{"report_id":"cf4467e2-524b-4ea2-a50b-96428f20eece","version":6,"status":"done","tags":[],"date":"2023-12-06T15:29:19Z","url":{"schema":"http","addr":"s.id/1XCEs","fqdn":"s.id","domain":"s.id","tld":"id"},"ip":{"addr":"193.84.85.178","port":0,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"robiox.com.cm/users/9018750160/profile","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"title":"Axo blazing - Roblox"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T08:50:51Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"robiox.com.cm","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2022-12-30","domain_rank":0,"first_seen":"2022-12-29 08:05:17","last_seen":"2023-11-26 15:45:51","alert_count":6,"request_count":6,"received_data":329932,"sent_data":3348,"comment":"","tags":null,"fingerprints":null},{"fqdn":"static.rbxcdn.com","ip":{"addr":"88.221.27.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"domain_registered":"2013-07-17","domain_rank":13217,"first_seen":"2017-01-30 11:03:41","last_seen":"2023-12-03 15:26:49","alert_count":0,"request_count":2,"received_data":33144,"sent_data":1003,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.22.20.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":422202,"first_seen":"2018-07-09 07:46:13","last_seen":"2023-12-05 07:34:27","alert_count":0,"request_count":2,"received_data":364509,"sent_data":815,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tr.rbxcdn.com","ip":{"addr":"23.36.76.186","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2013-07-17","domain_rank":7535,"first_seen":"2019-05-23 14:45:13","last_seen":"2023-12-03 05:35:12","alert_count":0,"request_count":3,"received_data":117757,"sent_data":1493,"comment":"","tags":null,"fingerprints":null},{"fqdn":"images.rbxcdn.com","ip":{"addr":"88.221.27.80","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"domain_registered":"2013-07-17","domain_rank":15653,"first_seen":"2013-08-19 13:03:07","last_seen":"2023-12-05 17:53:12","alert_count":0,"request_count":1,"received_data":4883,"sent_data":455,"comment":"","tags":null,"fingerprints":null},{"fqdn":"asnxweb.shop","ip":{"addr":"172.67.141.72","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2023-01-03","domain_rank":0,"first_seen":"2023-01-03 20:00:16","last_seen":"2023-11-19 19:42:51","alert_count":0,"request_count":1,"received_data":28204,"sent_data":479,"comment":"","tags":null,"fingerprints":null},{"fqdn":"s.id","ip":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"domain_registered":"2013-08-14","domain_rank":134714,"first_seen":"2014-12-04 01:12:34","last_seen":"2023-12-02 05:28:29","alert_count":0,"request_count":3,"received_data":812,"sent_data":1090,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2015-04-17 22:46:33","last_seen":"2023-12-06 06:59:18","alert_count":0,"request_count":1,"received_data":16541,"sent_data":460,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":634,"first_seen":"2012-05-21 19:28:02","last_seen":"2023-12-06 06:43:40","alert_count":0,"request_count":1,"received_data":30893,"sent_data":447,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:07Z","timestamp":1701876547,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44551,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:07.664300+0000\",\"flow_id\":1959821817619180,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":44551,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":2535,\"rrname\":\"s.id\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:07.664300+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:07Z","timestamp":1701876547,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":50660,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:07.664638+0000\",\"flow_id\":724095302050878,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":50660,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":42811,\"rrname\":\"s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:07.664638+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:07Z","timestamp":1701876547,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55892,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:07.732393+0000\",\"flow_id\":1876533811817705,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":55892,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":34180,\"rrname\":\"s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:07.732393+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:09Z","timestamp":1701876549,"ip_dst":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"ip_src":{"addr":"Client IP","port":49560,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)","source":"{\"timestamp\":\"2023-12-06T15:29:09.124833+0000\",\"flow_id\":451493727765256,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":49560,\"dest_ip\":\"193.84.85.178\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034858,\"rev\":2,\"signature\":\"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_01_05\"]}},\"tls\":{\"sni\":\"s.id\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":4432,\"start\":\"2023-12-06T15:29:07.983816+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:09Z","timestamp":1701876549,"ip_dst":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"ip_src":{"addr":"Client IP","port":49558,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)","source":"{\"timestamp\":\"2023-12-06T15:29:09.158170+0000\",\"flow_id\":1268164579241760,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":49558,\"dest_ip\":\"193.84.85.178\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034858,\"rev\":2,\"signature\":\"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_01_05\"]}},\"tls\":{\"sni\":\"s.id\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":4432,\"start\":\"2023-12-06T15:29:07.732960+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:10Z","timestamp":1701876550,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":38555,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:10.665880+0000\",\"flow_id\":672160557705496,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":38555,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":48502,\"rrname\":\"s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:10.665880+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:11Z","timestamp":1701876551,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":48952,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:11.293981+0000\",\"flow_id\":1088961364065373,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":48952,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":6628,\"rrname\":\"s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:11.293981+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:11Z","timestamp":1701876551,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":43655,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:11.294785+0000\",\"flow_id\":1102000884776833,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":43655,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":26889,\"rrname\":\"s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":75,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:11.294785+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:11Z","timestamp":1701876551,"ip_dst":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"ip_src":{"addr":"Client IP","port":49576,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)","source":"{\"timestamp\":\"2023-12-06T15:29:11.857688+0000\",\"flow_id\":1769786694926683,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":49576,\"dest_ip\":\"193.84.85.178\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034858,\"rev\":2,\"signature\":\"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_01_05\"]}},\"tls\":{\"sni\":\"s.id\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":4432,\"start\":\"2023-12-06T15:29:11.295259+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:12Z","timestamp":1701876552,"ip_dst":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"ip_src":{"addr":"Client IP","port":49586,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)","source":"{\"timestamp\":\"2023-12-06T15:29:12.129560+0000\",\"flow_id\":1355330940785757,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":49586,\"dest_ip\":\"193.84.85.178\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034858,\"rev\":2,\"signature\":\"ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_01_05\"]}},\"tls\":{\"sni\":\"s.id\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":870,\"bytes_toclient\":4432,\"start\":\"2023-12-06T15:29:11.545885+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:12Z","timestamp":1701876552,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44753,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:12.298493+0000\",\"flow_id\":364529230319101,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":44753,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":44349,\"rrname\":\"home.s.id\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":80,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:12.298493+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-06T15:29:12Z","timestamp":1701876552,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":36096,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)","source":"{\"timestamp\":\"2023-12-06T15:29:12.298649+0000\",\"flow_id\":234365951446681,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.67\",\"src_port\":36096,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2034852,\"rev\":3,\"signature\":\"ET INFO URL Shortener Service Domain in DNS Lookup (s .id)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_12_31\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_12_31\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":6933,\"rrname\":\"home.s.id\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":80,\"bytes_toclient\":0,\"start\":\"2023-12-06T15:29:12.298649+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e6c2415c0ace414e5153670314ce99a9","sha1":"5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6","sha256":"d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8","sha512":"de027062931edd07b01842eff24fc15fdbdcaa1af245dcd133155faba9e0c965f0a34dc6144ce3b149bc43b4597073c792cb6dabbfc6168c63095523923bcf77","ssdeep":"1536:/KRUXRa8Dgwxcy2jpBNwch96SLk8Ek2BSrBGS1ia/eEk4aV2EXi8SMpQ47GKV:/u1zNwcv9qBy1HOg8SMpQ47GKV","tlshash":"9f83f8df77ca702247ab30b9006f550bf276199d684d4400f259d8e9bc78a4a823bf7e","size":87462,"data":"","first_seen":"2023-05-12T23:07:48Z","last_seen":"2026-04-09T14:10:45.34255Z","times_seen":24051,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.20.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c193259f53fb33856681902d899d0b04","sha1":"539d13d4016170493357b58e7efe676b700d31ba","sha256":"78f70dbdf61859c3a382c96c27880fa5737216af6d491fedf73a3356ccab05bc","sha512":"69ab3a80f97b0965712cec07246ccd9542ff3c6f8d1152047494395240ac99170748e90979ccecb8c90f3ab801cfffdfae075f42a987b457535b14f5d03d2cae","ssdeep":"6144:mr00+lSrr7p2CDj4cUlFLa6kLwSKJXimTqAcUm:08kfelFLa6kLwSKdW1f","tlshash":"00743baa7396753243eb91e950ae1142f37d5a38500c44acf79cd8da3da4e4850fbf3a","size":363693,"data":"","first_seen":"2023-10-25T18:01:37Z","last_seen":"2025-11-30T10:40:32.439329Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/users/9018750160/profile","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"introduction_type":"scriptElement","is_inline":true,"md5":"e1c06d85ae7b8b032bef47e42e4c08f9","sha1":"71853c6197a6a7f222db0f1978c7cb232b87c5ee","sha256":"75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070","sha512":"016ba8c4cfde65af99cb5fa8b8a37e2eb73f481b3ae34991666df2e04feb6c038666ebd1ec2b6f623967756033c702dde5f423f7d47ab6ed1827ff53783731f7","ssdeep":"","tlshash":"c710000000000000000000000000000000300000000000000000003000000000000000","size":2,"data":"","first_seen":"2023-03-07T01:03:30Z","last_seen":"2026-04-09T13:50:16.067515Z","times_seen":39736,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"s.id/1XCEs","fqdn":"s.id","domain":"s.id","tld":"id"},"ip":{"addr":"193.84.85.178","port":443,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-06T15:29:07.771Z","timestamp":1701876547771,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.id","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Sep 2023 12:47:07 GMT","end":"Sun, 24 Dec 2023 12:47:06 GMT"},"fingerprint":{"sha1":"A8:44:D8:10:23:34:06:9B:DB:77:26:E2:38:30:26:D3:2B:B0:40:30","sha256":"F1:F8:D3:BB:1B:ED:E1:34:C9:03:9D:3D:CA:96:F5:EA:0D:0F:4F:33:16:23:68:43:05:33:6A:C6:BA:89:53:2C"}}},"request":{"raw":"GET /1XCEs HTTP/1.1\r\nHost: s.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Wed, 06 Dec 2023 15:29:03 GMT\r\ncontent-length: 0\r\nlocation: https://robiox.com.cm/users/9018750160/profile\r\ncache-control: private, max-age=15\r\nstrict-transport-security: max-age=15724800; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T14:28:37.844917Z","times_seen":13542679,"resource_available":true,"data":null}},"time_used":3538,"timings":{"blocked":1502,"dns":1,"connect":315,"send":0,"wait":495,"receive":0,"ssl":1216},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.id/","fqdn":"s.id","domain":"s.id","tld":"id"},"ip":{"addr":"193.84.85.178","port":0,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-06T15:29:11.290300984Z","timestamp":1701876551290,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.id","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Sep 2023 12:47:07 GMT","end":"Sun, 24 Dec 2023 12:47:06 GMT"},"fingerprint":{"sha1":"A8:44:D8:10:23:34:06:9B:DB:77:26:E2:38:30:26:D3:2B:B0:40:30","sha256":"F1:F8:D3:BB:1B:ED:E1:34:C9:03:9D:3D:CA:96:F5:EA:0D:0F:4F:33:16:23:68:43:05:33:6A:C6:BA:89:53:2C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: s.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 308 Permanent Redirect\r\nServer: nginx\r\nDate: Wed, 06 Dec 2023 15:29:04 GMT\r\nContent-Type: text/html\r\nContent-Length: 164\r\nConnection: keep-alive\r\nLocation: https://s.id\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":164,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"f23c4815ecaef1588f16ac735c0e15d6","sha1":"026bf8cdd5076014b6fc822878e0086eb44da556","sha256":"43a81fb3d47b34e7d42d6b8444f592ed9251b8e57db8f67d32419aa40b1480d0","sha512":"bdd9d53dae95a0927d1a6658e730addc9c65895eb8eae73d5261bb0a3a5ea9835c973eabfb2b9bac2b4ff068ac98e039e1771ec6c6d890cd995a64a6e667a665","ssdeep":"","tlshash":"e7c08c29fa822cc88ce7333e20c3a184f0f8a024955c711121a04293b1c31838ec23d7","first_seen":"2023-04-05T09:57:47Z","last_seen":"2025-03-01T04:05:25.152529Z","times_seen":2246,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.id/","fqdn":"s.id","domain":"s.id","tld":"id"},"ip":{"addr":"193.84.85.178","port":0,"asn":59796,"as":"StormWall s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-06T15:29:12.291413726Z","timestamp":1701876552291,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.id","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Sep 2023 12:47:07 GMT","end":"Sun, 24 Dec 2023 12:47:06 GMT"},"fingerprint":{"sha1":"A8:44:D8:10:23:34:06:9B:DB:77:26:E2:38:30:26:D3:2B:B0:40:30","sha256":"F1:F8:D3:BB:1B:ED:E1:34:C9:03:9D:3D:CA:96:F5:EA:0D:0F:4F:33:16:23:68:43:05:33:6A:C6:BA:89:53:2C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: s.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Wed, 06 Dec 2023 15:29:05 GMT\r\ncontent-length: 0\r\nlocation: https://home.s.id\r\nstrict-transport-security: max-age=15724800; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T14:28:37.844917Z","times_seen":13542679,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/flowbite/1.8.0/flowbite.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.739Z","timestamp":1701876552739,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/flowbite/1.8.0/flowbite.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:06 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 15539\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"64c5014c-3cb3\"\r\nlast-modified: Sat, 29 Jul 2023 12:08:44 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1047555\r\nexpires: Mon, 25 Nov 2024 15:29:06 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=qrxkny8tppGVzujp0ifPF%2BEipv2O2vvaT66HYWf4SFb%2BeSkbOGkC3vVKEe6w0bXN3zNp8HRcs9zE41a5PPZ0ZAblJHpjjkrnpIMVMkCI2oz6kErsnTbNJCPX%2FOsmtvj5xuwF4VsO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 831590002861712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15539,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"197527209dccde9b2a754c8993501793","sha1":"ceb53238a3cbbc084f84275929d6d8278adcd58d","sha256":"3160d1aead8785eabca7e23e810460543c7c94b2659d518f7f04c1b3d066a7d3","sha512":"9b4d8079f0d46bf5e706c9799ebccebef73e9952d96d0fdae452d0542f64e499d755399612d78b9e74c3ebd03d4e8f011953292724cf1746abac1eca65c84507","ssdeep":"3072:wcQSBbOjFhgxhIDZm5kInp4Dua1IbvtNMlo7T7L:wcQibOjFhgxhIDZm5kInp4Dua8T7L","tlshash":"a9d3312ca691103b7c2395f9e198fd6d942ab1c8ee3a27f7ac4232009be67f74d43554","first_seen":"2023-08-12T19:24:21Z","last_seen":"2026-04-06T03:16:02.653723Z","times_seen":52,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":15,"dns":1,"connect":1,"send":0,"wait":9,"receive":1,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.735Z","timestamp":1701876552735,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-3.7.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://robiox.com.cm\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-155a6\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Wed, 06 Dec 2023 15:29:06 GMT\r\nage: 7074346\r\nx-served-by: cache-lga13623-LGA, cache-bma1637-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 73, 2183\r\nx-timer: S1701876547.586576,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30308\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30308,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65447)","md5":"e6c2415c0ace414e5153670314ce99a9","sha1":"5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6","sha256":"d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8","sha512":"de027062931edd07b01842eff24fc15fdbdcaa1af245dcd133155faba9e0c965f0a34dc6144ce3b149bc43b4597073c792cb6dabbfc6168c63095523923bcf77","ssdeep":"1536:/KRUXRa8Dgwxcy2jpBNwch96SLk8Ek2BSrBGS1ia/eEk4aV2EXi8SMpQ47GKV:/u1zNwcv9qBy1HOg8SMpQ47GKV","tlshash":"9f83f8df77ca702247ab30b9006f550bf276199d684d4400f259d8e9bc78a4a823bf7e","first_seen":"2023-05-12T23:07:48Z","last_seen":"2026-04-09T14:10:45.34255Z","times_seen":24051,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":21,"dns":1,"connect":11,"send":0,"wait":9,"receive":11,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.20.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.737Z","timestamp":1701876552737,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Tue, 07 Nov 2023 00:00:00 GMT","end":"Tue, 05 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:87:FB:92:D4:93:DA:09:E3:5B:EF:92:CE:2F:47:18:3A:8A:C7:49","sha256":"6E:D3:D8:2E:77:82:FE:DF:98:2C:87:9A:E2:81:82:4B:78:44:21:0A:70:53:31:24:58:9B:98:02:B3:84:D5:41"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 06 Dec 2023 15:29:06 GMT\r\ncontent-length: 0\r\ncache-control: max-age=14400\r\nlocation: /3.3.5\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::iad1::bg74r-1701875888398-fc8ac009b234\r\ncf-cache-status: HIT\r\nage: 615\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 831590008a05712e-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T14:28:37.844917Z","times_seen":13542679,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":80,"dns":31,"connect":4,"send":0,"wait":11,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tr.rbxcdn.com/30DAY-Avatar-1EBB795F544BB7C36305ACFBA1A9B982-Png/352/352/Avatar/Png/noFilter","fqdn":"tr.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"23.36.76.186","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:13.863Z","timestamp":1701876553863,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /30DAY-Avatar-1EBB795F544BB7C36305ACFBA1A9B982-Png/352/352/Avatar/Png/noFilter HTTP/1.1\r\nHost: tr.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://robiox.com.cm/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 51069\r\ncontent-type: image/Png\r\nserver: Kestrel\r\nstrict-transport-security: max-age=3600\r\nx-frame-options: SAMEORIGIN\r\nroblox-machine-id: ea2eeec63bb6\r\nx-roblox-region: us-central\r\nx-roblox-edge: atl1\r\nreport-to: {\"group\":\"network-errors\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://ncs.roblox.com/upload\"}]}\r\nnel: {\"report_to\":\"network-errors\",\"max_age\":604800,\"success_fraction\":0.001,\"failure_fraction\":1}\r\ncache-control: max-age=31536000\r\nexpires: Thu, 05 Dec 2024 15:29:07 GMT\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":51069,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 352 x 352, 8-bit/color RGBA, non-interlaced\\012- data","md5":"eb5ce0ace7a31f5b3f66e52b04463258","sha1":"fffed7fd2382b5d0bf00763da4fcf14c3c34b4eb","sha256":"9bbd209a72653e480aa98978c17bfe2d3032bc7b6c162b6cf3a09ddacaa61d7f","sha512":"3dbe369fd826bc6e29d395cd7d9b05835aa1f540255ad2fc32dff1cc56d3b26d16cc68e6f99cadc92f92b55582f242fab5dc63952f88da3685da515377ec4bbd","ssdeep":"","tlshash":"","first_seen":"2023-12-06T16:29:22Z","last_seen":"2023-12-06T16:29:22Z","times_seen":1,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":167,"dns":126,"connect":1,"send":0,"wait":14,"receive":9,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tr.rbxcdn.com/30DAY-AvatarHeadshot-1EBB795F544BB7C36305ACFBA1A9B982-Png/180/180/AvatarHeadshot/Png/noFilter","fqdn":"tr.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"23.36.76.186","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:14.106Z","timestamp":1701876554106,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /30DAY-AvatarHeadshot-1EBB795F544BB7C36305ACFBA1A9B982-Png/180/180/AvatarHeadshot/Png/noFilter HTTP/1.1\r\nHost: tr.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://robiox.com.cm/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 27506\r\ncontent-type: image/Png\r\nserver: Kestrel\r\nstrict-transport-security: max-age=3600\r\nx-frame-options: SAMEORIGIN\r\nroblox-machine-id: b2afa34d28b2\r\nx-roblox-region: us-central\r\nx-roblox-edge: mia4\r\nreport-to: {\"group\":\"network-errors\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://ncs.roblox.com/upload\"}]}\r\nnel: {\"report_to\":\"network-errors\",\"max_age\":604800,\"success_fraction\":0.001,\"failure_fraction\":1}\r\ncache-control: max-age=31536000\r\nexpires: Thu, 05 Dec 2024 15:29:07 GMT\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27506,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\\012- data","md5":"caceef5007929c184ef77987a0918ef7","sha1":"a260172ce1a505dbd2864f2985e7e1bace8702ce","sha256":"2b13782ce2af97f78c74fa234bb500ba46883992cb8b5acf071810ce57df2803","sha512":"caa4f907f2e354600c352d05998d5a7fe4e696341189fd279ade2ff737e46e8769d83340cc4bde222de380b002c3fa79d27cc3d200b57264edfe18ca6fc85291","ssdeep":"","tlshash":"","first_seen":"2023-12-06T16:29:22Z","last_seen":"2023-12-06T16:29:22Z","times_seen":1,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.rbxcdn.com/7bba321f4d8328683d6e59487ce514eb","fqdn":"images.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"88.221.27.80","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:14.171Z","timestamp":1701876554171,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /7bba321f4d8328683d6e59487ce514eb HTTP/1.1\r\nHost: images.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: GzCCAywjceEIiQRIQqEGEbyp30IKA5lwG7ObJLAYM8K+btiDkDUlIi6zbSLRck05jEi5HDzjsZE=\r\nx-amz-request-id: 6NFDHHY2VX8SKYM9\r\nlast-modified: Tue, 06 Sep 2022 22:21:51 GMT\r\netag: \"7bba321f4d8328683d6e59487ce514eb\"\r\nx-amz-version-id: aPgoUuQuV6R.ptR45HukIEFVMsyAdOSo\r\naccept-ranges: bytes\r\ncontent-type: image/x-icon\r\nserver: AmazonS3\r\ncontent-length: 4414\r\ncache-control: public, max-age=27159418\r\ndate: Wed, 06 Dec 2023 15:29:08 GMT\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4414,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\\012- data","md5":"7bba321f4d8328683d6e59487ce514eb","sha1":"ae0edd3d76e39c564740b30e4fe605b4cd50ad48","sha256":"68984ffee2a03c1cdb6296fd383d64cc2c75e13471221a4bcb4d93fcfa8dab54","sha512":"ed6a932f8818d5340e2e2c09dcc61693e9f9032c7201e05a0ce21c6c521b4ac7dd9204affbbfffd3bcebbebe88337fbd32091eaa1e35469b861834f2523c800d","ssdeep":"48:uvYwzMVD2oXQcEcoZA/yH77VxwkHp5sslkixLq7WquWGt+Y9xpYo/Uyh:uvYwzM92QbBoA/O9Bnlki4tub+Wxh","tlshash":"ac917481f748a866dc34933499af36ef30726f76a1b5cbaf209478304fb32852a1704d","first_seen":"2023-04-05T14:26:56Z","last_seen":"2026-04-07T07:32:55.352258Z","times_seen":3800,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":1,"dns":130,"connect":7,"send":0,"wait":9,"receive":3,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/Gotham-Font/GothamMedium.ttf","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:13.853Z","timestamp":1701876553853,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /Gotham-Font/GothamMedium.ttf HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/users/9018750160/profile\r\nCookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\ncontent-type: font/ttf\r\nlast-modified: Wed, 09 Aug 2023 08:17:28 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=dkmqBaYIJbndxi3E7LAWqHCrb5%2BU32NJvBa6aLbDoOidS3REWRGp0qQmt7zG3YJNMbBHrucf%2FvKzRHcmTnfhWvAabHujZpk13CMBX2NpRc5vPC4GRlTlvBRYsq0DPY1z\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 83159006fa3e0b02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":64898,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 16 tables, 1st \"OS/2\", 14 names, Macintosh, HTF Gotham\\252 Copr. 2000 The Hoefler Type Foundry, Inc. Info: www.typography.comGothamMediumTra\\012- data","md5":"77171d8f5b5283f9d47a3434704bf944","sha1":"74c87f67010f63777e33c5114c76b1fc67e4ae5b","sha256":"b5b3eb8e443fe9e3976dedaa2650d68d37d992c4e4e2e7676674a1f3027e2a41","sha512":"ebd772c548bd863dd9f9c112acdc5b4ca4aa645866ec2ccf96bd0ec7e77fe165c393bafc18aeb143b14b4bf945c2586656b53b36bf79184381109655bb2bdeca","ssdeep":"1536:8dff4+NKCvJfrhCo+yvTwUnlPx5428MWyH40oM/:8dfQr0frhCQx5t8g4tO","tlshash":"f143e992ceff6d17f78945f88de142b61a71b4029bb83a191c01d4f1caef2511947fa8","first_seen":"2023-05-09T04:14:29Z","last_seen":"2026-04-09T09:50:31.555382Z","times_seen":112,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":145,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/sponsorship.php?id=1","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:13.803Z","timestamp":1701876553803,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /sponsorship.php?id=1 HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/users/9018750160/profile\r\nCookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:09 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=bcoXICYcDXoK9vKjVNHFc1faweXQZFU5uLVE%2BGFjgphUTs3hHO21c8T1gEvqEmXquCGCoXGbkG%2FDpINo4X%2BwT1Xc4omwlj6nerlpgvKqr8dHsy6mQFSb8Mi7IzT3nsRv\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 83159006b9f50b02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4864,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with CRLF line terminators","md5":"0bb376bc0ade6914b36f6712c52dd1e9","sha1":"0c19169294b943eafb1ff5313ebfd8b5a4330eb2","sha256":"dee3c0735afe5c7b1a34fae92c84f59c96e75d693971779b8eb29c43cc8ab9dc","sha512":"c0d9f0fe77d7d487a263ff1fe21e8ffc8d104e20f3b5afa3b2081ed87f6883b8ca3e9c819ca55601ff04ecdcc3215144f9efaa38c711f1ece26fb44c3633f9b5","ssdeep":"","tlshash":"343131b986c4a567693387f1c6154344fe72129396838064f6dd2373af7df402247bd5","first_seen":"2023-12-06T16:29:22Z","last_seen":"2023-12-06T16:29:22Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1425,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1425,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.rbxcdn.com/fonts/source-sans-pro-v9-latin-regular.woff2","fqdn":"static.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"88.221.27.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://robiox.com.cm/sponsorship.php?id=1","date":"2023-12-06T15:29:15.417Z","timestamp":1701876555417,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /fonts/source-sans-pro-v9-latin-regular.woff2 HTTP/1.1\r\nHost: static.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://robiox.com.cm\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://static.rbxcdn.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: font/woff2\r\nlast-modified: Wed, 22 Nov 2023 11:03:42 GMT\r\naccept-ranges: bytes\r\netag: \"0bbc68d331dda1:0\"\r\nserver: Microsoft-IIS/10.0\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\np3p: CP=\"CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE\"\r\ncontent-length: 14308\r\nx-roblox-region: us-central\r\nx-roblox-edge: cdg1\r\nreport-to: {\"group\":\"network-errors\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://ncs.roblox.com/upload\"}]}\r\nnel: {\"report_to\":\"network-errors\",\"max_age\":604800,\"success_fraction\":0.001,\"failure_fraction\":1}\r\ncache-control: public, max-age=604800\r\nexpires: Wed, 13 Dec 2023 15:29:09 GMT\r\ndate: Wed, 06 Dec 2023 15:29:09 GMT\r\nrbx-cdn-provider: ak\r\naccess-control-expose-headers: Rbx-Cdn-Provider\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14308,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14308, version 1.3276\\012- data","md5":"58dd2a1c6d7861ea261912ba153ac8e3","sha1":"235c384b9599ed2099f8fda87ba7bc8917eb1aa4","sha256":"599d93e0748728edc6bd55a82a52bff61196b149d566a67d4ed86d55d9c520aa","sha512":"af8861cd45e24ea1e8605aae193a1851003a8cf6b28fa8896b99e7c620dad0bf2a051a12ede2c46e5f043f7f1eba40cdd8d452bbd07a884257d8ff8d5d4352d5","ssdeep":"384:E7i9sL9SxRDL1cPR6sXQs/5Y/zTzyxmI8nX25LMu4:EGSLIP1c56jyxmI8nXmAu4","tlshash":"4452cffa175e90e49e1815f7e4ce5ca6cd254fea46f88790d7c83d18c1c2879d02e992","first_seen":"2023-04-05T04:40:17Z","last_seen":"2026-04-07T05:21:29.887035Z","times_seen":1143,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":24,"dns":1,"connect":7,"send":0,"wait":8,"receive":1,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.3.5","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.20.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.880Z","timestamp":1701876552880,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Tue, 07 Nov 2023 00:00:00 GMT","end":"Tue, 05 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:87:FB:92:D4:93:DA:09:E3:5B:EF:92:CE:2F:47:18:3A:8A:C7:49","sha256":"6E:D3:D8:2E:77:82:FE:DF:98:2C:87:9A:E2:81:82:4B:78:44:21:0A:70:53:31:24:58:9B:98:02:B3:84:D5:41"}}},"request":{"raw":"GET /3.3.5 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://robiox.com.cm/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:06 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::iad1::lck5r-1699930824829-703e942ad63c\r\nlast-modified: Tue, 14 Nov 2023 03:00:25 GMT\r\ncf-cache-status: HIT\r\nage: 1250716\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 83159000eaba712e-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":363693,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (50801)","md5":"c193259f53fb33856681902d899d0b04","sha1":"539d13d4016170493357b58e7efe676b700d31ba","sha256":"78f70dbdf61859c3a382c96c27880fa5737216af6d491fedf73a3356ccab05bc","sha512":"69ab3a80f97b0965712cec07246ccd9542ff3c6f8d1152047494395240ac99170748e90979ccecb8c90f3ab801cfffdfae075f42a987b457535b14f5d03d2cae","ssdeep":"6144:mr00+lSrr7p2CDj4cUlFLa6kLwSKJXimTqAcUm:08kfelFLa6kLwSKdW1f","tlshash":"00743baa7396753243eb91e950ae1142f37d5a38500c44acf79cd8da3da4e4850fbf3a","first_seen":"2023-10-25T18:01:37Z","last_seen":"2025-11-30T10:40:32.439329Z","times_seen":140,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/Gotham-Font/Gotham-Bold.otf","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:13.839Z","timestamp":1701876553839,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /Gotham-Font/Gotham-Bold.otf HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/users/9018750160/profile\r\nCookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\ncontent-type: font/otf\r\nlast-modified: Wed, 09 Aug 2023 08:19:52 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=by6tJd%2FUcoyzlUlnZ%2BCzO02E5AZCG%2FUW2CVzLpQKOLGWKRuYbIsCO6eLAqM3VshcQ2a5eScjAx%2F27zCMDTmOaEE%2Fu%2FztXl0ynBsjJu%2FQ85%2F278QT004m4vi1BBPRoPPV\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 83159006ea270b02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":127472,"size_decoded":0,"mime_type":"font/otf","magic":"OpenType font data\\012- data","md5":"722c5f898bbca8b2eb3fce0287688326","sha1":"acd8beda0d3d0d108f94092cece27d1ab74ddada","sha256":"88b3795f97ee469c9e30430b54d35c11cdf28c96e3e71d0122e37e6bf025c0b8","sha512":"1117e3a9c2645e1446e7107f2898e3937a36221be53a747aaa2580129adebf117ae6777e2973e8a886c5e116a510fecc22640cc47352f738785d78c94ae2bb53","ssdeep":"3072:fsr06ylOmoz++ieHRB5RTqpYPBRbaV+LSPz8q2WVzVZoDyg67mZ3KcKv4LLEpPW:Er/JHJ1rePP2WNwDx7K7EEA","tlshash":"aec3f71971937396e52a463f6d80a6361e21bcafc8ff76447a87c9f6e86d4400f87702","first_seen":"2023-05-06T14:41:42Z","last_seen":"2026-04-05T23:56:29.28814Z","times_seen":353,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":102,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/getthumb.php?id=27170037","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.743Z","timestamp":1701876552743,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /getthumb.php?id=27170037 HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/users/9018750160/profile\r\nCookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://tr.rbxcdn.com/30DAY-Avatar-1EBB795F544BB7C36305ACFBA1A9B982-Png/352/352/Avatar/Png/noFilter\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=qsiE438pzmq1IwpX6CJke64o4VCHZmVKoWYYwLUXDfNC16JKt8g7ikdznUW8ZJsOe%2FkSfz6vhK7k5rwDPbphJ1WtR7bVnehfq13QEGeO3eRhwYlGBdB2f6fGHAipMgsv\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 831590000b1a0b02-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":51069,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T14:28:37.844917Z","times_seen":13542679,"resource_available":true,"data":null}},"time_used":791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":790,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/Gotham-Font/GothamBook.ttf","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:13.846Z","timestamp":1701876553846,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /Gotham-Font/GothamBook.ttf HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/users/9018750160/profile\r\nCookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\ncontent-type: font/ttf\r\nlast-modified: Wed, 09 Aug 2023 08:19:44 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=LPdvmABTJRNOmSoAcC%2F1t4WZoWGkXRB8FPB1%2BzO42GoG6Z34AciqBPm8Hd3Q9ZLrffFDh9yCrfM7YBqM7v0VrvLMmrIdk6Xw809tAUgJKlu2bbg9S7M4876T8YwRgKMU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 83159006fa2f0b02-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":56676,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 16 tables, 1st \"OS/2\", 14 names, Macintosh, HTF Gotham\\252 Copr. 2000 The Hoefler Type Foundry, Inc. Info: www.typography.comGothamBookTrans\\012- data","md5":"b54724f54d4dd3f6796e3c4cc422f998","sha1":"ed5bc8195822fc962503b042d0f5a1f406782f24","sha256":"742359d475131a75ff057224151c7b384ef0b89556212709a5e34a9409983876","sha512":"dce64498ff38d95160b79a036cf29b62254f22bb218e7fb012c7fc455168a27c05bf3140267f4833d69ff3debf6b1faa6aa9feeb8668470887048d02a0b6df08","ssdeep":"1536:MdPsNeDzPNVhoCivGnlPwEKJaXan98Hi7:MdP/do4wECKaoi7","tlshash":"2343e991ceff6d03f7995af88de141ba1a7475039bb939191c01d4f2caaf2811907fa8","first_seen":"2023-04-13T00:23:14Z","last_seen":"2026-04-08T19:50:52.139046Z","times_seen":186,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.rbxcdn.com/css/page___91499eb369d75ba185c90bb0415c3266_m.css/fetch","fqdn":"static.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"88.221.27.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://robiox.com.cm/sponsorship.php?id=1","date":"2023-12-06T15:29:15.240Z","timestamp":1701876555240,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /css/page___91499eb369d75ba185c90bb0415c3266_m.css/fetch HTTP/1.1\r\nHost: static.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\ncontent-encoding: gzip\r\nlast-modified: Sun, 01 Jan 2006 06:00:00 GMT\r\ncontent-security-policy: report-uri https://metrics.roblox.com/v1/csp/report?type=enforce; script-src 'self' 'unsafe-inline' *.evidon.com *.gigya.com *.google-analytics.com *.ns1p.net adservice.google.com ajax.aspnetcdn.com cdn.arkoselabs.com connect.facebook.net funcaptcha.com imasdk.googleapis.com js.rbxcdn.com long.open.weixin.qq.com midas.gtimg.cn radar.cedexis.com res.wx.qq.com roblox-api.arkoselabs.com roblox-load-generator-configuration.s3.us-east-2.amazonaws.com s.ytimg.com sb.scorecardresearch.com static.rbxcdn.com www.google.com www.gstatic.com www.youtube.com h.online-metrix.net request.eprotect.vantivcnp.com request.eprotect.vantivpostlive.com *.googletagmanager.com *.googleadservices.com https://googleads.g.doubleclick.net cdn.veriff.me lightstep.com\r\ncross-origin-opener-policy: same-origin-allow-popups\r\nx-frame-options: SAMEORIGIN\r\naccess-control-allow-credentials: true\r\np3p: CP=\"CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE\"\r\ncontent-length: 4185\r\nreport-to: {\"group\":\"network-errors\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://ncs.roblox.com/upload\"}]}\r\nnel: {\"report_to\":\"network-errors\",\"max_age\":604800,\"success_fraction\":0.001,\"failure_fraction\":1}\r\ncache-control: public, must-revalidate, max-age=31535954\r\nexpires: Thu, 05 Dec 2024 15:28:23 GMT\r\ndate: Wed, 06 Dec 2023 15:29:09 GMT\r\nvary: Accept-Encoding\r\nrbx-cdn-provider: ak\r\naccess-control-expose-headers: Rbx-Cdn-Provider\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16409,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12859), with CRLF line terminators","md5":"7aa8676fc389e1fbc55a8443998674c5","sha1":"7ff1cb8c9331cdfa61cb92c2427a17b63770a8ee","sha256":"65a711d5d266ccfc8a465750d5a9a3ffd927ec24eb0fc5c12b906d89ac0c0972","sha512":"1bf30468e111f54bce288a04b091c92c304e1171faae20673b7e3a24f4f6afdae4dc1a54b8feab70c8e05c888a17f86fbe4009fcde34dc3aacbfeb0d7d52a431","ssdeep":"192:Pff8xlXGJUrR/SXNK5L5sZtsryc2c4p7JctXcgceWcIcamc8cBdcQwcBQcQDlnYv:ClX/rAE57rMOHFEZJLtS6yC1E2","tlshash":"8272b471e694301eb427c563f091be8f61288063d6275bb9f96634f8d89f18d2733b4a","first_seen":"2023-04-05T04:20:48Z","last_seen":"2024-08-21T09:43:42.28367Z","times_seen":867,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":151,"dns":129,"connect":7,"send":0,"wait":10,"receive":1,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asnxweb.shop/getheadshot.php?id=27170037\u0026width=180\u0026height=180\u0026format=png","fqdn":"asnxweb.shop","domain":"asnxweb.shop","tld":"shop"},"ip":{"addr":"172.67.141.72","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/users/9018750160/profile","date":"2023-12-06T15:29:12.740Z","timestamp":1701876552740,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asnxweb.shop","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 25 Oct 2023 18:03:07 GMT","end":"Tue, 23 Jan 2024 18:03:06 GMT"},"fingerprint":{"sha1":"41:A6:17:70:98:13:56:CC:8D:F6:73:05:2C:58:6B:16:B2:85:CA:ED","sha256":"09:22:4A:02:AA:83:64:CE:C3:35:FB:D6:55:C9:11:6B:BF:5D:E8:DD:56:C4:71:D2:F2:50:82:B3:D7:CF:4F:4F"}}},"request":{"raw":"GET /getheadshot.php?id=27170037\u0026width=180\u0026height=180\u0026format=png HTTP/1.1\r\nHost: asnxweb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 06 Dec 2023 15:29:07 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://tr.rbxcdn.com/30DAY-AvatarHeadshot-1EBB795F544BB7C36305ACFBA1A9B982-Png/180/180/AvatarHeadshot/Png/noFilter\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BySdpq2kJ0XJCFRvnrLERU9K%2BxWhSCfSKHJuhiS0fB%2Fq8HmrJLSCCf5VXLuy6qGryvFc9acCcMmwUcyw0JIjv8Dq%2BEeKigR%2BIZ7MLRSxbehBLyHavXM7pqlNgkiKtyQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 831590008ede0b41-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":27506,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T14:28:37.844917Z","times_seen":13542679,"resource_available":true,"data":null}},"time_used":1396,"timings":{"blocked":78,"dns":40,"connect":6,"send":0,"wait":1236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tr.rbxcdn.com/c6385df17c1c88666475a34feb90a776/728/90/Image/Jpeg","fqdn":"tr.rbxcdn.com","domain":"rbxcdn.com","tld":"com"},"ip":{"addr":"23.36.76.186","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://robiox.com.cm/sponsorship.php?id=1","date":"2023-12-06T15:29:15.241Z","timestamp":1701876555241,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rbxcdn.com","organization":"Roblox Corporation"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 06 Apr 2023 00:00:00 GMT","end":"Sat, 06 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"57:F4:96:1E:91:3F:6A:81:F5:96:11:C2:4F:5C:1C:6A:22:31:83:A7","sha256":"06:E2:D5:39:FB:D1:38:BE:83:CD:58:5F:47:21:2F:1C:83:5D:7F:F5:65:90:30:E5:73:38:4C:D4:8D:1F:41:44"}}},"request":{"raw":"GET /c6385df17c1c88666475a34feb90a776/728/90/Image/Jpeg HTTP/1.1\r\nHost: tr.rbxcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://robiox.com.cm/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 37259\r\ncontent-type: image/Jpeg\r\nserver: Kestrel\r\nstrict-transport-security: max-age=3600\r\nx-frame-options: SAMEORIGIN\r\nroblox-machine-id: 342030b653a5\r\nx-roblox-region: us-central\r\nx-roblox-edge: iad4\r\nreport-to: {\"group\":\"network-errors\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://ncs.roblox.com/upload\"}]}\r\nnel: {\"report_to\":\"network-errors\",\"max_age\":604800,\"success_fraction\":0.001,\"failure_fraction\":1}\r\ncache-control: max-age=31536000\r\nexpires: Thu, 05 Dec 2024 15:29:09 GMT\r\ndate: Wed, 06 Dec 2023 15:29:09 GMT\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37259,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, baseline, precision 8, 727x90, components 3\\012- data","md5":"d47417da10e5e048ac94f754a544eec9","sha1":"357c1fa6ef3eaa194e65480784230d90259e0c16","sha256":"af92f7a686df5fa042bd9c4fd231215835080432d8729296f3f7cfe5ad95d051","sha512":"d40b7971ea214278b9e91b2ec6055afed459a4a7518667d3f1a024a5c9066a31377b3932a21363122bac7b4c1b190f469a0bbe0a9095585bfdaac1bd65a7ec9b","ssdeep":"","tlshash":"","first_seen":"2023-12-06T16:29:22Z","last_seen":"2023-12-06T16:29:22Z","times_seen":1,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"robiox.com.cm/users/9018750160/profile","fqdn":"robiox.com.cm","domain":"robiox.com.cm","tld":"com.cm"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-06T15:29:09.774Z","timestamp":1701876549774,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robiox.com.cm","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 20 Oct 2023 13:20:04 GMT","end":"Thu, 18 Jan 2024 13:20:03 GMT"},"fingerprint":{"sha1":"88:56:D7:B3:11:D9:B3:6C:EA:55:62:AF:DE:41:1C:DB:44:58:6F:D2","sha256":"68:F6:11:B5:4A:F2:92:EA:74:EA:EB:36:76:49:31:B5:33:A7:BE:AA:FA:12:EF:0A:95:2F:15:4B:9A:00:EC:C2"}}},"request":{"raw":"GET /users/9018750160/profile HTTP/1.1\r\nHost: robiox.com.cm\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 06 Dec 2023 15:29:06 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-robots-tag: noindex\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\nset-cookie: PHPSESSID=9de42c5c0aa2ee7c2c0dd81bc581944c; path=/\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2FfCrG1hVqVuLFNhCFZPZtan2DIjDQCLl3xgYICcTLnr0W6%2FzQVK9Ia3vGuPSHz61ivJZ3zZHuQcm7bOw%2BTpTqSnvhTePmuUJSZYpkpJv4q1BjZw%2FjDl2lFPqMGpFYkWm\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 83158fef8ca2b4ee-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21068,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, ASCII text, with very long lines (1726)","md5":"372fe58f7beafb4aab19da966a926c8e","sha1":"839e2dad33207965e7c19c3c3cf7db742d3c903e","sha256":"1710cc902ff4002a01ceec0730293458d89ca5d3b9964f78c6e48d037b7a5eb2","sha512":"39b40a535471eba58d1b038a336a3368c5e08b585653c67c0b496abcc0a5a882a8d336b4e7a987655d0c64743c0ae5b588f88f99e8a655f73f8004a4360caff7","ssdeep":"192:vd02chfAosvCJqmdNdqaRQH/UDhLtpVkqaRyIApl3ahg3oM71E82/gb:VUFjzqaRQHohVkqaRyIA7aqEZ/gb","tlshash":"e892e97123f005f9226f81b1b6b23f282d9df54bd50b9448f2be50616fc5e9129876ac","first_seen":"2023-12-06T16:29:22Z","last_seen":"2023-12-06T16:29:22Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2979,"timings":{"blocked":328,"dns":315,"connect":1,"send":0,"wait":2323,"receive":0,"ssl":10},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-06","alert":"Sinkholed","trigger":"robiox.com.cm","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}