1ec270982ba7d0f151df49126b","ssdeep":"96:EyivL0LNnuG/X9SWPO1tzSnWmqhG3q1H+E5eUkankRhl3zz9D60:EyizG/tv0+nWmqa2+yfkjRhln9D60","tlshash":"5bc196dc2b748df8b841a7fadb2a08e63147e4fb60824730c394ad09795546dcd99ee3","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.866856Z","times_seen":1782,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/js/jquery.superslide.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/js/jquery.superslide.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff8-2c9e\"\r\nexpires: Sun, 22 Mar 2026 20:40:15 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10855), with CRLF line terminators","md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-06-08T16:12:48.656099Z","times_seen":13821,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/favicon.ico","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sun, 30 Mar 2025 02:42:19 GMT\r\netag: \"67e8af8b-10be\"\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"b1b891d2f48e8efb4dc81e7838f2c552","sha1":"6e6073e95a8804cb96e79f355ff8a297fdea9d60","sha256":"7c5fa4e85828426fe0625af1c7d4ef83f7d78ef2806cc5e0c08d5b27a7d95596","sha512":"4475da2d683cd0eedcd722c6be6fc4687378b2cc9d5e535e04c0f9090e4496902472f00951633abe798306e4c5f6ba60624ce16c538f0c364cdc9121007850f0","ssdeep":"96:E2UyJ/P6JScm5PdJcAocDuM/d3eOWHyGft8JcToPFcHTc:Efmb5xm4VqS0tC","tlshash":"0d9112eca663ec93c400f6ff8a28a6f085c65cb1b553f7e61438b919843547dca12e87","first_seen":"2024-12-07T07:30:44.976335Z","last_seen":"2026-06-07T07:20:42.674028Z","times_seen":2204,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/css/app.43874d60.css","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /css/app.43874d60.css HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 22 Mar 2024 05:30:40 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1780-a2b5\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16650\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0obzYuSVHKp96Ruw%2FsYrZSgRAWqb%2FxuFDgeYsZTigYy58Gv9PeNispFutNIHguDUnICUCcrBNMQN6xjKzqTX668c0nMaJVTRFDw02Q%3D%3D\"}]}\r\ncf-ray: 9e0554efac70eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":41653,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (41653), with no line terminators","md5":"1233f1606ab2a281b898d03302622eb2","sha1":"cc554f4a401b68e53b8c499557984d460641d5f7","sha256":"53b41273fab622eba8d934ba8c0156ce0dd9f8f80c5ddf463c198351038fc990","sha512":"94ff2c796a6437961aa849067558bb4aa363510b9ae983beb75f6910a478a0d6642ff0653997423b23d02192a3c0d01aac51ebac94448aeee84cf43ed0b35aaa","ssdeep":"768:XTosIaPkIdsJIbIIExNuGZEOR+8f65WKmXjZFsOMtSIYLrou7S+w4tJCEjlKQ:jtPrsk4NuGZEOw8f65WXXjwQKQ","tlshash":"8813cb107754343df1778b6aa4e1ea6ca730c543c25785efe352b914cae61a7322bb8c","first_seen":"2023-06-10T15:06:02Z","last_seen":"2026-06-01T02:27:04.88841Z","times_seen":1891,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/tokenfans1.eb9824bc.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.578Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/tokenfans1.eb9824bc.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177d-683\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FzytNAXg7%2FyJg5%2FBvZmwVFV%2F%2FJZryNpcUsTunoyEWNP%2BIER0SZmApBOWtnx7%2BX0FZ2IcuZ92uSiAz8mYMmPodFrhxY4yiQZvMblbgg%3D%3D\"}]}\r\ncf-ray: 9e0554f19d01eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1667,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eb9824bc9edacb0b9e4172b8323ea86e","sha1":"925f089a7bda4735a826de7cc71101cf30e70a6d","sha256":"fd968ac02328d0513537ca7ae60f986595d0f48d248bbe4efd5c52c9048c3034","sha512":"a8c03ff4fad9d81f8a84da5ddeca2fb95d9cb230b0ac720c36af171d4dc17b82013f604342f5426a49f4e39d0750b1178a64549b7e0f388f4d656ed527f9fc8b","ssdeep":"","tlshash":"d73144e6e3c562d05647dff5d63419e1a9df18f73ba5cb980266175c9a8020c494cca4","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.897051Z","times_seen":1782,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/closed.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.213Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/closed.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 501\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\netag: \"5e38bff6-1f5\"\r\nexpires: Mon, 20 Apr 2026 21:37:18 GMT\r\ncache-control: max-age=2592000\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":501,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"03d14bf525513a9b3613dcddd3465817","sha1":"09a5d431f84881b43b6c25995c5338d914cf4260","sha256":"5c05139d21fe2d2a4a7f6c057001efda9db7c44efe1f24ef53da869def623f59","sha512":"7e54efc2dd95f18f140eab30d15b5b793310e06537121585c902718a52ece594a0b327c3a43fe0d3df9559cd6c0e2edaff29b29f85fae31f50da130f00477485","ssdeep":"","tlshash":"d5f00efb9304c465c5392d4399074902cc97d11090ae727f22d0d3eb348ca7ef214b0a","first_seen":"2023-05-13T11:01:44Z","last_seen":"2026-05-28T19:40:32.262524Z","times_seen":81,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/twitter.f6e27d44.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/twitter.f6e27d44.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=17jZsdGOM%2BS6%2FXp7IKiaSSajSk8VbSQ1FJ7cJ1gw8sISPDo8Vio9t78aa2T%2Bb8rpDeYTj8yHyZ7fyBwLpjgyFHczYBVzJs8b%2FBdAUQ%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd177d-25a\"\r\ncf-ray: 9e0554f19cffeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":602,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f6e27d442f561af8836f3287fb52a1dd","sha1":"ca0199c3511b03e31788de4f95356c2fc4c75635","sha256":"c41461eb9d060dce45b8a6770858e8f3f015dec9406978a896f98b60977da549","sha512":"0fa733c1b18324271946cede4bcd7c74661ea22c07f9c9395df93dee2248974ad519aa2bc04f9b402eb23ee7f8b315477aa7da5da754ed4f0c43b857ddc361fd","ssdeep":"","tlshash":"38f0e1594e9e2ed4871fdfdad63721b6701b78f11bb6c2ce81a1b25264a4cfc581cd20","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.899635Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":440,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-consensys.f63cb550.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-consensys.f63cb550.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-c1fc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Alw%2Fj5tOX%2FE9waVSGuy9mDtSTG1ntctbo5Bb53NoISw3QKY7ryqvbc2wrQesr4%2F7WkVWMv8T87XF8ohe%2Bdq6NNVIXEMzKJtLYUp5hw%3D%3D\"}]}\r\ncf-ray: 9e0554f28d40eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49660,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f63cb5503ccf231dbff761feb62a941f","sha1":"9c23eb2cf3f0ed9f5bf0e983baf836e7f04a47f0","sha256":"59f240141226f9ed13da11246f7fe344b58ae0c2c08e62664297ab2ac2d302f0","sha512":"7d4bb3819e92a12e7b93adb07dc083d17148485f1ba435c9d8725ac253ec31aa28b0899d90cbb44679bd89546f019feb4e0c455a8f92af399ac00b829f96c838","ssdeep":"768:mv7JFv8hva55i0K+Py3VlU45OhSwSDAWb9CX7cgKUbKpjGJVVE5:mN8iziuP01wMAWbIX73yME5","tlshash":"712361d437768ae8b985b2fdc73d69e239226ccd75008989d3b03c1aa88163c5d9cdd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.848191Z","times_seen":1866,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/Plugins/ajax.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /Plugins/ajax.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 96\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 10 Aug 2024 09:01:20 GMT\r\netag: \"66b72c60-60\"\r\nexpires: Sun, 22 Mar 2026 21:41:25 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L2:5619, EXPIRED from L1:5856\r\nvia: L1:5856, L2:5619\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with no line terminators","md5":"ae1625f00bcb78bf9e9c27ebedfe26d7","sha1":"9f0ee94e3bd3b2fb569441621e2dac7dd21d66fd","sha256":"09decd657ef4c873beb6ecc86f403132e47c126f870cbea1903d1ea7128964d4","sha512":"afc08f97d0908069e23ed2e17147bc922a452cdc90a00792d9e80f5294fa4269241ac071712c8ed241e1cc5cfaa0df8fc4f05ce050eb8b529123131e1cdd7fc7","ssdeep":"","tlshash":"48b012161c42fd9040280c9ac135c86460fc9114d110d94613fd041c1794fdc0c06c45","first_seen":"2025-01-23T11:49:05.260358Z","last_seen":"2026-06-08T16:17:11.891429Z","times_seen":1890,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/banner.ad9792ea.png","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/banner.ad9792ea.png HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 20 Jun 2024 04:24:04 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6673aee4-228eb\"\r\nexpires: Sun, 19 Apr 2026 19:22:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 149392\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZR4X2HxEx4kDa8vfNxPUj%2Fa8M75xxfjjVBy7avTCbDkHgLR8G7btTzisFlk4GDOKfYcz2hIEHlgPb5h0LwyJvRwCJp6F3fJ%2FKW2z0g%3D%3D\"}]}\r\ncf-ray: 9e0554f25d2eeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":141547,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced","md5":"31b2b7726829be089d61a1b3238892f8","sha1":"419ba2f64dd5f7bd35c7f440fe993c6d16f764ee","sha256":"44a360e3f1753981cd79609f2a238f58648d2c132b958647f9bda8922d1c507d","sha512":"7dfd577d2ef15783b23e42442d4c8eeccab8a36ae37ff9aadddc404acb70bd1993369f8c028a845b9e699dcfa2b9c10512fd8c8db42285f0aa3740f487e02eb5","ssdeep":"3072:Bwm2VYh1sYAjd/J9EYPfMb8eM07+TyKwSl7mKLBpWcr2oYXE7nmWJAc:BFf1s5xCbBGwsHLBzr2oZ7mWJz","tlshash":"f9d3019939aba65edc1f147ab5b02edd0fc209a086761efd7433609adf4922cb410f1d","first_seen":"2024-04-19T06:46:35Z","last_seen":"2026-06-08T14:32:13.020939Z","times_seen":2199,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 18 Mar 2025 04:08:22 GMT","end":"Sun, 19 Apr 2026 04:08:21 GMT"},"fingerprint":{"sha1":"AE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C","sha256":"7C:F1:09:2F:6A:8C:5B:F8:63:DF:D3:32:B0:F3:F8:E7:01:29:0E:F2:55:8B:4F:6C:58:55:8E:44:E9:EC:15:F4"}}},"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 553\r\nOrigin: https://m.app80.skin\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 210 No Reason Phrase\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://m.app80.skin\r\naccess-control-allow-credentials: true\r\nserver: TencentEdgeOne\r\ncontent-length: 0\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\neo-log-uuid: 4300729840686028450\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"210","status_text":"No Reason Phrase","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":1707,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":1706,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/chunk-vendors.72f83685.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /js/chunk-vendors.72f83685.js HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 22 Mar 2024 05:30:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177f-eab5f\"\r\nexpires: Sun, 22 Mar 2026 21:49:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 10933\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qwRCDDv%2FLpCdb1boh1m7b2pGou80eHD7EalCrIK%2BeIFya7jNyZFnMUr35Kr8F6jn12Jta0ck75vbpskqLzSTDTeF8%2FTC8EDG7NEp5g%3D%3D\"}]}\r\ncf-ray: 9e0554efbc78eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":961375,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (37062)","md5":"f98c3f2e30ab7e16271e08cdddd6da27","sha1":"bb1d30f4ef4875a81cbd9c93f05de583aac06e0f","sha256":"cd8bb92a826b0ee3c18b95ee744a5768e34753c866a1a6c15e51d8e874481c58","sha512":"abd215263061d554b699b287c11735a9efae0f0dadb5c9c735167d5a3845d88454c92a1f69d6ca1d372e163817114eb06dd659987afc0719f1d2471460799fa2","ssdeep":"12288:0r2fW0/CNOHtCxSdztgX9eTjDkJI7kcPNQmG2hFm/3e:0r2uV20caXAPYUkcPqmG2hFm/O","tlshash":"2e15195cb244a1bc5ab767b8853b1012b36e95ee70948324f36ecce076710dce2a7d9d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.894997Z","times_seen":1885,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/f_icon3.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/f_icon3.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff8-5ed\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1517,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"682597e6cd4b2e9e65ac1973ecab4946","sha1":"649da3fd0138e179447ed7b7e794213b8f1b22d4","sha256":"c83cdea4a45720bbf33c1740138422bf6231bf8016b52a760114b44269ee8639","sha512":"2f548db9860169f44c64603d4a9e9faba6e84251d6aba74da0eff9433f0af11d3e1449b6b5e608c11a2db933d211373618aae01b51357f937b8dade5b43bd36b","ssdeep":"","tlshash":"bf31d70cbb325882c2dad4c025db6462d802ab48c4d0d032b8ce90dadf251b301553c3","first_seen":"2023-12-30T13:18:15Z","last_seen":"2026-05-07T09:17:34.515249Z","times_seen":16,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/github.d15ef125.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/github.d15ef125.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5OhWt79FGZEX2h2b8mjyvPG1sFFXeOVOpxaD%2BqBwzln6fIj0B0RJHrXAHQRfbxC2JS8ZAQd89l%2BJZKGM8qHxoA14aIVThqhXUoKGAw%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd177a-2bb\"\r\ncf-ray: 9e0554f19d02eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":699,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d15ef1255f17b1c47e4dfc3649cb66e0","sha1":"6deb5c0f4906414d811170228fba940d338861a7","sha256":"69b686110472d3bfaf623d6119a759446e860cf926fd1c8ac960bae27b70876e","sha512":"2b9897742e662cc475a84414574c5afbd9eb38a79584aaa41c70d9f9d6f4bce7249f40f5157e2f9ac998b70945901260d65ec56f42189190cdb39dc25e4b4897","ssdeep":"","tlshash":"1701cbac67e033606d82d36cc0a838f0f28334b32faac5a4e045e843a1018de68d8810","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.86051Z","times_seen":1790,"resource_available":false,"data":null}},"time_used":420,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":420,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/defi.756b4476.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/defi.756b4476.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jnMudbLUq00hqMLq4ZZ31Nk1pSviutpqu%2Bw5RNC%2BbFj7gRpAf0fu7DmAsUCnrEg5E0d1Dd8GGqDN1vuBhL9DfUV2PvMIRHCHZxOfkw%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"65fd1779-e6\"\r\ncf-ray: 9e0554f26d34eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":230,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"756b447638a2d0e0015f74e793f4e52b","sha1":"56217b9dff3fc5358fd781af5548fef6c7a8c3c7","sha256":"578ac20769134d28e954937ff908a499218650f34fa7699eb60991bd2c1c8619","sha512":"939294f043dd1243eb022fdfc9d0789855672a65f09c01573792d0cdc2c87cfbdc2a7c170524f45e9f300d78d23203ad0f856c84c929a8fd28c8e7ae7ccba484","ssdeep":"","tlshash":"7fd0a7bc696c4d058550c068a12b79b7a1de11c5c3860291f0c02a0776559b730013a8","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.856582Z","times_seen":1783,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/so.js?20240707","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /so.js?20240707 HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 547\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 05 Apr 2025 11:07:28 GMT\r\netag: \"67f10ef0-223\"\r\nexpires: Sun, 22 Mar 2026 21:41:24 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L2:5612, EXPIRED from L1:5856\r\nvia: L1:5856, L2:5612\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":547,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text","md5":"0d109972f744d46952f66de49cc82bf3","sha1":"a130e3faa2cf35feff778075302eb7867b4882db","sha256":"ca3d5be2e9aad6bf68b32538d337e5cb3b845b7976e2ede3a4337bd749892177","sha512":"a57995ffa158976181650d02f7a725c8e91be6214254d13710606a42e68764f8c85cb06bd23b62148ece31c7fbb8e9b847a1056099c9ec68898f66bdf1627107","ssdeep":"","tlshash":"b7f0125e6e56ea20552409dce571eaa8a0fda135f555cd6c85ee042515c8fcd090ec44","first_seen":"2024-12-23T19:49:18.361695Z","last_seen":"2026-06-07T16:45:45.896227Z","times_seen":1555,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/js/all.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/js/all.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-caf\"\r\nexpires: Sun, 22 Mar 2026 04:55:52 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3247,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"72191a841c7b4c982a39d52c9a2e6cda","sha1":"41c69080deda1fe0ee09a47e8bbd2649b03aea46","sha256":"6323517afb6fe2096ed31f39ad2861b44682c40b4b6b15a7a140e97005449811","sha512":"4a7f0fac13da4f73d741d4c491c8f263c499ffa8f4154ab6d37fb5f1e68cb867d0485169c073fb611f1ffde36edad840be50e829bb19b6f81817e10a22cd6f05","ssdeep":"","tlshash":"8461655af1401b7d84ff323c883f58582f194c31a5669d64f9e580647cb859aa3a3fcd","first_seen":"2025-09-10T21:10:04.144272Z","last_seen":"2026-05-07T09:17:34.519076Z","times_seen":5,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/arrow-down.7a838bb8.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/arrow-down.7a838bb8.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bfq7RUn7KAHeha2SrcwZFusfD27oyqLNKEzOD4QUUJ%2BNVaV%2FmEFhGaIsZtsHc0YI%2Biknj6e%2F0I5U0qs%2FJBlInEABI4xqGiztedDPKg%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 06:02:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd1ef9-cf\"\r\ncf-ray: 9e0554f18cfdeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":207,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"120e5756289bdf45cd9f51442b1224c9","sha1":"a53737a735a6502ace15f6fcaa404f7c42abd483","sha256":"f22a34371e6b2d446921f8542f85b81a4673d4ea2aa5f6bb759037b36037632f","sha512":"f49b1fd7502f0934e972ad635159cb5c487611f75db00c246e9d70895f815204fa699e4890b274f641d560501b19a8657374712b519bc37a3a2ac1512e57877a","ssdeep":"","tlshash":"bed0223bb32ccc1cb5124528e3ba367150f3109308cd2654d8332131ae054afbb2bae8","first_seen":"2023-05-10T10:24:22Z","last_seen":"2026-06-08T14:32:12.942192Z","times_seen":2767,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/imkey.18b86155.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/imkey.18b86155.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177a-3460\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MVpTqDH0tdUScmJwac1QcIQfGo%2BEtbMuF08HXxBe8OWb%2Fg9nBxZqHfYZQs9vqJV%2FRfK1UYnhK9pP6FL4h%2FatwY8byZKKPwbybYX4RA%3D%3D\"}]}\r\ncf-ray: 9e0554f26d33eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13408,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"18b861559ab8aa3148ce43dc01d11573","sha1":"d395292dc3e18fdb6461a66ab7be0cc9ab1bedb9","sha256":"373387ef06b85e40af255434c28f44d75382bf7e6e2a4a0feaa1e31b17eefe03","sha512":"dd6bf0aa9fd248efebaa4ae19cfa7d24cd5b4327dd08e265ce8bb82997d111e508b663f7b314ea2b530b7a1ddf42b076f04fcad231605050c775edd7a6a17dbc","ssdeep":"192:MCm3sy/n3XzoTytnS5Qbjz9/Jnp+ujAAb8er1AjuotjcoFJBn:Wc0ZtS5QbruA4e5AjuotjcoB","tlshash":"1d5277dc1f186ae895c093eeab2590fdac2bd0de9688d514c2043b1e748747dbc775ca","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.878698Z","times_seen":1868,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/business.9d8a656b.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/business.9d8a656b.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F1e59yBNbqRCA10gfU74n12Hm42YfuVbmmNwGlCUWTLO9%2FCmkVepz8DQ2Zw90dYL%2FRng10MtVERgr8vb1HWgnnSleqJ5edA2EOsmRg%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"65fd1779-347\"\r\ncf-ray: 9e0554f29d49eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":839,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9d8a656b278cd56c842d2b6c156c99fe","sha1":"ddfb2873368332704dd11c91a1c3a921076cffa6","sha256":"62b86e664ef86a4e634f871a655bdaff281f07eec50283f09fc225725b13a24c","sha512":"b39aa96b642b27e51371597bce784b68e514fd0bd93abf0c036c478b5cac651281d4af9e16f87375142afcebbdb2d199c107e9de62893c77b82a839a7e4e0ff0","ssdeep":"","tlshash":"1701ef65934a1d3cb303d3b4c6053770622a58615713b210c2733cb7a4f700c7abb9aa","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.882624Z","times_seen":1785,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/suspension-bg.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/suspension-bg.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff8-df7\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3575,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 53 x 47, 8-bit/color RGBA, non-interlaced","md5":"33a93f8de119b48e5730c85f9788390f","sha1":"b80fb941dcdc9a5fd35f592f201d83b01dfdcc13","sha256":"dbe9d13d77afea74df648d761378b1d462a1d03fb6055674eee2b5e8a632d811","sha512":"52bcff6bd87d9e77634f881d3f881f75045afc736c1ed299f90016c42701c282760681892eeff27e53aca30bbddfb6483926c8784b1edf7bf21061ba10c67f28","ssdeep":"","tlshash":"da718fc5a805447c214d07ad71abce458627fbd543863e8c75fa430fc914e503c3176b","first_seen":"2023-05-11T09:11:42Z","last_seen":"2026-06-06T18:21:09.55788Z","times_seen":211,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/wallet.97a18288.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/wallet.97a18288.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:38 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177e-2095\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1Sj4nlg2pVrpyMvYN0uQFC6TL8o9KcP2gK7IgYYDofjbsxdYjmQkInXssxlXK7QXxNHwUtqBipmPTEHs5iBBvoyqYOGaAhtN9fuVSA%3D%3D\"}]}\r\ncf-ray: 9e0554f25d31eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8341,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"97a1828805fecfdeeeb01f9439361c68","sha1":"e0443b70bde9a926b982696dd2c309e174d39e0c","sha256":"7b774ea72107b78f0ae489bac190eb18c6affba7f0e3b0e7a356e3949b3af5de","sha512":"229fd1e7e8f6f532bf5932ea113727feb59844c24b36f9d4db58e99efb20f3d01176e414dc12b4ff35df48ad096abaaca752f757cb9ed067f1a7c0c83a9367f8","ssdeep":"192:DDSlNrVdI4RbsCpIqYW0w3Vx8WdiAcWV5dC9:eVVq4cqYInxpV8","tlshash":"5a023ecc07195ce4ded0c3f9ef28a5f0b223a5f9a964605c8620772b38654ad2c7b9c7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.86957Z","times_seen":1780,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/feedback.39ff43ad.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/feedback.39ff43ad.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N6LEsODRhuFkv%2FcvlRdRWzzCxYTsWO1nB12%2BoNpWS9EHyU5TqPPprLZt2GdobWHMLbiyZYUDJRbTWV9PuJJ0kMALY4l7A3RcPOXjYg%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"65fd1779-37e\"\r\ncf-ray: 9e0554f29d48eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":894,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"39ff43ad318c87cf310043ceb1e547e7","sha1":"66b959f2ee476591c5855362db7cfdae6c82d81d","sha256":"4edf7e7ed086e0fe9208719144c0d9e74477576e1001dc59dbec40428236be36","sha512":"e2d418c0b3004e1bc460f479d25611e50338c8da6e7b083d13a0a8ff9a8d4dac998f3723482a9695593e5cdad953bdae355728085c85a4e2a82f1711c08c232d","ssdeep":"","tlshash":"8111c05c63589e9c67219b78d342bbb1726710e3170ea02089723037a91561d3d7b6ec","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.886587Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/css/website.0b83b754.css","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:14.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /css/website.0b83b754.css HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:14 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-2128c\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16655\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2ZxOzxUBbo4KS05RLbAsXl%2Foqqa4lJ29AN4y1kVsN65uIyBdWbtmankhGQwKcqCmCOhE4G%2FuPn6oacG33eXyf1ouEYrUyl8l3joa5A%3D%3D\"}]}\r\ncf-ray: 9e05551449a2eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"03936f49600d8cf124513b3a6fc4f667","sha1":"f670eeb3d8aaca15cade67fbb8e258c2ac3d1e28","sha256":"0a70832e5397898dee0bf00d6a7266704d707a3fd7098d83452e3efdc3abc651","sha512":"6490d274d162cf5beaa932eb997849a8bb576922854c99ab36bfb54fe0b124743547d3b24c23ac008c1c6265a746261f85e3da9a72000df83e9d87fe5a1a3fac","ssdeep":"768:GzOFI2zL40xJfTd5LzG5J0VHHCw4zX74iMgmDyafXf+F7LKmjMWVDSV+Pc32Uj1x:PFI2zYMy2HFXXqYld8bCirjaZ","tlshash":"d7d38621796c7838607fc17ab881388e76207763d36751f5a9a1261ecefb283772634d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.895545Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/css/style.css","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/css/style.css HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Thu, 19 Mar 2020 06:32:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e731214-ffa9\"\r\nexpires: Sun, 22 Mar 2026 05:56:04 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65449,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (462), with CRLF line terminators","md5":"4f3f68781e8e78b66906d9520ccfbd28","sha1":"1f5165be2e96937d3ddb48caa4ae1f41b718849b","sha256":"13304da3d643a97525e9e0d9c20b6c094538480162b312b23e55023aa9246410","sha512":"0eff3667f4fd9fb31997eb29d937074514214c5f3c79f97c75e332657bb317dae12f3ec6b02c9a8cdd0707a142409af96f88e1863be90baa38d12d062ea2034b","ssdeep":"768:2IIB9kL9nrs18tJ9vXeDxQMf9J6d+KJcGX5gAT7fJUdJ6Jq4zWJFJpZJtYMMJjgv:B4n0kfh","tlshash":"e65355bde6a1308da312abf9fbf06b695f1c40b1fb4b016db1b07529928a55c35736c0","first_seen":"2026-03-22T12:52:32.637763Z","last_seen":"2026-05-07T09:17:34.508787Z","times_seen":4,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/code.jpg","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.212Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/code.jpg HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:55:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38c112-61d8\"\r\nexpires: Mon, 20 Apr 2026 22:37:58 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25048,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components 3","md5":"1167052d9d3a04af3e66d05835f9fcf0","sha1":"60366e065eaa794ed29450a78c0aaec84848a8df","sha256":"c5bac28187d16af50b1bca2398abb8e718a6ab101441d0411525c49619c92373","sha512":"8f220dc318feedf55e7afc80a59d201ea6ba0d694fe67df919f338d28cbb7cfba7ed8a07d4becf6c2b3e21add30ece5aaebfd543a9795a41ab793cebd1a65a32","ssdeep":"768:Gyjbw/r+tm4ZLgWlAdxFNPwhgcmGIqP+2f2xLxp:Gyjbw/r+XZLnlAxNohmlqWe2t","tlshash":"51b2e1134bf53faae825274906360f505636b3ef875c1a8fc7becb829e512277624680","first_seen":"2023-05-06T12:28:35Z","last_seen":"2026-06-06T23:33:16.377879Z","times_seen":266,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sat, 04 Jan 2025 06:56:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W3En6HFFpDnZHXdQoqDm2BqifMHFGnZl387XnDLkwWNLxOnizw14RkhjD94xCxHZdUhMFMNmQycAHGIq1fq%2F1mrtEfghKe7AuDrLFw%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9e0554ecade21243-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1878,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1574)","md5":"f469c7c3cd4f5929fab6ba58735ac883","sha1":"f89ef948257a783046250b8535b8e2c5e8162423","sha256":"a8d494f50353fdf2652b85215f83274c73f582ec0357ef4bf87d7e4d99d7de68","sha512":"b354c494ad025d3c8579b89c3221a5e6f7c7ad3408a42ee3b932840a486d6125d1cc40d0c07f4dc182275a730f5624333b51e2e702976a4daf67ad3461ceec92","ssdeep":"","tlshash":"af4110729c10958d6931af75bfb8b28dc4dddb29d5749c40a0e282ad8eb8fc84a53d13","first_seen":"2024-07-11T22:37:17Z","last_seen":"2026-06-01T02:27:04.865946Z","times_seen":1781,"resource_available":false,"data":null}},"time_used":669,"timings":{"blocked":118,"dns":90,"connect":9,"send":0,"wait":431,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/globe.999173a1.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/globe.999173a1.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QoRLlzVwDTkzGDzoIJPbOkw6xi18G72ikCxjdhn%2BcrH5CK%2F0A%2BEfMo99C3y9vHYynFrzvxRi7b7DobL%2FmxBqr0qNdY7v62rOj%2F49hw%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd177a-2ba\"\r\ncf-ray: 9e0554f1ad06eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":698,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"999173a1509726ab6a4235814220de28","sha1":"714d125e87a634d831d0ef2b5e79f0221c12db8b","sha256":"f70b988ac4377e2dbbb5b2999d12146bc33b555dcc7765f8e619dea59db72038","sha512":"7dac0c1014a72363ba55a29752a9ab054592d3cb77480b335ecf10fbd7720dc23cffacf6b357ecea19b9091c74c657cc7bcd5147e3193c3e405597fc99184539","ssdeep":"","tlshash":"7901766da36ece3d78a31774c30232b661e7126349483395d432e135a59189d7bbbecc","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.8751Z","times_seen":1791,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-zcash.e0621e3f.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-zcash.e0621e3f.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-1315\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VowmnZvLrCSOBR%2FYABZAo2TkJHrxA6R8x3xyAjh3ZrVJl30haEGtJtKwEaAf0hxLqpziHkZO3ZvftIGjeMEW1M%2FkRAt7bn%2FM1Is7yA%3D%3D\"}]}\r\ncf-ray: 9e0554f27d3beff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4885,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e0621e3f132f88ac5d4fe5dc005cf561","sha1":"0747109ee5cf812557b6af0b8832b5672f7a4460","sha256":"aa7c92f1c6cec8e53faf4e069e61f6d267078e4b464f71c3a040109d3e22e2d2","sha512":"273ff59a8975038eb4539488546afe2a421592eeec75ae8a3b3e23c28481ed29facf205ddc01d2cf83daf154a6a9be03634d766647284de5e1d8666af896c45a","ssdeep":"96:f8wbk3jtS576Zv3O8aMtDHbFO5SpF84BiJWeaK7O1FgogY8h33V:f8iR0v+8/tjbFO5YK4UpRcgogY8h33V","tlshash":"f8a198dc3f364cf9bc4093bedb1204e83441a9aa7d821a95d3741e0f34864649e98dd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.862869Z","times_seen":1780,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/f_icon1.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/f_icon1.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-686\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1670,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"48f492240b9c97c25189dd6aa8111db9","sha1":"8817ff3f3f86fcea7dd70146e277dc365d5e9e1e","sha256":"a8904a458e1d4b5a4e0edb5748f8f4bbe958de6a8eecae7f50a0187ff9185ce2","sha512":"6bfeaadd82cd5ebf8fe27fe8e836a766bfe98ea6845a16bed1adf5d20d3baf7f127311bf4e6e4fe24ad456ba36cf796387fd23b81174db00d63af24cc79270ce","ssdeep":"","tlshash":"d231b80cfb780c01d244a45624f6446bdbe74d804bb4f268c88aa9577e6c17ba8b6ad7","first_seen":"2023-12-30T13:18:15Z","last_seen":"2026-05-07T09:17:34.536312Z","times_seen":17,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-22T12:52:04.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sun, 22 Mar 2026 12:52:05 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: index.html\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver: nginx\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6025,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":2451,"timings":{"blocked":999,"dns":937,"connect":26,"send":0,"wait":453,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/Plugins/tj.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /Plugins/tj.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 10 Jul 2024 04:37:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"668e0ffe-456\"\r\nexpires: Sun, 22 Mar 2026 05:56:04 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1110,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (554)","md5":"e8d48ed4f849d3a537e0225d3230208f","sha1":"4f8646de1709593d2b4ab56c6caf7c0fd1177fbc","sha256":"98ebdd779e3e1bbdff110cdb3f1b64499478553b072ae12233727b0e7ab2cbb9","sha512":"a18fc25e80f3e39a682cea479fe81c20f6f8b0ebae9ce2e84d9af08d5186bc1cf9e89e14c52580ba0d962291ae291cbd8ba74d42894f157f6024b44af8c5bf58","ssdeep":"","tlshash":"4211c09e7c05e25467973c7a23b7ddace9ae0032100dd80665ebc0ed6d29ff90126b4c","first_seen":"2024-12-07T07:30:44.931892Z","last_seen":"2026-06-08T05:39:12.657439Z","times_seen":1940,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/top_tel.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/top_tel.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff8-71c\"\r\nexpires: Mon, 20 Apr 2026 22:38:12 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1820,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"ab0ca8dc8b9f43247cb0124f426e1388","sha1":"414f332ac437da4b24974633928d336029419138","sha256":"5b345a5d4458009287d8f152d2e529ae3950bdbdb2c4ef2aebe0e5f3770e3930","sha512":"39c8dce5733f0d4fe61003531a4402181683322b1ed44a4cb2619eec824a3b0df2122c199f339acc27373e456b947ee1442dc7ecc34e030ab65925af06341d43","ssdeep":"","tlshash":"b331e96dfd505d92c585a5c230f76033c9338ed0c690d699ba9edc9359e00f02426ae7","first_seen":"2023-12-30T13:18:15Z","last_seen":"2026-05-07T09:17:34.533133Z","times_seen":17,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/medium.dab934d6.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/medium.dab934d6.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l7tmyKYi%2B0e9gwi8hRTltZJiMJD5r0zuGpeXG4qxOoUCjRjS58MxQok4IVXQETeDUgcWqz2QUIdNo2CJk4WRCx2EugLv6d8lddPd6A%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd177b-e3\"\r\ncf-ray: 9e0554f19d00eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":227,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dab934d6af4d966a47477f800d8cc13e","sha1":"d8e041ee599292a34c6bd228d3f78a48d98d5d12","sha256":"8798af34123bdd67eddb715847aa2130aa145a36c256df060a27a08f6bd9a95f","sha512":"dafb31da6c22197d4531bb04a21db8a36377654233bb369284143cec4c08e56c5557e1ada45dcb93e20286c2a07cb8d2e5cd0a4125c3adecd08903fbe1cf8140","ssdeep":"","tlshash":"e4d097e888480c048f68c699df2e3d6a112661d3479c441fa0813202f846aa13448438","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.850055Z","times_seen":1791,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":612,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/dw.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/dw.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-4c5\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1221,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"702360e06070a50af1062307ba89c72c","sha1":"cb396d76e4e384645708abb6993291bf5bc46b5c","sha256":"9af66b222b02f83b8890407896bcf42869977b61d1155d77bb1155eba0489f23","sha512":"7137d8cf843180e3ebd77bf1c576612505ff7492e56de5a4365b3828fc0d763f86a9b78fbd3871a8ebc29417811d74d7fa9bd6de3b4660718f5e0c07a2999a7c","ssdeep":"","tlshash":"3e215459f9827c52e147f59118f78012d9730cc099e8f0e1f98ac42718741fb819a9df","first_seen":"2024-08-20T08:29:16.653258Z","last_seen":"2026-05-07T09:17:34.521962Z","times_seen":13,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/tj.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Sun, 22 Mar 2026 12:52:07 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nx-oss-request-id: 69BFE5F7147C023230A90E1A\r\nLast-Modified: Mon, 12 Aug 2024 07:31:50 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12654278826270211217\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 6NSO1PhJ06U34CJdMjAgjw==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1110,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (554)","md5":"e8d48ed4f849d3a537e0225d3230208f","sha1":"4f8646de1709593d2b4ab56c6caf7c0fd1177fbc","sha256":"98ebdd779e3e1bbdff110cdb3f1b64499478553b072ae12233727b0e7ab2cbb9","sha512":"a18fc25e80f3e39a682cea479fe81c20f6f8b0ebae9ce2e84d9af08d5186bc1cf9e89e14c52580ba0d962291ae291cbd8ba74d42894f157f6024b44af8c5bf58","ssdeep":"","tlshash":"4211c09e7c05e25467973c7a23b7ddace9ae0032100dd80665ebc0ed6d29ff90126b4c","first_seen":"2024-12-07T07:30:44.931892Z","last_seen":"2026-06-08T05:39:12.657439Z","times_seen":1940,"resource_available":true,"data":null}},"time_used":1870,"timings":{"blocked":823,"dns":0,"connect":231,"send":0,"wait":222,"receive":0,"ssl":592},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/index.html","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-22T12:52:05.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /index.html HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:05 GMT\r\ncontent-type: text/html\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 21 Mar 2026 22:50:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bf20aa-1789\"\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":6025,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (349), with CRLF, LF line terminators","md5":"8cc57f3c6783f4a9f7c6b8e208fa3b14","sha1":"4d72dac183117072797ba34722ed98468494055e","sha256":"eebcba14c26ddab5bb11ecacd05e8a23f3fac95aaae50ade234cebda46babe69","sha512":"0f1c9fdeb2c6b1e8bbef98518a0a30b6a6d421e8f845f430c49351f181525fe8bed011d1d4757a990bd3800f7f9f3d353ab7cbdd34c71be82eccfd1b65f32453","ssdeep":"96:ZYsisEF82zlrWM1CcMISZixHDSTbnmDp7cbapbg8XTMAicS8f:VX2xSM1CQxuXnYUaRfr","tlshash":"05c11221a4e2443740b391d96a766f59eec6e507ca0b4e0073fc47da5fe6e4ecc03159","first_seen":"2026-03-22T12:52:32.656853Z","last_seen":"2026-05-07T09:17:34.496478Z","times_seen":4,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/js/jquery.min.1.7.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/js/jquery.min.1.7.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-17278\"\r\nexpires: Sun, 22 Mar 2026 04:55:51 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94840,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)","md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-06-08T23:15:38.578741Z","times_seen":22453,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/Plugins/apps/CaiJiXia/cjx.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /Plugins/apps/CaiJiXia/cjx.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Fri, 15 Sep 2023 06:11:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6503f5a2-9b8\"\r\nexpires: Sun, 22 Mar 2026 04:55:52 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2488,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2484), with CRLF line terminators","md5":"7c796c9667d148e3d1d960eae58ca7e3","sha1":"4921f0df8d5ea9f4b6dbd1c6cad4bbc821374e89","sha256":"c5295e9bc5d73b08ca570e9b9aed94742d70ea16833fe3a9f11ae266225ed7a8","sha512":"58452cfeee70da91c0a40dabce71fbe2c5f2e1002d4b21ec08a5c9a9fd11e99cf3f7c301c6600c48228fcbc39d46738ac24a0baf4cda510e0cf1a17f36194d61","ssdeep":"","tlshash":"2b5162adef5238b306e27ae11cbdc72d105404e6787b8271ec989e8439f0ae44d6b353","first_seen":"2023-03-07T15:49:45Z","last_seen":"2026-06-08T16:17:11.891961Z","times_seen":1781,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/css/chunk-vendors.09af4a6b.css","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /css/chunk-vendors.09af4a6b.css HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-7290d\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16650\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FcNqhSAbQTJfQT3rmbhOrpJNA%2FAbGaUzJhTVXv9x1oWNEPqoh1lYoUZevlejJJe1%2FW0LXuvJLw9tmSuaRiv895cpyuzxN8DNLoKSwA%3D%3D\"}]}\r\ncf-ray: 9e0554efbc71eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":469261,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65422)","md5":"7501f5604906aede27f9621259b31ed5","sha1":"4c494f472616ea88a4ab2ddcf30e77c909e21b2c","sha256":"57f23552c346bdbd11b2b0cf10a60b7fc4537fada692118fdb6358072778cfa1","sha512":"a4b320d3fbcb6ec992e25632edb281178cab786e2ed66a502fe940988b1c66ef8c64e0b840372669c1cf79e4e35cab25cea8e141f865569773372acf354f7753","ssdeep":"6144:ZZcxcZldl801XxjNg5p61Btd7jcpAitAGQxwT:ZXh7jcaOQxwT","tlshash":"66a497686b41203de5ebc736e4d1bc595931ce13952f9dbff3a07e184b85a8a01e3e06","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.856071Z","times_seen":1800,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-etherscan.11435bbf.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-etherscan.11435bbf.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-2c12\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f%2B3Nl0PSe0zLgx2cCH97Kf%2FFT%2FWQe4%2Bfo%2F9pssW0wdl8QEMzXO5vVuhrQ9atLX%2F%2Bigubj8mwPy%2F7rFeQA74QK7f9%2FHAg0cCt3peJsA%3D%3D\"}]}\r\ncf-ray: 9e0554f28d41eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11282,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"11435bbf6371a8947396816c6a233a10","sha1":"46bee002fdc5ddffc54404b1f8a19f35cb64b4d9","sha256":"cc0f2d9608f1856adcf276174bef44b2a2b76276dd547068ba1cb9014405721b","sha512":"f072c969248bf3c3361aa77d6a36dcac9bc0bf78b30856e47b15c6fc80a69dd64c36c8463945c38082a032513f8bb1819323e862563587685ca08549b35d63cb","ssdeep":"192:f8WNPeQpXC/8tv3Y74wBx5IZoIwVqcC8wGPWwBjaQCVgixp05n7oB:EemQpXCRZD5L3kujaQAp47oB","tlshash":"8f32a4cc6b3a4af8bc85f5fec70544b67802aeae78414958c3b42d5d284442c9dbddeb","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.885087Z","times_seen":1869,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/app-example.50dc94f6.png","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/app-example.50dc94f6.png HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 06 Dec 2024 06:58:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6752a0b0-eaa1\"\r\nexpires: Sun, 19 Apr 2026 19:22:20 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 149388\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KU38kWg%2BOoP82cmVbNti7h0EggaHJEnKT96GUJfxn3aMz%2F5Da1nR6HxYFRCuZ8OwWhk1WdeSP%2BPEHaGn8YIGjamsxSbGY%2F%2BJ%2F7JFgw%3D%3D\"}]}\r\ncf-ray: 9e0554f29d4aeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60065,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 720 x 316, 8-bit/color RGBA, non-interlaced","md5":"365c7008fa7b2eb36b273b2d493bb887","sha1":"1d9283eb6ca3a2aec73c8cc10a5a411c81c22f86","sha256":"fe312cdad1ae0f17aced721beb74b8106cbe5dd8a958cbdd02c0e4e8224f38b9","sha512":"1570cc1c36afae0502cf903c19a494be001f0f0ab56c964a0e9c56506948c3db7644cbb2af5484a27fd00f1d70dc5c2bac647e975cc4f5a5c7615b8b5b4daab3","ssdeep":"1536:cHIdrhsQTMN4s3w3y0zgs6tXmI0NxUIu+73aoF5:Rdr/js3w3y/NC7u85","tlshash":"1f43026515105883dff6a099508a2fdeb9ce13bf028734bfea920bb42e73b0f1765446","first_seen":"2024-08-22T11:11:23Z","last_seen":"2026-06-08T14:32:13.005003Z","times_seen":2068,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/side_icon.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/side_icon.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 551\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:04 GMT\r\netag: \"5e38bff8-227\"\r\nexpires: Mon, 20 Apr 2026 21:37:21 GMT\r\ncache-control: max-age=2592000\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":551,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 176 x 44, 4-bit colormap, non-interlaced","md5":"8d11e3d72457512d2f463380fcb52f7f","sha1":"564f80f5d0cb3fd8e4618bfcc56688a3043a3024","sha256":"49f46fd0ac57bef155438e2263191ad10c4a41012ea6c8e03ddd4f8fc92579b6","sha512":"3ffec1c7a867d8462b5471bd568728a0101f961c372d3b156194487de1f8b0158364d00dfcbfd71c98de0883bdda0dfa7062f239a37f73df1cdd5cee2d8c5a37","ssdeep":"","tlshash":"3df0c6a9869df854d2d57f61498b5440053a0f4c118d49043406b6258d3b87b43c2b49","first_seen":"2023-05-11T09:11:42Z","last_seen":"2026-06-06T18:21:09.555021Z","times_seen":224,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/subscribe.ff7b792b.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/subscribe.ff7b792b.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wkjLoWpHrrIzSXWCrejEMxqbKC7hBjAQp5RylHsT0oPv5LpfawtU4pXlLa5UqsxHycVYF2OkCMbt8OE7JqSgcuFO%2B8sXmXkzmKxZFA%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd177d-24a\"\r\ncf-ray: 9e0554f1bd07eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":586,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ff7b792b7ed2fde784f744653eee3dc2","sha1":"9551d0b17562a9fb9c456081cabdfdcde5bb3d41","sha256":"0ce9bdd49f924c57c51b574b7a7a7a3d188ecba968017146d0cb3393e58281b1","sha512":"5ad72693aeeddf64284143e32edd5d97c9d66ef1598b3be9b1f2faebfccbf24102e5e145b7b814e20ed90267b3e92cd0fb280458fb591789bfca0a173bd76ab0","ssdeep":"","tlshash":"22f021a054cc444887344715c7d5bed5642fa1434315025cf35c355f3f344a658af39e","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.889345Z","times_seen":1787,"resource_available":false,"data":null}},"time_used":415,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":415,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-polkdot.0ce6319f.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-polkdot.0ce6319f.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-36cc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aIOsYdBqk0iN495BZkupDUErnYb0c5qQ8O5HXtA%2FRZfAnaJsR3pZ%2ByAYKS9xvnYKGZ6LkcIQqsVs9d73gAZuPv87qeXxnZniNdXvnw%3D%3D\"}]}\r\ncf-ray: 9e0554f27d3ceff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14028,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0ce6319fe258d51e640878721b30b00b","sha1":"8f84b97707d89c051c345dad664c11f87409d0ae","sha256":"348c471852992bea44c07ba36c56e331ddb6a25ce288fcd584cb9a78fa8006d2","sha512":"6c32b6f23ba02e0c4930d28f9ecd57fa861cda873413aed108f037b711d4f5e023f8fb172faf59c739c95514c70f17b0e9cc24acf96460c9157df87afbf95c7c","ssdeep":"384:f5KRkKZJj+AjA6Tam5cKqez2c/9sQ7HWqw8jJ:f5m/ZzTaLtgN7z5J","tlshash":"9a5293cc2bb587f8f886f0ff9b1110a4790698ff69818a75c3685d09788251c9e45da7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.875602Z","times_seen":1868,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-cosmos.9c72b55e.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-cosmos.9c72b55e.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-16ab\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zjNP6%2BD6sv%2F7tyj2Kc2LPkOWjrMRsR3IgU4YwoHJRHaP38jYaKiUcDbaqexB5IyIuog0cLtkpBkAIpsXC6W3IYnuGEU%2B3dSZoo%2F43Q%3D%3D\"}]}\r\ncf-ray: 9e0554f28d3eeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5803,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9c72b55e74e0e611c924e4b51687dbc8","sha1":"2e2b75c57289b5d7013a52e536a6611c93fad256","sha256":"f2dc04a3223bcb855780d1afb1dbe2f84d576c48090e39a68f70c67f468f2f7e","sha512":"b6a5f272a8fee153a8d4a56fb4e55f017fe75b1e5d3518fa64ecc28ffcd5a332f858b91c29d3d1a9116072ee47d7b1d81204e7492932baf4137d64f6feefe028","ssdeep":"96:f8wvPA6sbKbFTDajm6iyinXBd7ycdZgTz3KA7zIGcckwHWt5H27T9B4W:f8bKhnajRiLb7yr+Kcckwm5H27TH4W","tlshash":"a9c1d8fc7b7556f4b881d1fecb2050f83a51aae7b8020924d3a81e0ea88297c5d58dd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.900792Z","times_seen":1782,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/tokenfans.77b4ad2b.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/tokenfans.77b4ad2b.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177d-6e8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2NARK%2FSYGM4zLQApar%2BK6mYrrM5qNKy%2BvuSW6%2Fh21B1jEqepUKAh9dtv3VB9LCJbLmCxqRAVhDeMJEARjHffI%2FeajMAl9FDxtYh6ow%3D%3D\"}]}\r\ncf-ray: 9e0554f29d47eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1768,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"77b4ad2b85f6f4a96c42993646c55088","sha1":"865d2cd44e47bf24c1e1506c154594080a8a17e0","sha256":"a4016ef09c6ff041f9391ed051d0d931f7ed4410538e953b068d8937ef9b1025","sha512":"17c182bc93a0bf5c8201184357a5c367b2854368374b6c356ed6a1600297477b2c6f2c0794f12886e9accf65597a19aa1a3f28d42c09eb0cae4a93296bfd1f0c","ssdeep":"","tlshash":"76316584d3ecfac9a200a3f44774eeb0766f15e63515c04587993d5bac0295c2cba8fe","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.858913Z","times_seen":1781,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/ts.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /ts.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Sun, 22 Mar 2026 12:52:07 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 342\r\nConnection: keep-alive\r\nx-oss-request-id: 69BFE5F7BC68B93232C9EBD2\r\nAccept-Ranges: bytes\r\nETag: \"9E25F39790BC7EF442E6671E951E1D83\"\r\nLast-Modified: Mon, 12 Aug 2024 07:31:50 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4613280838212379853\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: niXzl5C8fvRC5mcelR4dgw==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":342,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"9e25f39790bc7ef442e6671e951e1d83","sha1":"a76e21459ea14f8233735b3c819f30c26cbd813c","sha256":"c18b4cc7348ba40f4e88f5bbf8420de8041c5b1dd91165494281e48580e6fa07","sha512":"341d86437e392cd0f776d1997c7ce2de3b65279d55ff105e3c9e9adf1eed9d2cd3b0172dfb0c4e290074111418b5c9f68bac2ab5ec930cc0fb6cc3692a5ffc8f","ssdeep":"","tlshash":"cce0d8992466667427901c9995aef42cf4da112c38519002954ced112034aeb1e1ea94","first_seen":"2024-12-07T07:30:44.929907Z","last_seen":"2026-06-08T05:39:12.643904Z","times_seen":2054,"resource_available":false,"data":null}},"time_used":1651,"timings":{"blocked":821,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":602},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/website.f36331df.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.526Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /js/website.f36331df.js HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Mar 2026 19:17:20 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"69bd9d40-9ec9a\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16650\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LPs0ryTd%2FfvpfeD2L3oi1Lk3XqpWz9f%2BBKk0i1tDYdUd7ZZbrMMl%2Btzcf%2BoFyWgAAWT2QQVVOOut3vhTvN%2BmYKp3HoJowfCEvKYSvg%3D%3D\"}]}\r\ncf-ray: 9e0554f15cf6eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":650394,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3378)","md5":"3f284454092abf5682e1c00c84581de3","sha1":"56f58ad6c3101d392c011abf24122ba0c2ed6097","sha256":"aea81c7fa964a8b9e9e47768845f1e7f6f3899b3ed67ee785062423268e9dc37","sha512":"2be99363a09ffef79a1944678e4024e63a8ec19302f4e21c59471ee86a27ce2d13ca819d2cc5f6ab1bf133f4a29d93040a4491366dff2bf639cb115a23048f1a","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHGqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWnDsj0FwG3rZ5oNvqV","tlshash":"f1d4025d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","first_seen":"2026-03-21T13:26:37.63371Z","last_seen":"2026-04-02T15:50:32.047482Z","times_seen":30,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/imTokenLogo.8964e98a.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/imTokenLogo.8964e98a.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 20 Jun 2024 04:26:23 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"6673af6f-24de\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tZE73sfRnig%2Fk0WTfHN3aOQMd%2FRBCaxLu28I6zm1o44U%2BWtMbzWfQpD%2F3ubCcBQYTCGeR7glpV9B6XtKZLSl%2ByRf4Ks3txYs6cjSLg%3D%3D\"}]}\r\ncf-ray: 9e0554f16cfaeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9438,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ff362ef3dd8481a8b6507fb545025cf8","sha1":"a728dfb3d393258924ce63dfbc3f638b59d3330a","sha256":"690e08204f91ce6958a804b11ee08546156e4b5dca35f0b1ce00dee6266156b2","sha512":"a25bd09b8e65b5188bc5efcaf54aa7a215217cd53f8e92337c06edc96cf82b3e116e7771ea3ed36ac51f42d869f018178f0429e15044e8a43cfe72126643124e","ssdeep":"192:LJYVRfONtbZ36T9/zp+beh4ciRBi6m/Z1BnMg+K4jnFJibZLI2R9TZx9R:sRfONtbZ36PPiRBivPBMgxKnFJlE","tlshash":"681286f13aa463f59503ebf8de2754746a2b38fabfc54ae7c190ac499422055cdc9cc2","first_seen":"2024-08-08T18:51:51Z","last_seen":"2026-06-08T14:32:13.007397Z","times_seen":2186,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-eea.71971a25.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-eea.71971a25.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-237c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BfNjs6m6uqfOCJdJefBupG5fvOgFvzSpcffMxsbzDmZgrJ52mNcSdoJ8GTW3n%2F5qGbrLxM%2BJHoSdT2%2BT1Ro2leAUq0nHR%2Bg0vm6B2w%3D%3D\"}]}\r\ncf-ray: 9e0554f28d3feff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9084,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"71971a257a4d633037a160c6c0892387","sha1":"60c1dd19606f7f88de2a8fcad00f3a8b9609dfcc","sha256":"6ef05c6c3bfa1b97d4389b56bc9cf707da69e93dd3573bab527b4f4205dafd09","sha512":"1a541283512a1d1c6a4038ea3cf427cfd6f4baded34722914076d80ab6348c1fe7510013d5244693eda87f7cdb9925a96e8a881b388e5879df65ce7ae58ce253","ssdeep":"192:OxNHjqOb40KhtFepr7T6Uuu+YoPl2Xwa3zbI2+8EzJLoH1ME:YNHF4Nhtcp3GPlubHKLoVME","tlshash":"a112f8d817f584e4fe85e3fae6297499750694fbd680c744c3e87e19384222c5d4eec2","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.879577Z","times_seen":1780,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/f_icon2.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/f_icon2.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-5f5\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1525,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"1a73616ccbdce0a4f080c017262a48f0","sha1":"dfc6407bd1e7055b3794a022b3b80abafac6b1ca","sha256":"5ec308fd1a563846eb1d28bb558b80518d80cf23d525b5efb46efea1bcfa376c","sha512":"4478e4345845f8e438ec14d7900811133c27d4f7a150d97d13bd9a1b28a9ee1162e33bb0156331fb84c5a416e98ba375dcde0a3bf4781b2821357e4095e103ee","ssdeep":"","tlshash":"9331878ded503840d588e88218fb4133d9f79984d690b1a4accbd92b19745f7299dbc7","first_seen":"2023-12-30T13:18:15Z","last_seen":"2026-05-07T09:17:34.54054Z","times_seen":16,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/app.845283e8.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /js/app.845283e8.js HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 20 Jun 2024 04:36:16 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"6673b1c0-497be\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16650\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7Y5bIC1pS%2Bx8MzQ%2Bu9FrQZhv1KNW%2Be%2Bt2SM%2FUUr8tRi9SWkGhWHTMoTpH1Y8RXxohVp3IvFsPylnjRgPaqeVzuJfjFc33y21LyWwCA%3D%3D\"}]}\r\ncf-ray: 9e0554efbc77eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":300990,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65294), with no line terminators","md5":"92153e8135bfd50e5d8314b7248412ff","sha1":"151d3559d1268ad82d43c3da0a8c3320fb6f9cd1","sha256":"8e8cc785d2030344f3654344c192cc484a82040e32f7511292fbd310a0637fde","sha512":"6881fc7e2be75cc610d8e1b1d380b187e75b63e4409206abd62acf932632c3d6cf65e90332a912f015e3011701ef23278da03851942fd552f8c237429867d337","ssdeep":"6144:FpzLzVr0j0STt9rTi57TzuC/2VUsq0JGUrg:rzU9ni5CC/0JGUrg","tlshash":"5c743b07d746d36446c236f02d9a36ecb634d1ecc29d86b6ab6ec0e417b1f7c0267698","first_seen":"2026-03-22T12:52:32.676528Z","last_seen":"2026-03-22T12:52:32.676528Z","times_seen":1,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/down.c7fc8a68.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/down.c7fc8a68.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:09 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6RChCVqEsiESOMLXZ9iu23g%2BcSXBTfQpKVEJRnIOiwS2FglyTMoJQmUxL398Pb%2BV2PZub7TdlVrhlletcf6Fi8gFIfJu5Xt4gid3Xw%3D%3D\"}]}\r\nlast-modified: Fri, 22 Mar 2024 06:02:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"65fd1ef9-d0\"\r\ncf-ray: 9e0554f19cfeeff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"968de49fb0eeedf5d6965f4130607833","sha1":"47766a409c9344a96ed569ef4be2405efbea7a68","sha256":"501cfa9eb5f8047edb1e51e62a03f32a03f845950cb8e75b00311759573d840a","sha512":"57764b64bb5aa2667fdd459c4f9a434d6ec6a6e6f6649a85c201859dd83bb641d17f04df0c1043b89642fca341909ad0809b3a166767fe6ca10b21061f4689ce","ssdeep":"","tlshash":"44d0a96b635ccd1cb0134e28e365363120a212a318ac2254d8322230b60009aae2baa8","first_seen":"2024-08-15T06:58:15Z","last_seen":"2026-06-01T02:27:04.891528Z","times_seen":1787,"resource_available":false,"data":null}},"time_used":460,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":460,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/img/partner-kyber.b4835e5c.svg","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /img/partner-kyber.b4835e5c.svg HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-4eb7\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 282\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FjIoqvsHqLRbtWFdf4EA5tdhZSG4qRpvG0Ori4ck5CKnsq5Jlf%2F%2BrmApch1bqoN48EKxkAPndPx0BDSiViJPoueTiRpxVAE2dYaSKQ%3D%3D\"}]}\r\ncf-ray: 9e0554f28d46eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20151,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b4835e5c97b6a09992afdcd239855528","sha1":"2e395c382b28709831349f4b4edb15bf4aa27093","sha256":"188be37a0357a83116eb0d45a49351cdc0634e9bb22d9c68b13c1dfe8ea213e4","sha512":"3ede3e52bd783a2efd4c24111ff9fb5a30d8259681341ec961fae7133dc3091b550928d86efd052e7c748fbea6b89641ad4421a0c0941f484b947f48e0f39fb2","ssdeep":"384:LSwOe+bMOO/Wb8pyUUPT+KsazMGva9vu5PbXpOpE3:LSwOeuMOb8p5y+rVkKeP1Ou3","tlshash":"4a92c3dd2b754ef8f88af2fed72210da341668ee65808f25c3b86e09358246c5d49cd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-06-01T02:27:04.872012Z","times_seen":1864,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.jss?f2041fb08b31ef1188c06a43252c999","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"111.45.3.198","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.jss?f2041fb08b31ef1188c06a43252c999 HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 0\r\nDate: Sun, 22 Mar 2026 12:52:13 GMT\r\nServer: apache\r\nStrict-Transport-Security: max-age=172800\r\nContent-Type: text/plain; charset=utf-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":9298,"timings":{"blocked":4132,"dns":400,"connect":245,"send":0,"wait":1034,"receive":0,"ssl":3484},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/js/website.f36331df.js","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:14.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /js/website.f36331df.js HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:14 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Mar 2026 19:17:20 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"69bd9d40-9ec9a\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16655\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E4o467q9mSHDJKcHJlyMkU6mVhhVYhJPvzhmx%2FEZjCK2Zrf4JpsYu686V0aveJfCSbdcYfKuUiToPP2efOapCFmHwHR6TSvi5notqg%3D%3D\"}]}\r\ncf-ray: 9e05551459a3eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":650394,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3378)","md5":"3f284454092abf5682e1c00c84581de3","sha1":"56f58ad6c3101d392c011abf24122ba0c2ed6097","sha256":"aea81c7fa964a8b9e9e47768845f1e7f6f3899b3ed67ee785062423268e9dc37","sha512":"2be99363a09ffef79a1944678e4024e63a8ec19302f4e21c59471ee86a27ce2d13ca819d2cc5f6ab1bf133f4a29d93040a4491366dff2bf639cb115a23048f1a","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHGqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWnDsj0FwG3rZ5oNvqV","tlshash":"f1d4025d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","first_seen":"2026-03-21T13:26:37.63371Z","last_seen":"2026-04-02T15:50:32.047482Z","times_seen":30,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/logo.png","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/logo.png HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:06 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 08:04:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e3925a6-2be4\"\r\nexpires: Mon, 20 Apr 2026 22:37:58 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 276 x 130, 8-bit/color RGBA, non-interlaced","md5":"b09a89c09416e6369ade9c55ab7b0aa1","sha1":"f1bd795d966a939265c6365666532ab376fecedc","sha256":"963b5827343c041b760ccb1f7bbbc0988ef2044e1b33feb09016a1f6ef60959e","sha512":"c7f064336ee253952631bae164994f23c45a288ef6837487178dda0924bc1f437e18a7c87c2573fd045bf2961cffe757c72f3f8d243827e747a7b4acee565a37","ssdeep":"192:tSHIIHUCD4wa3JwMthE5kSCqlZaWMim0iRNV/wtbEIszMDkrRMumhuOYnY:s50wod/fqStimz/rIs1r4A5Y","tlshash":"ab32bf1babd18e4c580a4f7331a7d090cf39ba6556cc2d18f59d83168cf15e07e297ab","first_seen":"2025-12-02T04:51:45.216786Z","last_seen":"2026-05-07T09:17:34.516338Z","times_seen":6,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/Plugins/ts.js","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:06.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /Plugins/ts.js HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 342\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 10 Aug 2024 08:53:11 GMT\r\netag: \"66b72a77-156\"\r\nexpires: Sun, 22 Mar 2026 21:41:25 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L2:5619, EXPIRED from L1:5856\r\nvia: L1:5856, L2:5619\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":342,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"9e25f39790bc7ef442e6671e951e1d83","sha1":"a76e21459ea14f8233735b3c819f30c26cbd813c","sha256":"c18b4cc7348ba40f4e88f5bbf8420de8041c5b1dd91165494281e48580e6fa07","sha512":"341d86437e392cd0f776d1997c7ce2de3b65279d55ff105e3c9e9adf1eed9d2cd3b0172dfb0c4e290074111418b5c9f68bac2ab5ec930cc0fb6cc3692a5ffc8f","ssdeep":"","tlshash":"cce0d8992466667427901c9995aef42cf4da112c38519002954ced112034aeb1e1ea94","first_seen":"2024-12-07T07:30:44.929907Z","last_seen":"2026-06-08T05:39:12.643904Z","times_seen":2054,"resource_available":false,"data":null}},"time_used":635,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":634,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jeremyrooks.com/skin/images/ny_banner1.jpg","fqdn":"jeremyrooks.com","domain":"jeremyrooks.com","tld":"com"},"ip":{"addr":"178.236.38.1","port":443,"asn":38136,"as":"Akari Networks","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jeremyrooks.com/index.html","date":"2026-03-22T12:52:07.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jeremyrooks.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 09:00:07 GMT","end":"Tue, 16 Jun 2026 09:00:06 GMT"},"fingerprint":{"sha1":"E1:76:D0:5A:24:29:AB:6D:E2:E8:88:46:88:8B:FA:F5:74:27:17:CE","sha256":"00:91:C9:9E:17:96:14:97:8E:64:AF:9C:79:7F:E6:41:BA:D9:BB:90:C5:65:FF:02:8B:9C:AD:B6:1A:82:27:56"}}},"request":{"raw":"GET /skin/images/ny_banner1.jpg HTTP/1.1\r\nHost: jeremyrooks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jeremyrooks.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Mar 2026 12:52:07 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 04 Feb 2020 00:51:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5e38bff6-216b4\"\r\nexpires: Mon, 20 Apr 2026 22:37:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:5856\r\nvia: L1:5856\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":136884,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1916x320, components 3","md5":"7b63794c86d0323246dbb185d7ef8def","sha1":"7cd84407f49613468931a76a29b2bb7824dda71e","sha256":"f23b48b49fe5eb124951526eb7805059e45d878102e25ba177f91b60abd4511e","sha512":"f8e191d80261f76d87ef64dfebe2c73a9adda23a1712b8483d1164429bc4aa34e711b5f5f6bb42ac44e87aea4f60a83728b11b49b2001b13c0a89a9e0598190f","ssdeep":"3072:m7ehOti1lcqea1XDkilu99xc83uec12gE:mCAolcqr1zkiluXxf3u31BE","tlshash":"08d3120974e2f4b6930c6d032cb1800faae76f1b53977896c6a617792c5630da9bc1f2","first_seen":"2026-03-22T12:52:32.679596Z","last_seen":"2026-05-07T09:17:34.503386Z","times_seen":4,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"jeremyrooks.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-22","alert":"Phishing Block","trigger":"jeremyrooks.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.app80.skin/css/website.0b83b754.css","fqdn":"m.app80.skin","domain":"app80.skin","tld":"skin"},"ip":{"addr":"104.21.24.36","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.app80.skin/","date":"2026-03-22T12:52:08.525Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app80.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 12:26:27 GMT","end":"Tue, 16 Jun 2026 12:26:26 GMT"},"fingerprint":{"sha1":"3A:E5:44:AF:93:D5:C2:58:0F:89:D8:C0:02:51:2A:40:27:83:85:8D","sha256":"15:DF:9F:3D:D4:82:18:06:4E:45:DF:24:77:B4:B8:08:1E:34:C2:69:3B:35:A3:C5:73:7D:0E:53:DE:D3:CB:D9"}}},"request":{"raw":"GET /css/website.0b83b754.css HTTP/1.1\r\nHost: m.app80.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.app80.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 12:52:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-2128c\"\r\nexpires: Sun, 22 Mar 2026 20:14:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 16650\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DMzDJYAd7aTmWQN3M6na6yWSHg70s7JVZTwpRCv67Hy3ezk6vY0hLM4lnycP29qx6H3NGjInZi%2B%2BOnFjQ8qufB0iztSLCiRolTRdWQ%3D%3D\"}]}\r\ncf-ray: 9e0554f14cf3eff0-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":135820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"03936f49600d8cf124513b3a6fc4f667","sha1":"f670eeb3d8aaca15cade67fbb8e258c2ac3d1e28","sha256":"0a70832e5397898dee0bf00d6a7266704d707a3fd7098d83452e3efdc3abc651","sha512":"6490d274d162cf5beaa932eb997849a8bb576922854c99ab36bfb54fe0b124743547d3b24c23ac008c1c6265a746261f85e3da9a72000df83e9d87fe5a1a3fac","ssdeep":"768:GzOFI2zL40xJfTd5LzG5J0VHHCw4zX74iMgmDyafXf+F7LKmjMWVDSV+Pc32Uj1x:PFI2zYMy2HFXXqYld8bCirjaZ","tlshash":"d7d38621796c7838607fc17ab881388e76207763d36751f5a9a1261ecefb283772634d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-06-01T02:27:04.895545Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}