{"report_id":"cd9174d3-67cb-4fc8-b281-65fdfd42ef66","version":6,"status":"done","tags":[],"date":"2025-11-28T16:58:43Z","url":{"schema":"http","addr":"prideflagshop.com/","fqdn":"prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"192.64.119.180","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.prideflagshop.com/?from=@","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"title":"prideflagshop.com - prideflagshop Ressurser og informasjon","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"prideflagshop.com/","fqdn":"prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"192.64.119.180","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-02T16:58:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:33Z","timestamp":1764349113,"ip_dst":{"addr":"172.18.0.34","port":53648,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:33.922000+0000\",\"flow_id\":506186938937632,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53648,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":572,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:23.422176+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:34Z","timestamp":1764349114,"ip_dst":{"addr":"172.18.0.34","port":53654,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:34.512188+0000\",\"flow_id\":222220881269885,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53654,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":692,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:24.038013+0000\"}}"}],"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ep2.adtrafficquality.google","ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-11-17","domain_rank":3229,"first_seen":"2024-08-13T12:56:28Z","last_seen":"2025-11-23T23:55:43.828165Z","alert_count":0,"request_count":2,"received_data":34547,"sent_data":1000,"comment":"","tags":null,"fingerprints":null},{"fqdn":"prideflagshop.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2009-09-03","domain_rank":0,"first_seen":"2020-04-23T01:00:26Z","last_seen":"2024-01-29T13:14:32Z","alert_count":6,"request_count":2,"received_data":25163,"sent_data":888,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2025-11-23T22:20:19.537002Z","alert_count":0,"request_count":1,"received_data":135462,"sent_data":475,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ep1.adtrafficquality.google","ip":{"addr":"142.250.74.130","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-11-17","domain_rank":3093,"first_seen":"2024-07-24T04:17:49Z","last_seen":"2025-11-23T22:40:34.135889Z","alert_count":0,"request_count":1,"received_data":11263,"sent_data":543,"comment":"","tags":null,"fingerprints":null},{"fqdn":"afs.googleusercontent.com","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-11-17","domain_rank":65181,"first_seen":"2013-05-06T19:11:00Z","last_seen":"2025-11-23T22:32:23.716926Z","alert_count":0,"request_count":2,"received_data":2235,"sent_data":1005,"comment":"","tags":null,"fingerprints":null},{"fqdn":"syndicatedsearch.goog","ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-04-14","domain_rank":5365,"first_seen":"2023-09-25T09:30:59Z","last_seen":"2025-11-23T22:26:58.715195Z","alert_count":0,"request_count":8,"received_data":156748,"sent_data":6064,"comment":"","tags":null,"fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}]},{"fqdn":"img.sedoparking.com","ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"domain_registered":"2001-09-18","domain_rank":591238,"first_seen":"2013-04-22T22:23:29Z","last_seen":"2025-11-24T00:26:17.38254Z","alert_count":3,"request_count":3,"received_data":78340,"sent_data":1392,"comment":"","tags":null,"fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}]},{"fqdn":"www.prideflagshop.com","ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2009-09-03","domain_rank":0,"first_seen":"2025-11-28T16:58:43.433899Z","last_seen":"2025-11-28T16:58:43.433899Z","alert_count":2,"request_count":2,"received_data":25754,"sent_data":1322,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.prideflagshop.com/?from=@","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8c9b70c2c5bfd7d88882ac222ace80cf","sha1":"d4240a6d52f5e72ed9b0e4107b9e6795f65f27db","sha256":"3413795c858ec27a5135611785c0c58ad40d68b924d9ce833775923bafc78fc7","sha512":"d7f42288b006a43253a1762c226432b50f532037a3672af54c6d5a96377cbee841ef791a844d009558daaf947d1578d5931b2d55b40429013d419077dde70377","ssdeep":"96:IPYUiEQxdLveS9K4QpPMdYTVApPMdYPRq4Dg4Jl0UO6c:IPbiRLveh3jOfVg4Jl10","tlshash":"9181092c299218bfe5a12bd2d0917c0002fdb9167e50f4ecd595be8d4a87bed26381b3","size":4148,"data":"","first_seen":"2025-11-28T16:58:45.853334Z","last_seen":"2025-11-28T16:58:45.853334Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.prideflagshop.com/?from=@","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a250fbc5a068488660893f64bcbd3883","sha1":"a1b5f3c0b8e3d1d4b24c80a2b0ec26e1bfdb710b","sha256":"c23bcb1a9582fa5e6a7640914593be32834a9f9c9996d30c430906c46a448b49","sha512":"74d79330c6ca36635369bb8304f69840d61f91475aedb739a3aace36572481c636cdf1b44089dff65720bdc905c0dc22bcda1e5d78e4775c60253f13ef4abc3e","ssdeep":"","tlshash":"49f00cf13a70030ac632e757e1da22a17e6cc053c081f8a271bea0200fc8a2617a0b96","size":622,"data":"","first_seen":"2023-03-07T01:02:15Z","last_seen":"2026-02-24T17:29:47.598055Z","times_seen":74327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"50b25d4f1314d45c045bc3266b998788","sha1":"eba72ef1b1402818d0ae3e281e0073ecbf98a030","sha256":"aca49a89fde6e3d9de0e003489b7253e9ee8caa298620cea30ecb0815a102219","sha512":"6a8573b6572a7461b4c04468b3d61b57b3bb67125df71e9e459890ffb6abee2e1a5fde1424adbea0f8846020aee0aad6d69648c8400f8137e8e9dd822484a3b9","ssdeep":"","tlshash":"e501c5a0383d0233d0371413400f3fd0a8041870528b2614908fa0df30bdfaf682c49b","size":817,"data":"","first_seen":"2025-11-28T16:58:45.854843Z","last_seen":"2025-11-28T16:58:45.854843Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8259fea9ceb1549df2874e12c5d08afb","sha1":"3781c9a4b44dc83f23ac523736be3ea60183e684","sha256":"e796d4cb0061c925debb73db478ddd2a2b43c25705612c1af9fcaac65ff5e10e","sha512":"79b2031ee4f9291dfbf39eafba86056e41412561444ca16f849b56e6622eb18897028b0633c4c623b58f16048350fad5dc8dc50b04d0d6da024e615f42826a7a","ssdeep":"1536:kFEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:2uydkEiR5IW8YlmDD7MJ/2f","tlshash":"1ad34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","size":134752,"data":"","first_seen":"2025-11-14T14:34:56.700369Z","last_seen":"2025-12-02T20:42:10.079238Z","times_seen":3032,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2.js","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8fe3ea2f81e289e6b14222e898086c5","sha1":"0e9a1227955675736e02c596906bee72bc33d7d6","sha256":"a7f65c0446b6cac3175458f6388304d0c23e70d11fa0db20920a619f1bc18623","sha512":"3bd99998aa1b5d7543775769952adc52809f861ca023b6daadf6b7d23411411a6a9470d98c7b8543573e9a6047a24e14b5feaf45e14a22d98e64d0f019718670","ssdeep":"384:dxSMqC/d0d0lxDKyqdeWFy3Wxy9cT4nGllKnnk0TEYRWjfJtncu:i0qKlYyqdeWk3Z9w4G+tFWjfJtnZ","tlshash":"8892c6cab6d2f4624363b9b1a13f100ff13eaca9d84c5464a084e4e0bd759a94367f7c","size":19990,"data":"","first_seen":"2025-05-19T23:59:48.474751Z","last_seen":"2026-02-26T18:27:55.354921Z","times_seen":175417,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2/237/runner.html","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"00923ffaff018f400bfbc44db7d3a3cd","sha1":"fbf646d88a5b9254762da3e951a70559cafb4321","sha256":"f7e7fc57c8ca2218d904f719fe07607a955c7ccf9ba56c857688ca9bb1e76123","sha512":"c7de939d9d4c3aa5e559a2c1647e982e445c68af15d476962ce019e0827496959fa14654c2bb11a3d2e69944c9ee1470e7d922d5500897a50f4fd47a3fabcf0f","ssdeep":"192:+l/6xS2OASROqI3wgh5MXDc9EAOaK3qzfaGDCiMgIcTa1mH:Wz2NQJIVsTiMH3qzfcOIr1mH","tlshash":"b542a7ccbad2b0210353b4f1a13f000ff13ea8aae44c9955b185e8e17cb56a94667f7d","size":13105,"data":"","first_seen":"2025-05-19T23:59:48.536394Z","last_seen":"2026-02-26T16:39:13.367665Z","times_seen":12596,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8cc6037402227c4a0bc03cc6dddaf507","sha1":"6ce12128e642df5cc96a57621e61d6c755167900","sha256":"2c8bdaeeff158a01cd66853b4e8c888577d561641b21d8da48309113f54b788a","sha512":"2e3f8448689939cbf94e4278bb508f07ef35c23d9306dda3eee50a93b8add5b1fafbf1c53df91d16fe1709aaad854abd54de984ec8454c1badc3594527687125","ssdeep":"1536:1FEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:FuydkEiR5IW8YlmDD7MJ/2f","tlshash":"d2d34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","size":134745,"data":"","first_seen":"2025-11-12T18:04:11.327966Z","last_seen":"2025-12-02T19:49:26.510894Z","times_seen":4706,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"53a557946308585635eb80aec5326b9e","sha1":"544b125203bfbb516566a63c9ef3dc57e9c06df9","sha256":"eff95f5e15f8aa8c8b8c0f3aaeedba0091c1ec9732d78b6594c9ceb26c8eff28","sha512":"31c607e84c67799c8bce08e64fdd2c0164b164752ef3d7b1aaa9b2dda5b749e5064b44a66ae53109ccfdbdf7c6760bfc074502f65de4f4ed1fd6c50963885872","ssdeep":"","tlshash":"2621bb6e4c50822f2eb23edd285bb604fa235420e089e1d0c48cf9643979fd3882d9f4","size":1293,"data":"","first_seen":"2025-03-02T07:28:43.564096Z","last_seen":"2026-04-02T03:58:14.106009Z","times_seen":123069,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.prideflagshop.com/?from=@","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"978e89b89f929ebbd0a746295eafbcbe","sha1":"6b92ab60432c1e5a8aebc60ebc94f1f24c28cea6","sha256":"848eaac812a5c6ef9f75fc33f2bfbb7169bfea60bc4d4a28a7e77d1737ca42ac","sha512":"c7b6c342a6cc4121c889e38dc07ec85f7b3b1ff7811c0babb5f5abaf39a984424751eb1a7ff400e9bd45f0d49e96be85ff30023dfe9de0b3c0463e1d136e42d1","ssdeep":"96:zQIHrUsXy9Cp1OuKfIqT1M6BXXjgXnB9qPsBJaqJ4uSnx73CUnKVGSrbH:jrUs2nDxQqPJTuIRIESrbH","tlshash":"26c194723145347a4aff0751206f1f14b67ae8533a08b419b028b7e82bebd5744dbb6a","size":5888,"data":"","first_seen":"2024-05-23T11:11:38Z","last_seen":"2026-03-23T00:52:59.161451Z","times_seen":188504,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/ads/i/iframe.html HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/html\r\ncontent-security-policy: script-src 'nonce-PU_wllaaGHixq0f0CyJ9ng' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ncontent-length: 727\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, must-revalidate\r\nlast-modified: Tue, 17 Sep 2024 06:00:00 GMT\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1560,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1559)","md5":"d1ee91f61a88efb33152fa21ba9aa4e3","sha1":"dfec197ba76c1dd1c7264fc7aa11b5db7fba50e4","sha256":"5e7124f8c5eabee85fd069c2a00695f534a69e51059959854e648fd6e152e8b4","sha512":"c7efc3d85c3dd3bf0e376965fc1d68ded434bc3b7f567065b986bfa1dcc851a7bc771f152b18a4237e6c44187b40b934ebe6342201b838ef31af111a529a226f","ssdeep":"","tlshash":"6931b1af4c50411e2eb23d9d2dabb604fa135414e445d5c0c58cf4693979fd3882a9f4","first_seen":"2025-11-28T16:58:45.842621Z","last_seen":"2025-11-28T16:58:45.842621Z","times_seen":1,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":52,"dns":0,"connect":8,"send":0,"wait":20,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-disposition: inline\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nexpires: Fri, 28 Nov 2025 16:58:25 GMT\r\ncache-control: private, max-age=3600\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-HNwB6651QNFLmrkAw0Z5TA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ncontent-encoding: br\r\nserver: gws\r\ncontent-length: 3178\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":14714,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (13952)","md5":"a314153a40089ad3369cb5678214efd7","sha1":"ab1c6f8dbcebeba341f176cb89a0344a74f82e5d","sha256":"017ef7503908bf2d2d2cb823c8330a6658227445c037de150cf59c7c0b883bd2","sha512":"6e951fa908ffa48252b6dba633563d9b91051f0fbb94e7992dafcede61bb391966e25a718e9d1c9513c88ad729e2a5e81219c1a1e8e53ee3037a6d0053c660c6","ssdeep":"192:GE12iMpgbkzMBhROVQ1Wr2VhR2x6LpUiMkJ:Gni0g4K/Vhe6LckJ","tlshash":"c26273376076672955139c540b2a6f6dd181d43ac86b35f808f32b25c7e7f828fe628e","first_seen":"2025-11-28T16:58:45.843769Z","last_seen":"2025-11-28T16:58:45.843769Z","times_seen":1,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":57,"dns":1,"connect":20,"send":0,"wait":151,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/logos/sedo_logo.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cachefly.net","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Nov 2024 20:01:06 GMT","end":"Sun, 14 Dec 2025 20:01:05 GMT"},"fingerprint":{"sha1":"E3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C","sha256":"0D:FF:60:D6:18:60:C6:38:90:5D:DD:55:2E:87:EE:3A:E5:96:78:0B:5F:68:E8:88:AD:AE:1A:BF:51:59:94:83"}}},"request":{"raw":"GET /templates/logos/sedo_logo.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\ncontent-type: image/png\r\ncontent-length: 15086\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Fri, 05 Dec 2025 16:58:25 GMT\r\nx-cfhash: \"def00c11b1596db4efee6a9fbe64fc27\"\r\nx-cff: B\r\nlast-modified: Mon, 11 Jan 2021 07:44:34 GMT\r\nx-cf3: H\r\ncf4age: 0\r\nx-cf-tsc: 1735940836\r\ncf4ttl: 31536000.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: 2838a9764acf84e7b5d5f71fc4bf1c76\r\nx-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"def00c11b1596db4efee6a9fbe64fc27","sha1":"bd298981e6d8d7e4ffa18abcf687041f4246672d","sha256":"95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4","sha512":"c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f","ssdeep":"192:jiHSINqv0tJ30DezSfPAXTZwC3D2N2xp1Fd/ar/+zi3LHZNwkQH0iWpXDt3TN8rB:jzAnP9j","tlshash":"31623e0bfd4bc358ce50b23ae67c4bfb6361d8c1b090a7e257d9d51aafa7b014c9a011","first_seen":"2023-04-14T07:11:21Z","last_seen":"2026-04-04T07:45:46.520869Z","times_seen":219934,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2.js","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:56 GMT","end":"Mon, 19 Jan 2026 08:36:55 GMT"},"fingerprint":{"sha1":"9A:0A:53:7B:B4:C0:0A:9F:26:A7:9E:31:1B:C0:4D:3B:33:4B:23:27","sha256":"A5:65:20:57:2E:8A:60:B7:56:8C:E9:E0:ED:44:1D:3F:61:C1:AC:62:D6:82:21:9B:16:7A:06:84:4D:AF:F4:E1"}}},"request":{"raw":"GET /sodar/sodar2.js HTTP/1.1\r\nHost: ep2.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"adspam-signals-scs\"\r\nreport-to: {\"group\":\"adspam-signals-scs\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs\"}]}\r\ncontent-length: 7188\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nexpires: Fri, 28 Nov 2025 16:58:25 GMT\r\ncache-control: private, max-age=3000\r\netag: \"1747411493688989\"\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19990,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1398)","md5":"a8fe3ea2f81e289e6b14222e898086c5","sha1":"0e9a1227955675736e02c596906bee72bc33d7d6","sha256":"a7f65c0446b6cac3175458f6388304d0c23e70d11fa0db20920a619f1bc18623","sha512":"3bd99998aa1b5d7543775769952adc52809f861ca023b6daadf6b7d23411411a6a9470d98c7b8543573e9a6047a24e14b5feaf45e14a22d98e64d0f019718670","ssdeep":"384:dxSMqC/d0d0lxDKyqdeWFy3Wxy9cT4nGllKnnk0TEYRWjfJtncu:i0qKlYyqdeWk3Z9w4G+tFWjfJtnZ","tlshash":"8892c6cab6d2f4624363b9b1a13f100ff13eaca9d84c5464a084e4e0bd759a94367f7c","first_seen":"2025-05-19T23:59:48.474751Z","last_seen":"2026-02-26T18:27:55.354921Z","times_seen":175417,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":71,"dns":1,"connect":21,"send":0,"wait":31,"receive":1,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"prideflagshop.com/","fqdn":"prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-28T16:58:20.434Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: prideflagshop.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:33Z","timestamp":1764349113,"ip_dst":{"addr":"172.18.0.34","port":53648,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:33.922000+0000\",\"flow_id\":506186938937632,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53648,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":572,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:23.422176+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:34Z","timestamp":1764349114,"ip_dst":{"addr":"172.18.0.34","port":53654,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:34.512188+0000\",\"flow_id\":222220881269885,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53654,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":692,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:24.038013+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:24.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:35:45 GMT","end":"Mon, 19 Jan 2026 08:35:44 GMT"},"fingerprint":{"sha1":"88:42:9A:E3:85:29:1D:A4:9A:60:E6:5F:C1:71:A6:01:27:91:C8:BC","sha256":"6D:0F:B5:30:E0:1A:7B:ED:55:DD:26:C8:34:D0:0A:34:65:0E:E8:E4:93:E9:8C:DF:D6:3C:63:71:A9:AE:DF:D2"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nexpires: Fri, 28 Nov 2025 16:58:25 GMT\r\ncache-control: private, max-age=3600\r\netag: \"10595787288413783502\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":134745,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2840)","md5":"8cc6037402227c4a0bc03cc6dddaf507","sha1":"6ce12128e642df5cc96a57621e61d6c755167900","sha256":"2c8bdaeeff158a01cd66853b4e8c888577d561641b21d8da48309113f54b788a","sha512":"2e3f8448689939cbf94e4278bb508f07ef35c23d9306dda3eee50a93b8add5b1fafbf1c53df91d16fe1709aaad854abd54de984ec8454c1badc3594527687125","ssdeep":"1536:1FEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:FuydkEiR5IW8YlmDD7MJ/2f","tlshash":"d2d34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","first_seen":"2025-11-12T18:04:11.327966Z","last_seen":"2025-12-02T19:49:26.510894Z","times_seen":4706,"resource_available":true,"data":null}},"time_used":350,"timings":{"blocked":141,"dns":1,"connect":20,"send":0,"wait":63,"receive":0,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep1.adtrafficquality.google/getconfig/sodar?sv=200\u0026tid=afs\u0026tv=1234567890\u0026st=env\u0026sjk=kiBS28OaS92TcZHRIMLq8Q==\u0026sde=1","fqdn":"ep1.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.74.130","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:56 GMT","end":"Mon, 19 Jan 2026 08:36:55 GMT"},"fingerprint":{"sha1":"9A:0A:53:7B:B4:C0:0A:9F:26:A7:9E:31:1B:C0:4D:3B:33:4B:23:27","sha256":"A5:65:20:57:2E:8A:60:B7:56:8C:E9:E0:ED:44:1D:3F:61:C1:AC:62:D6:82:21:9B:16:7A:06:84:4D:AF:F4:E1"}}},"request":{"raw":"GET /getconfig/sodar?sv=200\u0026tid=afs\u0026tv=1234567890\u0026st=env\u0026sjk=kiBS28OaS92TcZHRIMLq8Q==\u0026sde=1 HTTP/1.1\r\nHost: ep1.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.prideflagshop.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-origin: *\r\ncontent-type: application/json; charset=UTF-8\r\nx-content-type-options: nosniff\r\ncontent-disposition: attachment; filename=\"f.txt\"\r\ncontent-encoding: br\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nserver: cafe\r\ncontent-length: 8091\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10706,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"63effe5845a79b403381095e82732a2e","sha1":"46711d04d396658dccc8b5c3bc1e9476dbac0008","sha256":"1c5f3ce593e7996c834543981d52236c5076195f204d497d40f213afcf157f38","sha512":"e8fe9f743639c91a21b08b17138ac75620770344eb47bd02ee2f658225ce5c9bab72abcc693ed7a807623319d70a83fa6597d482046f9617115927a70d1af1a5","ssdeep":"192:IsfMWivCdMDpoN/maAlgv6ycXN8MZ95iJZm05sDKWstE8E8F2lliiMqcdTnhweo:Lfp1dqo5AXd8MZeD5YK154AiMqILG","tlshash":"6622bf35ba98dcd872d7b4cdea3b1935db6851b392891907a33e3a54c4c3953a3e4c21","first_seen":"2025-11-28T16:58:45.847628Z","last_seen":"2025-11-28T16:58:45.847628Z","times_seen":1,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":88,"dns":1,"connect":21,"send":0,"wait":40,"receive":1,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=v9vjsp2ijfjl\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bv\u0026adbx=490\u0026adby=986.0499877929688\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=8%7C0%7C261%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:27.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=v9vjsp2ijfjl\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bv\u0026adbx=490\u0026adby=986.0499877929688\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=8%7C0%7C261%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-48W-uMpLih3IyTRX3yeAlg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:27 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.prideflagshop.com/search/tsc.php?ses=ogcCoD4oQ_4OjGBQB82bkKkXE6zjD5oV0u4claVOGidF1jguM1Qh7ulJ__1eaxq67uZx5opr-y91NJYNlvFJ1lXWJNfhkU_EraNfI0Fhan-GAmbXGZSAQ3uk-y1d2_A4dSdja6BKp9xBlz6ZN7mM35wWlWaeJk9bgP81v1sbEJjBknxIkOiplxOKky_2O92sou3Magi_KOyvO53-lZUE25VymdOocci7SFOGDD_c4X8UUffuductgre48pAdAgwFkNOWJTYSCj90LCKVVMn88G8PNgdEpyd9CYzTsqIIqWPfAI4FxjcRTtnYGCTqHiVS8moJkNddl0p4-mBZ1Xs6iGNb6s9gCYJ590kEKgvPc_53I1KBrZW1lb3sJS2Lw\u0026cv=2","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.prideflagshop.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Wed, 14 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5A:38:9C:95:C6:09:EE:1A:BE:C9:66:A7:D1:57:F9:41:A7:B5:A2:C0","sha256":"EA:41:34:C5:F9:01:CE:75:78:C9:62:26:32:86:5B:99:C5:3C:C5:D3:87:79:F2:CA:2F:AF:CF:5A:99:DA:F3:02"}}},"request":{"raw":"GET /search/tsc.php?ses=ogcCoD4oQ_4OjGBQB82bkKkXE6zjD5oV0u4claVOGidF1jguM1Qh7ulJ__1eaxq67uZx5opr-y91NJYNlvFJ1lXWJNfhkU_EraNfI0Fhan-GAmbXGZSAQ3uk-y1d2_A4dSdja6BKp9xBlz6ZN7mM35wWlWaeJk9bgP81v1sbEJjBknxIkOiplxOKky_2O92sou3Magi_KOyvO53-lZUE25VymdOocci7SFOGDD_c4X8UUffuductgre48pAdAgwFkNOWJTYSCj90LCKVVMn88G8PNgdEpyd9CYzTsqIIqWPfAI4FxjcRTtnYGCTqHiVS8moJkNddl0p4-mBZ1Xs6iGNb6s9gCYJ590kEKgvPc_53I1KBrZW1lb3sJS2Lw\u0026cv=2 HTTP/1.1\r\nHost: www.prideflagshop.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/?from=@\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nserver: Parking/1.0\r\nx-cache-miss-from: parking-549498f7b4-cv55m\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40","date":"2025-11-28T16:58:25.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:35:04 GMT","end":"Mon, 19 Jan 2026 08:35:03 GMT"},"fingerprint":{"sha1":"35:B4:84:57:F3:42:53:76:3E:16:A5:12:77:E5:F3:8C:A5:1D:C9:D3","sha256":"46:76:6E:32:DE:D7:3F:32:9C:77:41:C2:26:14:35:DA:10:A4:4A:34:1A:FD:D9:38:93:6C:C1:7F:34:A6:46:5D"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 174\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 28 Nov 2025 06:09:01 GMT\r\nexpires: Sat, 29 Nov 2025 05:09:01 GMT\r\ncache-control: public, max-age=82800\r\nage: 38964\r\nlast-modified: Thu, 02 Nov 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":200,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"11b3089d616633ca6b73b57aa877eeb4","sha1":"07632f63e06b30d9b63c97177d3a8122629bda9b","sha256":"809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1","sha512":"079b0e35b479dfdbe64a987661000f4a034b10688e26f2a5fe6aaa807e81ccc5593d40609b731ab3340e687d83dd08de4b8b1e01cdac9d4523a9f6bb3acfcba0","ssdeep":"","tlshash":"d9d02291c2182d28441e82e0c37c312600fab0a2634c00dcfa80e300b20c9abb861669","first_seen":"2023-04-06T23:53:06Z","last_seen":"2026-04-01T02:57:50.32115Z","times_seen":412182,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":246,"dns":0,"connect":28,"send":0,"wait":40,"receive":1,"ssl":212},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=ietmmkl6lec\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=ri\u0026emsg=sodar_latency\u0026rt=162\u0026ea=9","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=ietmmkl6lec\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=ri\u0026emsg=sodar_latency\u0026rt=162\u0026ea=9 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-R4X7GCnhXrMA-vROs0qfHw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=sx5atosdlark\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bv\u0026adbx=392\u0026adby=413.04998779296875\u0026adbh=544\u0026adbw=496\u0026adbah=171%2C171%2C171\u0026adbn=master-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=24%7C0%7C245%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:27.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=sx5atosdlark\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bv\u0026adbx=392\u0026adby=413.04998779296875\u0026adbh=544\u0026adbw=496\u0026adbah=171%2C171%2C171\u0026adbn=master-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=24%7C0%7C245%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-dctInxhwpIpDxRkw7CIm4g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:27 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/bg/arrows-curved.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:24.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cachefly.net","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Nov 2024 20:01:06 GMT","end":"Sun, 14 Dec 2025 20:01:05 GMT"},"fingerprint":{"sha1":"E3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C","sha256":"0D:FF:60:D6:18:60:C6:38:90:5D:DD:55:2E:87:EE:3A:E5:96:78:0B:5F:68:E8:88:AD:AE:1A:BF:51:59:94:83"}}},"request":{"raw":"GET /templates/bg/arrows-curved.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 16:58:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 13502\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Fri, 05 Dec 2025 16:58:24 GMT\r\nx-cfhash: \"107694ee1e94990d97b7e58651ffd6a0\"\r\nx-cff: B\r\nlast-modified: Tue, 12 Oct 2021 05:19:02 GMT\r\nx-cf3: H\r\ncf4age: 362\r\nx-cf-tsc: 1750436138\r\ncf4ttl: 31535638.000\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: 25e80cc5dbf48bdcc6012aad58eb92b3\r\nx-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":13502,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced","md5":"107694ee1e94990d97b7e58651ffd6a0","sha1":"7dd9ae7badf78be01ea0623df1e90171348716ff","sha256":"7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc","sha512":"5d695545e1516d28ca05933c88aec08ca324a61804bd662102a1eeb7a515ba543343ad24fda53aba329ae803f622664b29d5a3461bccbd264ec8950e8ca51002","ssdeep":"384:/mKXXNN5Jr7k18sA6pXsox1amFbraxPpkJ:euNN3r7SJZRGmgxPC","tlshash":"2c52c04825b019dc9f2252a9c51ea74c4ff6f5dc970960a83b1ab11cd375b7fca3822e","first_seen":"2023-05-01T18:29:40Z","last_seen":"2026-03-05T01:28:01.727223Z","times_seen":76686,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":44,"dns":0,"connect":22,"send":0,"wait":8,"receive":1,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://syndicatedsearch.goog/afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40","date":"2025-11-28T16:58:25.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /adsense/domains/caf.js HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:25 GMT\r\nexpires: Fri, 28 Nov 2025 16:58:25 GMT\r\ncache-control: private, max-age=3600\r\netag: \"12783642000341610455\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":134752,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2840)","md5":"8259fea9ceb1549df2874e12c5d08afb","sha1":"3781c9a4b44dc83f23ac523736be3ea60183e684","sha256":"e796d4cb0061c925debb73db478ddd2a2b43c25705612c1af9fcaac65ff5e10e","sha512":"79b2031ee4f9291dfbf39eafba86056e41412561444ca16f849b56e6622eb18897028b0633c4c623b58f16048350fad5dc8dc50b04d0d6da024e615f42826a7a","ssdeep":"1536:kFEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:2uydkEiR5IW8YlmDD7MJ/2f","tlshash":"1ad34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","first_seen":"2025-11-14T14:34:56.700369Z","last_seen":"2025-12-02T20:42:10.079238Z","times_seen":3032,"resource_available":true,"data":null}},"time_used":50,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?sjk=kiBS28OaS92TcZHRIMLq8Q%3D%3D\u0026adsafe=low\u0026adtest=off\u0026psid=3259787283\u0026channel=exp-0051%2Cauxa-control-1%2C44786252\u0026client=dp-sedo85_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=https%3A%2F%2Fwww.prideflagshop.com%2Fcaf%2F%3Fses%3DY3JlPTE3NjQzNDkxMDQmdGNpZD13d3cucHJpZGVmbGFnc2hvcC5jb202OTI5ZDRiMGE2YTczNS4wMTQxMDY4OCZ0YXNrPXNlYXJjaCZkb21haW49cHJpZGVmbGFnc2hvcC5jb20mYV9pZD0zJnNlc3Npb249QmtwUXpXUzZESjFaUzFNeTlleUo%3D\u0026type=3\u0026swp=as-drid-2280784292183247\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301548%2C17301266%2C72717108%2C73110182%2C17301559\u0026format=r3%7Cs\u0026nocache=6441764349105187\u0026num=0\u0026output=afd_ads\u0026domain_name=www.prideflagshop.com\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1764349105200\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1146\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=830884147\u0026rurl=https%3A%2F%2Fwww.prideflagshop.com%2F%3Ffrom%3D%40","date":"2025-11-28T16:58:25.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:35:04 GMT","end":"Mon, 19 Jan 2026 08:35:03 GMT"},"fingerprint":{"sha1":"35:B4:84:57:F3:42:53:76:3E:16:A5:12:77:E5:F3:8C:A5:1D:C9:D3","sha256":"46:76:6E:32:DE:D7:3F:32:9C:77:41:C2:26:14:35:DA:10:A4:4A:34:1A:FD:D9:38:93:6C:C1:7F:34:A6:46:5D"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 272\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 28 Nov 2025 16:50:08 GMT\r\nexpires: Sat, 29 Nov 2025 15:50:08 GMT\r\ncache-control: public, max-age=82800\r\nage: 497\r\nlast-modified: Thu, 20 Jul 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":391,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a6ad6e65373db8c1b1f154c4c83f8ce5","sha1":"84cc007d6d682c589e1e1f87482a5278830f3000","sha256":"920a378947204498c122722933b3a4b67788a2b6fade8bd0d47cf830eeee0563","sha512":"09b6d4711c284b1a04c9c4d874f3d1ddfc876c1491fb2aa283a13505bcdbfe90b02731d0b7ad5f492b1dda2161a4afe20040801ea634d2727cde84319adfb1d2","ssdeep":"","tlshash":"e7e0f1fa81842c004a4543b0ed0867a002eff076530c80b7c1e0e6fcb0048da6cc2744","first_seen":"2023-04-11T10:59:33Z","last_seen":"2026-02-24T17:29:47.593465Z","times_seen":82937,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":103,"dns":1,"connect":27,"send":0,"wait":27,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2/237/runner.html","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:25.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:56 GMT","end":"Mon, 19 Jan 2026 08:36:55 GMT"},"fingerprint":{"sha1":"9A:0A:53:7B:B4:C0:0A:9F:26:A7:9E:31:1B:C0:4D:3B:33:4B:23:27","sha256":"A5:65:20:57:2E:8A:60:B7:56:8C:E9:E0:ED:44:1D:3F:61:C1:AC:62:D6:82:21:9B:16:7A:06:84:4D:AF:F4:E1"}}},"request":{"raw":"GET /sodar/sodar2/237/runner.html HTTP/1.1\r\nHost: ep2.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"adspam-signals-scs\"\r\nreport-to: {\"group\":\"adspam-signals-scs\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs\"}]}\r\ncontent-length: 5044\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 28 Nov 2025 16:40:02 GMT\r\nexpires: Fri, 28 Nov 2025 17:30:02 GMT\r\ncache-control: public, max-age=3000\r\nage: 1103\r\nlast-modified: Tue, 13 May 2025 23:17:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13159,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (2024)","md5":"0120a1d624ff8fc3ec792d93a7133947","sha1":"1e3bd23df78ff2c60b187b40a0c6505be9ab889f","sha256":"14b660a511e14a9a481c6fe43c576f36c61b656cfd379728c54f1128e1855966","sha512":"84286e299ebc6690ee904b5581cd6aaf6b59d06200b61156923301484d1b75fa517894167c4f4777553ba09c840a2d74a723e3ff112448f00514d910dfd172c5","ssdeep":"192:pl/6xS2OASROqI3wgh5MXDc9EAOaK3qzfaGDCiMgIcTa1mx:rz2NQJIVsTiMH3qzfcOIr1mx","tlshash":"4842a7ccbad2b0210353b4f1a13f400ff13ea8aae44c9954b181e8e17cb56a94667f7d","first_seen":"2025-05-19T23:59:48.478548Z","last_seen":"2026-02-26T18:27:55.136579Z","times_seen":169945,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=5fjlzk7ro5nu\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bs\u0026adbx=392\u0026adby=413.04998779296875\u0026adbh=544\u0026adbw=496\u0026adbah=171%2C171%2C171\u0026adbn=master-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=24%7C0%7C245%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:27.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=5fjlzk7ro5nu\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bs\u0026adbx=392\u0026adby=413.04998779296875\u0026adbh=544\u0026adbw=496\u0026adbah=171%2C171%2C171\u0026adbn=master-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=24%7C0%7C245%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-7BzZ1O8UfHtUkD6g_mjXQA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:27 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=5hss5zrpe8tc\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bs\u0026adbx=490\u0026adby=986.0499877929688\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=8%7C0%7C261%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:27.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo85_3ph\u0026output=uds_ads_only\u0026zx=5hss5zrpe8tc\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026aqid=sdQpabrhFK-6juwP0ZfXwA4\u0026psid=3259787283\u0026pbt=bs\u0026adbx=490\u0026adby=986.0499877929688\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo85_3ph\u0026errv=830884147\u0026csala=8%7C0%7C261%7C77%7C42\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-010UiGHApaxrn353xzzo2g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Fri, 28 Nov 2025 16:58:27 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"prideflagshop.com/","fqdn":"prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-28T16:58:24.042Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: prideflagshop.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Fri, 28 Nov 2025 16:58:24 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 59\r\nConnection: keep-alive\r\nLocation: http://www.prideflagshop.com/?from=@\r\nX-Served-By: Namecheap URL Forward\r\nServer: namecheap-nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24911,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":468,"timings":{"blocked":153,"dns":1,"connect":157,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:33Z","timestamp":1764349113,"ip_dst":{"addr":"172.18.0.34","port":53648,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:33.922000+0000\",\"flow_id\":506186938937632,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53648,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":572,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:23.422176+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-11-28T16:58:34Z","timestamp":1764349114,"ip_dst":{"addr":"172.18.0.34","port":53654,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.64.119.180","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"severity":"low","alert":"ET INFO Namecheap URL Forward","source":"{\"timestamp\":\"2025-11-28T16:58:34.512188+0000\",\"flow_id\":222220881269885,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"192.64.119.180\",\"src_port\":80,\"dest_ip\":\"172.18.0.34\",\"dest_port\":53654,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2035208,\"rev\":2,\"signature\":\"ET INFO Namecheap URL Forward\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2022_02_16\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_16\"]}},\"http\":{\"hostname\":\"prideflagshop.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"http://www.prideflagshop.com/?from=@\",\"length\":59},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":59,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":692,\"bytes_toclient\":539,\"start\":\"2025-11-28T16:58:24.038013+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.prideflagshop.com/?from=@","fqdn":"www.prideflagshop.com","domain":"prideflagshop.com","tld":"com"},"ip":{"addr":"91.195.240.19","port":443,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-28T16:58:24.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.prideflagshop.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 17 Oct 2025 00:00:00 GMT","end":"Wed, 14 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5A:38:9C:95:C6:09:EE:1A:BE:C9:66:A7:D1:57:F9:41:A7:B5:A2:C0","sha256":"EA:41:34:C5:F9:01:CE:75:78:C9:62:26:32:86:5B:99:C5:3C:C5:D3:87:79:F2:CA:2F:AF:CF:5A:99:DA:F3:02"}}},"request":{"raw":"GET /?from=@ HTTP/1.1\r\nHost: www.prideflagshop.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Fri, 28 Nov 2025 16:58:24 GMT\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\nlast-modified: Fri, 28 Nov 2025 16:58:24 GMT\r\npragma: no-cache\r\nserver: Parking/1.0\r\nvary: Accept-Encoding\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_XjfvaS9oFMhIcex5enNKe3DiHY0PpAqjdiSLUHNBwDd/gCF+CLiIn5wCR/Fz5kwitfmT5v3nV5xxJBlE+6am3Q==\r\nx-cache-miss-from: parking-549498f7b4-j98hz\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24911,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10836)","md5":"1df35c0a3ffb61816cab84138faa7b32","sha1":"fd8857b92aa8dd1bbb8b8f0bec6d2659a568224c","sha256":"b5ae486b612ea2fab20210d7b1b1bdb1f55fe59b2a53c47ce31bb9cf564c752f","sha512":"293a18e8d5116daa522d697fa538dcfe2f9638fa98ad9f6dcea881ba79450bc9ba32373cee26574d2d17ad11ea71e3f638518291f33f1d176987696a696d0b46","ssdeep":"768:5iwvTN1L6CjuuOiRyhTbuljBXYKGBTuIOESPO:5PgVhTbulloKGluBESPO","tlshash":"fab2e8312a452435b1b7866db1d1bb14b734c813d90269a9f06cf3b8cfcad9716e2f46","first_seen":"2025-11-28T16:58:45.851666Z","last_seen":"2025-11-28T16:58:45.851666Z","times_seen":1,"resource_available":false,"data":null}},"time_used":628,"timings":{"blocked":276,"dns":0,"connect":36,"send":0,"wait":76,"receive":0,"ssl":237},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.prideflagshop.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.sedoparking.com/templates/images/hero_nc.svg","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":443,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.prideflagshop.com/?from=@","date":"2025-11-28T16:58:24.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cachefly.net","organization":"Cachenetworks, LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Nov 2024 20:01:06 GMT","end":"Sun, 14 Dec 2025 20:01:05 GMT"},"fingerprint":{"sha1":"E3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C","sha256":"0D:FF:60:D6:18:60:C6:38:90:5D:DD:55:2E:87:EE:3A:E5:96:78:0B:5F:68:E8:88:AD:AE:1A:BF:51:59:94:83"}}},"request":{"raw":"GET /templates/images/hero_nc.svg HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.prideflagshop.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 16:58:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 20346\r\naccess-control-allow-origin: *\r\ncache-control: max-age=604800\r\nexpires: Fri, 05 Dec 2025 16:58:24 GMT\r\nx-cfhash: \"5a2c392e7acdf6e9de6e00129500503c\"\r\nx-cff: B\r\nlast-modified: Thu, 05 Oct 2023 09:16:15 GMT\r\nvary: Accept-Encoding\r\nx-cf3: H\r\ncf4age: 0\r\nx-cf-tsc: 1742134150\r\ncf4ttl: 31536000.000\r\ncontent-encoding: gzip\r\nx-cf2: H\r\nserver: CFS 1124\r\nx-cf-reqid: 486c2ba4803b9f38580e0a04711d3dbf\r\nx-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CacheFly","description":"CacheFly is a content delivery network (CDN) which offers CDN service that relies solely on IP anycast for routing, rather than DNS based global load balancing.","website":"https://www.cachefly.com","common_platform_enumeration":"","icon":"CacheFly.svg","categories":["CDN"]}],"data":{"size":48097,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5a2c392e7acdf6e9de6e00129500503c","sha1":"c8d0f80381e4ce180b5eb3c4c98539907292a7bb","sha256":"878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b","sha512":"52223b04eb9121f05442dbc48519a95fdabb81c414772ee43dc837b58f797b97314796ef6d77ea6b7a1f3fee5937ec039e617fcdf8b146822792accd2534e141","ssdeep":"768:cfppX5/9YbZIqEGYbGqnq77SdMOsZff7pUbGA+dHeSZKFwj:CKYw3A9+","tlshash":"4123d7e8c3e802f4b6d90ba8deb4294c3a7564fa76106cc8c35dbc58dcb6f553109ad9","first_seen":"2023-05-10T12:50:45Z","last_seen":"2026-04-04T07:46:16.556017Z","times_seen":100018,"resource_available":false,"data":null}},"time_used":94,"timings":{"blocked":41,"dns":1,"connect":7,"send":0,"wait":8,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"img.sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}