{"report_id":"d10ccd92-9209-4394-bc82-994f14c1dcc9","version":6,"status":"done","tags":[],"date":"2025-10-23T13:45:49Z","url":{"schema":"http","addr":"akiraylashop.xyz/","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"104.21.87.118","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"akiraylashop.xyz/","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"title":"AkiraylaShop"},"submit":{"url":{"schema":"http","addr":"akiraylashop.xyz/","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"104.21.87.118","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-27T13:45:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"akiraylashop.xyz","ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-05-17","domain_rank":0,"first_seen":"2025-10-23T13:45:51.34317Z","last_seen":"2025-10-23T13:45:51.34317Z","alert_count":24,"request_count":24,"received_data":2928349,"sent_data":11024,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-10-19T22:12:30.612025Z","alert_count":0,"request_count":8,"received_data":325956,"sent_data":4414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-10-19T22:15:30.460323Z","alert_count":0,"request_count":2,"received_data":254174,"sent_data":1021,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"static.cloudflareinsights.com","ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-08-30","domain_rank":4073,"first_seen":"2019-09-24T14:34:56Z","last_seen":"2025-10-19T22:13:58.096008Z","alert_count":0,"request_count":1,"received_data":20344,"sent_data":510,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-10-19T22:12:35.4735Z","alert_count":0,"request_count":1,"received_data":28807,"sent_data":511,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"akiraylashop.xyz/","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c1afd90d3ff666bf2ee4ac9da47818ce","sha1":"b95a2323de2d6c88958c10a052419096e174aff6","sha256":"e60dbec1e36954a7e41be1e997f70c285eac1ffda4043a9c07a2bde494af8733","sha512":"12d3792678a252c7625baf13b45f56f86d61523b7940959f9dfbabac2335d09d8973d8d2abf8353ae48092bf45a8f926c764d19a5527fff448cde1df41848b3d","ssdeep":"","tlshash":"ee41a85f62f215b606bf653a73ebb3843634005b2484ed053c6c9b451f51ea129f2ee9","size":2017,"data":"","first_seen":"2025-10-23T13:45:57.853422Z","last_seen":"2025-10-23T13:45:57.853422Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec18af6d41f6f278b6aed3bdabffa7bc","sha1":"62c9e2cab76b888829f3c5335e91c320b22329ae","sha256":"8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f","sha512":"669b0e9a545057acbdd3b4c8d1d2811eaf4c776f679da1083e591ff38ae7684467abacef5af3d4aabd9fb7c335692dbca0def63ddac2cd28d8e14e95680c3511","ssdeep":"384:XriNpnjyMkg8XMtExRN1w29JIOzahXtO2nJ65:GijgSWuanfJ65","tlshash":"8d92d7def645723613f76076913f220b733b35a528068459812adbc22c3d98f6267f6e","size":19948,"data":"","first_seen":"2024-06-07T09:21:23Z","last_seen":"2026-04-05T04:38:59.114194Z","times_seen":330312,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/SILENTHILL2.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/SILENTHILL2.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 29792\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:58 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B%2BnR2v0Is%2Bg4zc4nCe0AEEu6gtOlVeHm%2FwXToz7exTal8C8cAev%2BAHRwGdeG3JYGYB8QW1dS3m8KiSQEl1wIF4K%2B2YnQPiPWpGe%2F8mqPP3A%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48deedfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":29792,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 460x215, components 3","md5":"a01eddae8859ed4a46e22b3d61a25d74","sha1":"3b577bfb3806cd36b028a235bfae9f1def218110","sha256":"bea751a0efcda36ea7ee9ba6a6332d3034b0053675d72797c0494748165c91b2","sha512":"4e511db715a64d424909d68c12d84317f88d8d51c5311cfe04366fe7e84a7f4f64795e57fa1d6e5b5f156640a9aec6957e45bef6b5872387c40584ebce3e682d","ssdeep":"768:N2/DNVSP1mKjyU7r7W6Vz/I+d68etm72Ow0q4:QTSMKeU7r7W6ZgS6Ltaw0d","tlshash":"4bd2e185fdcd0afa7cd456f28661bc4930c0dba0790da38c7de9cd8df5a1c496a20972","first_seen":"2024-12-15T08:54:37.078215Z","last_seen":"2026-01-29T11:49:27.622741Z","times_seen":5,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/sonsoftheforest.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/sonsoftheforest.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15414\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:42:32 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e2VPjpMrH2kcAeVdMJSD2cNAJ15lo1GIUZJ0hNzBRr79u6XqR%2BaNz4GQOj7j0oq9AzxE5bdfsz93nJz1qdUirY6Rvu2xDIVmV686aZZ4zmk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48defdfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":15414,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 71x71, segment length 16, baseline, precision 8, 348x244, components 3","md5":"5e9928651da24d6c33491f43a9d06923","sha1":"96fd3c35c493e1f4abe26bcb338697c566d282fa","sha256":"ea2b4a765cd6534643ebcf1468cbda30755acc02496dc943bc835ad357eab1e4","sha512":"58fa7bcc6a7445a5c7d74fe8a651fe24fd3b8d85ee3987c40806cf5ee721fab6cc9d737ac75687b9db6ef33fd9bad815dd3a38f9fb45abde2160829bbe2e4c3b","ssdeep":"384:Qf1PTucaCrfmisMXIOAvlvH2LGrCqt3xgloSvvWcu:Q9P6ca4LsIIxvZWKrCwgOSvv0","tlshash":"3962cf6f8a0c24c3721843eb2e650c7849e90865b4573ffe46f88ed66e60dca2d425a0","first_seen":"2025-10-23T13:45:57.780784Z","last_seen":"2025-10-23T13:45:57.780784Z","times_seen":1,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":309,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.752Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 23:38:54 GMT\r\nexpires: Thu, 22 Oct 2026 23:38:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 08 Sep 2025 18:08:05 GMT\r\ncontent-type: font/woff2\r\nage: 50792\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T04:47:15.59809Z","times_seen":715939,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":96,"dns":0,"connect":0,"send":0,"wait":20,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/horizonzerodawncompleteedition.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/horizonzerodawncompleteedition.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 75083\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:56 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e%2F7EH4TCJvLBuqn5flMV02%2B8iPRpZ1vJt6k6j%2BimhtzKtmA9tC27jZKFjS%2BGr%2FkeCUgAGdw%2FvWBEPnhTSQDJ0lcjq8l7III0v%2F6M%2Fo7%2Ffyc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de0dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":75083,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 764x366, components 3","md5":"ff3ef95372df69291fb2a7111f483661","sha1":"32f9edec4a414352b460e31b6b3ce367da3aed85","sha256":"77950c9570be233a16be5759ae1a616970fb1e237ad2691aaf1a350e84873a6c","sha512":"f606b8b35af4eb1bcddba76b491dc0de1a4ebdd6083a6dd1139ff14199ce4597506515c70748437e32560b1eea07b23c4ba915eafd1f84221b7279446a0c7431","ssdeep":"1536:IX/+pSFYzJQZryS0t/EgF1U+q5irOGciEgiUX7/VpHbtoqO+X813:CzFrNp0dEo1L6WREWXJprO+M1","tlshash":"2673026b44c1858a3a7be7e74d018c1bf5d7a2626f680c1d26ac1241ff8d37ab718d4a","first_seen":"2025-10-23T13:45:57.784795Z","last_seen":"2025-10-23T13:45:57.784795Z","times_seen":1,"resource_available":false,"data":null}},"time_used":430,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/indianajonesandthegreatcircle.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/indianajonesandthegreatcircle.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 56280\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:56 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y47ZQHsuH5PguFXvV%2Bcwt%2F3FSyk%2FXyQSL19oWRadesvWUvprCp5Iwvrx5qfgqLz0z82fRvR%2FtTvEtDLnXjP5yjpph3Usfjt%2FFRPdAYkS0z0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de3dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":56280,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 441x319, components 3","md5":"2d11dd7853306e40af13a3874bfded7b","sha1":"c731312a4fbfdc21a563b6147c37ca10aca1c43b","sha256":"374d2cbd877623079f3684dc1c25711a96c82165071d6036746d5a108a20cb16","sha512":"ee28cc9db29bfd33961ca0ab324a083d777f5a5d16b720a7e85736031839fc7998f22f8c4cbca2aa2def7097489efc7ee3b186974a9271181ff7c6a7c65dea5a","ssdeep":"768:FQp5CSGfjTK6QV5VQ8kw2ZJkgOXtsc7AitssS2/tLFh5PtngSEk5WUMqy7B1AuAN:FbPqFkwMknbfA4BvLng2je1QuLDAgEn","tlshash":"2e43f10c07c97ff66bc1b1a35ce05f9991c602b63ef0079698c7a9a1eb5c7c527e6284","first_seen":"2025-10-23T13:45:57.788585Z","last_seen":"2025-10-23T13:45:57.788585Z","times_seen":1,"resource_available":false,"data":null}},"time_used":421,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/thelastofuspartI.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/thelastofuspartI.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 50045\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:59 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PXNVLcJbOcAvozmeUvLq80Vr%2BZXBze%2BVqlM3j%2FhYgQzc8CfnIbXVEQctCiEEwiCmI%2Fsh7jDZDAMNKklX2CtjskXBCUWKTenTVUdU6We5OBo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de4dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":50045,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 529x431, components 3","md5":"3e7ec8fa9eeca3ec68b687e86012ec0a","sha1":"2d15c5572b17f806db021b960dac56b4bf98333a","sha256":"6114730ed8433c3a1786b5689f235bb9c89cab900a138f2a5040dca140792f9c","sha512":"80938b052eb37ccee56e4fd5f2924859e8fcb2887b03517d8fb70a04cf98ac6f1b5775167c5d54a7abb08e0a8db3984bfefabc57b254a9c8af5c3e9a6d161ce9","ssdeep":"1536:gS9IwYbi9Ysohe9IOKg91ViiyAy7WEkawITlrQv:D9Iw0i9YsohSP1IiydaEkawIC","tlshash":"7023f16a57996fcfb2336be612be1e5a48ca320a0eb54a0004d795f34f92f81107a0f4","first_seen":"2025-10-23T13:45:57.791466Z","last_seen":"2025-10-23T13:45:57.791466Z","times_seen":1,"resource_available":false,"data":null}},"time_used":404,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":339,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/back4blood.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/back4blood.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 734071\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:56 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wl2oZvyEqQ9ep2d5BHoJyq71I8uYTUcuE2L1XTxAvHZe4UFSvPNi2qAT%2Fzwf%2BhM8nHqAz3uBSC7akfoEvihFpGvnEUmdGHVlC4Pw7Rqty%2BM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48ddcdfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":734071,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 2560x1440, components 3","md5":"c50bb45e4f6f4805a26914e28491c15a","sha1":"adfbfb5ab665dbb816fba95e5467873ce7d335ca","sha256":"87e307f0eae1ed65342456ba9b86b0a9f9afc611c05327ce3e1cbe7e1dd6083b","sha512":"97f04ca62d1cc4d1cd937c5556a7be3b697851d30c2a7f080ce696e72d7d68a2e52bed7855a5c1f23b512a94bc5c9046cb382297829b08058aa7bf6980cd81f7","ssdeep":"12288:bYNIFBUXKECgV3IPOeylV9Kjw+DFR7rDenCgcU5z/l9zv3lnrK9319lkZUjdyjrU:buI7UXKE53IOewVh+59WnCgcUd79KZD9","tlshash":"76f42329e631b955367e50a20969e074a8f3b7f68d53349be3df1db194c130bccb2a84","first_seen":"2025-10-23T13:45:57.794263Z","last_seen":"2025-10-23T13:45:57.794263Z","times_seen":1,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":296,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/cyberpunk2077.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/cyberpunk2077.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 54558\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Mon, 28 Apr 2025 21:28:40 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yPC%2BoEMRWZOkm3HAvTyylEYDL3tg8Czv0NCaH%2B3Sb%2Buv5RScZM1jv5iOQsxH0MXSM8trtr7IfDJ6x8moRSNJ0lgW0CQe8k%2BFCVc26SP5L0E%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de1dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":54558,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 46\", baseline, precision 8, 700x900, components 3","md5":"544c87a6c3f3267bbd0bbadc0207cd21","sha1":"d6455b3d2281d4cc4d13bc398ef8c46c3b8796b3","sha256":"12d909be5c2d3bb7e2e85f79f1d20166dcf77d35dc2c0e99f072b2bd7b572072","sha512":"9999b0befaea563d24813b351e8b0d96e6bc83c7600ac9410f02a5ffe19f197982bd00d0f6cb66625cef23d9619645e152b9df71e554056699b1e36abe736b63","ssdeep":"1536:Gbb8Lh/yFvgMl0Snp1dfOhOEjaGkJKAcK1cmn:AbExyFvgMlvp1g4EjHiKAcKek","tlshash":"3933f1132a0b86d6813c02d47f2655ea5749973cece53aee10a7799fbc241727c8db1c","first_seen":"2025-10-23T13:45:57.796061Z","last_seen":"2025-10-23T13:45:57.796061Z","times_seen":1,"resource_available":false,"data":null}},"time_used":369,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":106,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/Dyinglight.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/Dyinglight.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 28252\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Fri, 02 May 2025 18:12:50 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fq8EiJgZJuqFvxHRLfwQ8EXiCz%2BpMuicmlyS4Q1IMkX6kfVhrMdzV2r8ecU8s7HsX5SEb%2B7wRmGhZy1bWk6Lv4k%2FHABjHoMttkr0CyQRM%2B8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48ddfdfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":28252,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 278x278, components 3","md5":"ca37dd2374d937856688b348ca522bb1","sha1":"6a11c117eb8576088cabb5954503aebfb4ebdb49","sha256":"ff136d1bebe10640f073b05eff83c701faae069f9940d75cabac5c6bf97fa92b","sha512":"857ee8dc6b89a4ad374f3f30b286833775e57bdf4758da604b611f8b3839d462b96d194f70fe8deb1c1a87959e6d9821fd70d971a5604d922c14a210c8359f9c","ssdeep":"768:PkmgVLhQJvCysbcYiIRG+5LOhlEteuC6VIzQEHwLtMFpc:PlKhQJH7vM5ro4VSQEHEYc","tlshash":"e0c2f2e9477526fbbe3302f62396870c3cd44a55749d8a9d3aa0c7e59a8754c841c239","first_seen":"2025-10-23T13:45:57.797839Z","last_seen":"2025-10-23T13:45:57.797839Z","times_seen":1,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":92,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/mafiaII(classic).jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/mafiaII(classic).jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 171622\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:56 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BMS0JMvpN1zPO09pxd4URuxiDhc2aO3Qmb6Nv0%2Bxt0chPYOuzi56IAPc3fp1eoGlqhuEl%2F1se0gA6SXxe6vff1Fbx%2BcCb3aNwwU%2FemUc%2BZQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de6dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":171622,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Macintosh), datetime=2016:05:09 14:10:25], baseline, precision 8, 616x353, components 3","md5":"9883eb7965866b7c60501cba6b850e57","sha1":"66a0f77e4ec04edb214f00dc4fa59b07f2646248","sha256":"11f4379431a50e610ef6e30f25a67be05eca7c4da43c58af899cd23f13c20934","sha512":"70b73999fb971c4019555a4ff908e4225b1bbd2b3df44de510d8997cfd8c2d0357f9002c4843be9e9d6e4393127c3e96e52a59516127e25acb509ce5151386a8","ssdeep":"3072:LwCwN0JLshB6Y9dHkSxCKa3tSExn/KMOYxKsgrKv6ObkQBiZ:LwCwmsz9JkSMfxKsgWA","tlshash":"f3f302656b209ea2fa6264344ba1e73657108f754777832cb6dc3f83bb655e0382fb01","first_seen":"2025-10-23T13:45:57.799691Z","last_seen":"2025-10-23T13:45:57.799691Z","times_seen":1,"resource_available":false,"data":null}},"time_used":433,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":167,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/akirayla.png","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.522Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/akirayla.png HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/png\r\ncontent-length: 441866\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Sat, 24 May 2025 19:08:31 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HmD1AHBqgaGc9yquStePeo63eAXwi1%2Bk7tiZm2HEsoR9lb5UfbNQ4de5NbQ3qSzzowvFVWs6mYSukSt%2F6gjiZvhEtaO2hiADRLNy3ubVeHg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc49df4dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":441866,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"85f6ac85f698293b54c043fab74b66a6","sha1":"cba6e79740828d2862e94f6ef46c12d825961b54","sha256":"408cc397e0ab93f9257cef6310e3d9a11e7f398d4edce4047489248555ca0215","sha512":"4878487f953aebc4795bdcc25a8abb97cf80a7fba071c794a720634deef91b0430a5fa63511460b25a06c5b0a0ad9003739ac223145dae238584ef3783d2a650","ssdeep":"6144:ZNSY3TL9Mr0eVcB75nioraeDS9wIBgYDT0xvPSWBRh6YuHknG5:ZNSsLSr0eelcpb0kWBRhtwj5","tlshash":"759423b8bd150421ffa62ff861e40682036eead61498d2eb9071d1484fc5b52773bfe9","first_seen":"2025-10-23T13:45:57.801197Z","last_seen":"2025-10-23T13:45:57.801197Z","times_seen":1,"resource_available":false,"data":null}},"time_used":497,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":277,"receive":220,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26428\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 23 Oct 2025 00:53:44 GMT\r\nexpires: Fri, 23 Oct 2026 00:53:44 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 08 Sep 2025 18:08:20 GMT\r\ncontent-type: font/woff2\r\nage: 46302\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26428,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26428, version 1.0","md5":"0f1d3218bace7a3a84c05b5d8a6f71ad","sha1":"977905ba4432d4e0c24e0da3f72aceb9c0525987","sha256":"884933fb5789b478d2da68a4cb0bd5cc138d995f1fea9a957ba29cb3c00f1bf7","sha512":"0a6d79809ce57e15b722a807ac8586a9a52bb4db3abfc8dbb40be7dfd55ad4195df917042425f8af97cc0c2fe09379799298bba84a1ffad36a4e45e2dea58dc8","ssdeep":"768:j7jEMtcubweLke66yjm5QxI2aSCuH8cEow0U0gME:gMtcawhe6HaSCZcvFU02","tlshash":"ccc2f1588e6abba67f92f0211479a595f0e3b8400750f5e4e1e02dee44ca663fab4454","first_seen":"2025-01-09T17:22:38.875446Z","last_seen":"2026-04-05T04:23:01.105667Z","times_seen":23080,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":122,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":106},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 23:38:54 GMT\r\nexpires: Thu, 22 Oct 2026 23:38:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 08 Sep 2025 18:08:05 GMT\r\ncontent-type: font/woff2\r\nage: 50792\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T04:47:15.59809Z","times_seen":715939,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":101,"dns":5,"connect":10,"send":0,"wait":10,"receive":10,"ssl":81},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/fallout4.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/fallout4.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 257781\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:56 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H6pvezQ%2BKIz07xmrY7%2FqDJAKz1BM%2BMcxKG57CDMLIEp8gvqNsOcvIqMI0m5ACwopi6o7EtdyHAkLvhMD95kTW5%2BskmEOpC1NnyemvGMEKr0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de2dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":257781,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1200x970, components 3","md5":"850738e9e54f4a59498bf52e9036b349","sha1":"bcb9903fcafbe47d784bef091ac33462d908ecf2","sha256":"248ec9f910fd5ddad23691c0ac184be1ad252d4fcf5ba06e600bd3e73f71c96e","sha512":"38c9f0da05e48a78b414977fa9605a78f445048fe8f3be354d6b83f5c9140cf1878c22055731dd41f4490905540de02736508f72e091130d3361f241df7909ea","ssdeep":"3072:bMh5RM2KJg3qGZMVuaRSSlVq1X4XjOongXHyjl3wmO0LLDDBfBFTqGQcvXPj3+DN:bo5o6BZg5pjO6HLDNfBhqGfjuKy2h78j","tlshash":"ca4423f8a13cc99c3e6e8b60d7408cb7357b43f95a60a35490c250f9e6094e7159eabf","first_seen":"2025-10-23T13:45:57.806381Z","last_seen":"2025-10-23T13:45:57.806381Z","times_seen":1,"resource_available":false,"data":null}},"time_used":478,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":278,"receive":200,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/streamerlifesimulator2.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/streamerlifesimulator2.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 100522\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Mon, 05 May 2025 17:15:22 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m5xJtY1wXlK6RyVuu7aHLy7PgRSJLMbCusyB0ol1gj7jBaZNmqtQoVNHfaAKeMoSgqPvIvC7ayshgbN82jhS2BAVWiKxoqAC0Wym%2BvCEFG4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48df1dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":100522,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 616x353, components 3","md5":"14bdda4e4bae120a30d851b4bbcd1f0b","sha1":"53314173b87d358b7cc56e203f080196ab9caa39","sha256":"898f62edafe299b85fc3c983a80ec737cafbf5050a1caa1f5ee2dae161c3d080","sha512":"28168a3d54b9daa31b304827cee68f4b1249f4a3273141f6c56dfb53a98e7a8685fd22d01644e21130f27ea16db672ae71e78dd63c46c93bba9bb65157bb17da","ssdeep":"1536:w5M1OIKTwuzYlFE7T4S/X/eh86HRP5tmJn8jFWkHc4l319Lguzj0ZsNsZueZUpVN:uMWwuELEYSP6kJ8hj91f0ZcsiM2OrnO","tlshash":"caa302950cd364c0b0bdb70bda7a18e6378f6abec0604d5165d96434e0aebed2def025","first_seen":"2025-10-23T13:45:57.808602Z","last_seen":"2025-10-23T13:45:57.808602Z","times_seen":1,"resource_available":false,"data":null}},"time_used":441,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":324,"receive":117,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26428\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 23 Oct 2025 00:53:44 GMT\r\nexpires: Fri, 23 Oct 2026 00:53:44 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 08 Sep 2025 18:08:20 GMT\r\ncontent-type: font/woff2\r\nage: 46302\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26428,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26428, version 1.0","md5":"0f1d3218bace7a3a84c05b5d8a6f71ad","sha1":"977905ba4432d4e0c24e0da3f72aceb9c0525987","sha256":"884933fb5789b478d2da68a4cb0bd5cc138d995f1fea9a957ba29cb3c00f1bf7","sha512":"0a6d79809ce57e15b722a807ac8586a9a52bb4db3abfc8dbb40be7dfd55ad4195df917042425f8af97cc0c2fe09379799298bba84a1ffad36a4e45e2dea58dc8","ssdeep":"768:j7jEMtcubweLke66yjm5QxI2aSCuH8cEow0U0gME:gMtcawhe6HaSCZcvFU02","tlshash":"ccc2f1588e6abba67f92f0211479a595f0e3b8400750f5e4e1e02dee44ca663fab4454","first_seen":"2025-01-09T17:22:38.875446Z","last_seen":"2026-04-05T04:23:01.105667Z","times_seen":23080,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":112,"dns":5,"connect":24,"send":0,"wait":29,"receive":1,"ssl":78},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/b158b52b8e4608921ae097664263cbab.ico","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:27.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/b158b52b8e4608921ae097664263cbab.ico HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:27 GMT\r\ncontent-type: image/x-icon\r\nvary: accept-encoding\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 30 Oct 2025 13:45:27 GMT\r\nlast-modified: Mon, 28 Apr 2025 21:28:38 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4ZUkfj37DOZyXC7e9XSIiin4YEINSBcX10739dHzliuajeqQPvI6uH4fzKmbT5oqQpOnnkLfYsC0%2FoFr1fa8j1AtBE%2FjlNZYPlYPdp5T%2BTg%3D\"}]}\r\ncf-ray: 9931acc8de75dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"f54e17c6c4c5ad1122cb82322a4ad502","sha1":"8028057317c7ccdb4e6e8b9ce061cbbf9d55fa75","sha256":"59f25d7212fc1ebc39bd162d14096f13bdd21c2848a6771e590fe86a4c8529e8","sha512":"b74121b478f4d5f16777e0e941b978b15c997031d4d84adf24d6bffb7a934161fc09811a6718fe2726ef74150a92b83e8edbcaf58dbfd07eb6e3011e6f053c86","ssdeep":"96:H2TE4YrTD2EoXv4AUIg38R7SR+G1ypLEbxoq4:H2YBenXv4AUIg38+70psJ","tlshash":"6a91a368ba30e92dd3354f3945e5c10b50bcb21aac15924cb5e7c5ccadb2b087f57068","first_seen":"2025-10-23T13:45:57.81006Z","last_seen":"2025-10-23T13:45:57.81006Z","times_seen":1,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/residentevil2.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/residentevil2.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 64624\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:57 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n48UDfUdX7e57doBwQHMTUHTHz1z2ZgVR39hwe4tPiy8Epea7fqCdd7FeKriI%2BsCOC0sl9jx5EiNb9l4y10bQu%2FSiuhoaNM0oifKOn4AYqw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de9dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":64624,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 765x379, components 3","md5":"7c84b7c4f478e7fec1858cd9ce1db21b","sha1":"737fa1a285aa59018476d029870892aa928c7ae2","sha256":"387e6a86a60ab5a50aad0cce0f6b43fb251e400b8ad6dcd1622ae8b01a0a3cbd","sha512":"a2ec17cdb3a5736b57fd3b9b19bf4e25da05086cc801c93e9baec85538d9a94f37052a093c4b643121b243c221f77790ba4c5918217a67b408d65ee8b8d41236","ssdeep":"1536:QjliC+V49tXB6Jt7W9NGt0KQ/GensO539FyZAxy:wiC7jo7WfG0KQdd5fxy","tlshash":"6853026888c6e6dafa230557c344ca4332e26244727ca36724efced57ed14b6974f928","first_seen":"2025-10-23T13:45:57.811798Z","last_seen":"2025-10-23T13:45:57.811798Z","times_seen":1,"resource_available":false,"data":null}},"time_used":411,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/sniperelite4.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/sniperelite4.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 63461\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:59 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZFJIhrTcHVbL4MNxZvW8Vv%2F%2FKaD8C1fOivJ%2B4iLzzsemGZa1IeC%2FPINcRrXQK3VLLjOxzNWpoYIxvVb%2Fi7zykJOExLV0yy3JTwO30cG24ok%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48df0dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":63461,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 441x378, components 3","md5":"64515cb3ef545b6b4b21670e65f0332f","sha1":"88d0b951e0c112f9253c9d9eefd1e554b5a02433","sha256":"5d7e0b746afe6847350cf59f9566d99138f0bef9f8f4f71e015fdb3fb029d293","sha512":"dcd08ee1eed143d67c230d1ab0d1a5fbf8bb37ef4e3e94e7b6244bd9055c97157cbb9d869439948481871154d3d2df999d76504df1dbe6ef779c201655f3bb26","ssdeep":"1536:QzQHXvBHhTj10nyLbYQEm+rSV2528DsJ5OKlDGDvY9aq:7Xht68YQQXNU5Gv9q","tlshash":"9f53023e5c0562d6fe2a56d88cd4e851c7eea021f444581a6cfedad8cb087c69d383cd","first_seen":"2025-10-23T13:45:57.813593Z","last_seen":"2025-10-23T13:45:57.813593Z","times_seen":1,"resource_available":false,"data":null}},"time_used":397,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":331,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/Header_1.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/Header_1.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 413653\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Mon, 28 Apr 2025 21:28:40 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7xwp3PSpPllRVDhrD9WcN%2FhczrxMfaE%2B7iaS77%2Fy8jcVBKdipXgmDciihJ2P2nNU9hK3ROSySusIwQVhDymEIL2XZMO21NZf7%2Bj0%2Bx4SwD0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc5ee25dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":413653,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 94\", baseline, precision 8, 1920x622, components 3","md5":"5003a63cfc3c63005a3ecd40583d8dd6","sha1":"3a3c45d4dd46fc5fce9d93a1eecfc331a5a5c55b","sha256":"2d6638877f7ce8eaf8f487fde9ca0176077d4ef49f7b362e911ae4a2b11ba40f","sha512":"1af6c266cf80610214252477e9ff8608910c8ba72d8274720337a3289aa5e594e57b24a09d1664c2a02dd15126963ccd1494575da9bcc9adb7bc3e6e8b47db58","ssdeep":"12288:vmhxXrhyYDz5JZYGDRE1oVd8IHFSMZcAl10nwAHt:+hxXgu5Ips8IH86h1pq","tlshash":"8a9423d82451f8ce9240e876faa9141d712cfe6284f87f583b1eafc6a7e3510f501a89","first_seen":"2025-10-23T13:45:57.814972Z","last_seen":"2025-10-23T13:45:57.814972Z","times_seen":1,"resource_available":false,"data":null}},"time_used":527,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":237,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 19:10:22 GMT\r\nexpires: Thu, 22 Oct 2026 19:10:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nage: 66904\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-04-05T04:48:32.649452Z","times_seen":307510,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":127,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":111},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WdhyyTn89ddpROi.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WdhyyTn89ddpROi.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 70532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 16:19:46 GMT\r\nexpires: Thu, 22 Oct 2026 16:19:46 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:10:58 GMT\r\ncontent-type: font/woff2\r\nage: 77140\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":70532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 70532, version 1.0","md5":"a3538ea24dbf115d688964fc374db38c","sha1":"d5ff95b327b6cb2371a0f0cfff9092d2f7f6f58f","sha256":"545f27e4a3f64bafcffd2912b4d9e4d8b89fb7a87f5d257fdb4eae3c0eb9e224","sha512":"cd0d910665c070475cbe4b4e0830be5b463d3ff2537ca174e875ceb610f0f0cc627ff33dbbc95fa3e308e8cee0d0fd697e85e1244aa6023ee3113b3d10815fbe","ssdeep":"1536:1+9A/N3bmPFNtCqzOzD9khgUkon9FoooVdjlV+It4UEct:1+oBINnCzXUv/obdjlVfyM","tlshash":"5d6312976c22c87f804a02f99ebee1b487733021192a1b1370aff35654d46684afef70","first_seen":"2025-09-05T03:00:03.770574Z","last_seen":"2026-04-05T04:48:32.909758Z","times_seen":7823,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":90,"dns":0,"connect":0,"send":0,"wait":22,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-23T13:45:25.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: public, max-age=0\r\nexpires: Thu, 23 Oct 2025 13:45:26 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=r1Pnf411Z7Pp3xVHHNo3gWzBGYMnWK%2FtjfJUX7Cwri2v1s9yLQ4q%2FvPXZIoXEIAifFXeObVPm3n4Ku4E%2BcALoaL8g1gHorIIdTgbxxIbr3c%3D\"}]}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=8,cfOrigin;dur=215\r\ncontent-encoding: br\r\ncf-ray: 9931acc179f075ab-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":35752,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (503)","md5":"421e6224dd2f28367abc2aebc2584fc2","sha1":"6f73f87e71194808801f19b423e9573b98d6520b","sha256":"3676eef9cb1ce5136213bebe7fa84e89e030c98d0ee5e8ee258c55a242a9a22a","sha512":"e1f83dea53037ac760af4bc4646d144dd56b39355b7311b66511b7aafe0fb4ac24b21e72684317358b92d9d65b10353b484b4778ed6ec935a2ec5fd46f3eb32c","ssdeep":"768:p9TuBFQr/T+KywsDonIHj7v/TbHWSZee5Aovr6+6YEEVZ5LJpxJsmg0YDbM+FLxt:mebT+KywnIHj7v/TbHWSZee5Aovr6+6V","tlshash":"7ef2506601f3003629a3919967b6b71e3ea1c407dd0bd9897aecc7959fc3da2c86374c","first_seen":"2025-10-23T13:45:57.822202Z","last_seen":"2025-10-23T13:45:57.822202Z","times_seen":1,"resource_available":false,"data":null}},"time_used":762,"timings":{"blocked":266,"dns":43,"connect":1,"send":0,"wait":230,"receive":0,"ssl":219},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/mafiaIIdefinitiveedition.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/mafiaIIdefinitiveedition.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 82051\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:57 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AaxAFrtgWBpKHGc%2Bi0uzRYhxvZoLCtT6IbXRrvjzTWNGb%2FeEC6qTaauIyc5iPK%2BJtxPqJUQpkz31o94phNwk9LIwU9kWcfceyhUqfA3ablo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48de5dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":82051,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 616x353, components 3","md5":"cd887d15d5275603ceeadd6ab5af87f8","sha1":"50633f271309c395f188eec1b5490a780e46d278","sha256":"cc2d26ac3f55e067b5ef0fcb6a6d67cbd34de60292c1c13454159bbf2fc98c5d","sha512":"bc0f5f0ad1c7c1f94b8b5091ab6b37b45c0762b998414732adf4892baf1386ef542c4b0cd5fd5ca8c3b97649bf17e48ac5466143ebc031918528925678473d10","ssdeep":"1536:UIlr0KWXAsYA7pK98PKtxGlA3JnQW5HM4tU82KJ7E9adgIvnrL8LB2UBX7lFZ7:1WQsYA7sWPKto4ZHRHBWIvr02oFx","tlshash":"a983124f35abc7c3472909988c7eb26da34ab7d4580c268538f75c1e35bf76202a355e","first_seen":"2025-10-23T13:45:57.825255Z","last_seen":"2025-10-23T13:45:57.825255Z","times_seen":1,"resource_available":false,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":335,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/residentevil3.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.513Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/residentevil3.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 47714\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:58 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3fXV9o9%2BtRCXNYkCUZysmLd3iltZXxk1hmXFsbKuXAP7MUiUnGhIGdxcn7A4t7A6bUcUUe863Bfs35e3odD4EP03mbChYQbF9Z0OnEVIGmI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48deadfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":47714,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 438x442, components 3","md5":"11b243cc09ccf477c1290c3242af3a76","sha1":"77998b39e8d643f81b294b77a4b2ea49933a56be","sha256":"9110081aac3cb1b1f3108df7c29534c9522138892b10f957e4b5cb6fcefcdbdd","sha512":"3364c68a12055baeab2aefa47559824cd7848fc6fa2444cfe0f33dde1d15dc27d96e15c2a962cc000acf1fbdfe91d139324e025d7285b5f0a91778ba05e9308c","ssdeep":"768:79dG9eGMj4g6CYpebPU5i6mKT5epyb05ojOyM9lxrXp/F0J3IZP45VPhL0px9Y4x:7r4M8g6CYW5K9bMoju/x7p/XZQXPhQpr","tlshash":"c623f142d251d7e9315d6a46f778b9874fe39fca70d3c02c2e0bb262b2711a1693d12e","first_seen":"2025-10-23T13:45:57.82872Z","last_seen":"2025-10-23T13:45:57.82872Z","times_seen":1,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":322,"receive":57,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/roboto/v49/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 23:38:54 GMT\r\nexpires: Thu, 22 Oct 2026 23:38:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 08 Sep 2025 18:08:05 GMT\r\ncontent-type: font/woff2\r\nage: 50792\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T04:47:15.59809Z","times_seen":715939,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":129,"dns":7,"connect":10,"send":0,"wait":29,"receive":1,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\ncontent-length: 150124\r\ncf-ray: 9931acc639923181-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\netag: \"6421d693-24a6c\"\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 739919\r\nexpires: Tue, 13 Oct 2026 13:45:26 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ccFjasc1ZPxU%2B2rT3B6lICAvJeDje0u1H0idZh9TpNn2lKMlN%2BCF5MFgQkB8AOXunQJv0b9KOtwZSiH6JiDUSeCxz04S%2BfUBqCmIFO3qXtcE071I81cS8j7IGuHY4tcP%2FBX0iOGk\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":150124,"size_decoded":0,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 150124, version 772.256","md5":"c64278386c2bbb5e293e11b94ca2f6d1","sha1":"6b99aa650bd12a36caa14e0127435d8f4cd3ba73","sha256":"7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880","sha512":"0ccdc1515510d902c0b4a48b863c48bad86e1f766b1f9c890a64e28d91ee7c6d488241c531fc094d15b29c211da71e092587a987e24ee8e67ef8ea99c284e821","ssdeep":"3072:7sCbk7w0ZXdkN6iMjif3Lr7x7wAtf+D7gDk1feXDLnurWHqrNIuv5n0:7sCbkFZXdC7MaLr9w2mIY1feXXurWyNW","tlshash":"28e3123cf2c6d486735f5aeadb79636894fd0a2e74ecc67d26b982112048f828174d1d","first_seen":"2023-04-09T20:30:06Z","last_seen":"2026-04-05T04:49:46.696794Z","times_seen":30507,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":17,"dns":1,"connect":0,"send":0,"wait":9,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/cdn-cgi/rum?","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:27.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"POST /cdn-cgi/rum? HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-type: application/json\r\nContent-Length: 1021\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 No Content\r\naccess-control-allow-origin: https://akiraylashop.xyz\r\naccess-control-allow-methods: POST,OPTIONS\r\naccess-control-max-age: 86400\r\nvary: Origin, accept-encoding\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p%2FvXsvG2NbuhXR%2BM5N79KeDbGHINNYeYAK9q1VXq7yCvzhCRbz4KlNySwOCkcLGQA%2FkCMS7Q6gTMz%2FxULQpMFr2N9C2Q0Sddk2ByjIx%2FjwU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Thu, 23 Oct 2025 13:45:27 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: 9931acc94e84dfec-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T04:47:05.041284Z","times_seen":13359598,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/thewalkingdead.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/thewalkingdead.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 22019\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:36:00 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l6QIxHxi23elAyB6DRLs2B3KKThQM7SdGIglULuF44QZReMLBr1dxSjAkoMq2PULTKsjXAFYtqaoqUcK0Ngjxc6L9wmvPubb2kg9rbQlkkI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc49df3dfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22019,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 71x71, segment length 16, baseline, precision 8, 268x215, components 3","md5":"b5d7020fdfc9a9a935b1788e8f42a1c3","sha1":"b18075d8521acfccf93fa809b72998670b16c301","sha256":"288350501609099dbfaa5968e6413108533e5c8d8f2195ee30aca7e5ee3be0fd","sha512":"8d844d93a240b5cb258a8b32e2e6505a105c6dbe33b721cb51f7e7f172713bc44ce4707303ff67d8f99951b8ce5204c85d2d3a2dbd00a878225e15147b1cb486","ssdeep":"384:fXcEDn9SI0w7IzS3mhqv1g4nez3TwXbaKTzhGriMewVwbvK5RQ0M8BLTeU+bXaDH:fMED0I0yIzS3nO4eXO93hWVyvKZLTehE","tlshash":"d8a2d06bc374d2e2b1534765b5416dc893dd4a25a6ebf32f1bea80c82d860b01419bfa","first_seen":"2025-10-23T13:45:57.836926Z","last_seen":"2025-10-23T13:45:57.836926Z","times_seen":1,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18752\r\ncf-ray: 9931acc4add60b4d-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"6421d693-4940\"\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 127599\r\nexpires: Tue, 13 Oct 2026 13:45:26 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=C%2Bjsn1QPMsNN5hWuekGVJFxKNCLJ96iJ3AphtaAIrrIxGIOvL5gySG1Km67OMMguM2DZ0rPCm0tDMKpzumwDnJZixLREPBZuEEuI9Y6hCKnEVlpIEfL2CJOOageuIt7ggUW3Uz8q\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102025,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"ded1c367363e8b20bdc6a19b8350a737","sha1":"8c06d82739d14b094ff6d9036021a252bd1d985d","sha256":"1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf","sha512":"89e71d2e66ac925ec2564aa45cd43f647fd72e5bd664e2728fb632eed71e9e6a43d72a404a8ce9993fc4d223ed985201e3a66676d01cf5e341bc7d07fd9a6207","ssdeep":"1536:OwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuZprfZCl:S709gMGFiyPGuZpfZCl","tlshash":"2ea3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-06T15:05:25Z","last_seen":"2026-04-05T04:50:34.761704Z","times_seen":41977,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":9,"dns":0,"connect":1,"send":0,"wait":14,"receive":1,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/atomicheart.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/atomicheart.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 97738\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:55 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vAuWdGitiSsyM7Cx9x03C5T%2FKTdrR6GgbbKxGGco9hGg8NoINAZcLQ0E7CrESFMwtS3UU5En8I%2B6BS1R%2FJTU3Fn7IpK7tL%2FQMmPZKPjXuqI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc47ddbdfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":97738,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 900x445, components 3","md5":"0d4becab23dc09f041f4a71b77614c85","sha1":"feff70a1deccb71c9dd9e1ac8b9886f31b661175","sha256":"31fb7fca3bdcb1bdf7067489a61d286013cad05bad8917ff2819e1f26fb4e73c","sha512":"5b64e57bcef300b3102c432b1f2d49a7980dc51df969f761794b150b37ff3c99e63e22a243501b8c6e56a658bf98dc536a435a34632f30b9a29b1ef9767bf479","ssdeep":"1536:YVwrZ8yaRXg+l6Rjb563PBgQ726RpsaZ78G0xj3f7iEsJ1Iz758ZjNWVSRt7VRdY:D21lxyRa50V8G3ajrLPtXw","tlshash":"f7a31228d5771eef923bdc6407a70c03b97ac68d48d5cb8c48d56da7f32c9b5420c86a","first_seen":"2025-10-23T13:45:57.840131Z","last_seen":"2025-10-23T13:45:57.840131Z","times_seen":1,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":126,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/shadowofthetombraider.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/shadowofthetombraider.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13844\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:58 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TSbJFcjqS32VcLP8PBCsCzmCmTb5MyHteZ6B1P6Ux7YEpEFL210QT0YNI1avzQZs0Gkrt3crDS9TJFx9xLnV4AY5%2FTKNmvsDAeeVwUF6t2I%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48deddfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":13844,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 329x353, components 3","md5":"ec27cb56fa4aa718370502251ef7bf61","sha1":"75adc50e9b7baee44082e35b7d8c62688c18ca9c","sha256":"b40157786e2e6893ec2f555edccb20cf961765fc8a0fe00be2f5ff36eb30aea3","sha512":"1e2369f54143eb9958d9b2baf13866c878161830e943ff0821e191d6f454fa836f3f96df92ba25e47c8488c4e6ea1122e1c93b8022b4394c1e314a6d5e5c25a2","ssdeep":"192://018zTH2WJhwUBewki56ffDwNG/b0D1TF2p/9pJxd73X5Dp8:/sCzZhTBHkokDeG/ID1I/pJx9dp8","tlshash":"94525a4bcc698a93f53587f9fe070f3c21de2a08f05237f614a50cc6aa965651c9f179","first_seen":"2025-10-23T13:45:57.842418Z","last_seen":"2025-10-23T13:45:57.842418Z","times_seen":1,"resource_available":false,"data":null}},"time_used":339,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":321,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.523Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 22 Oct 2025 06:18:58 GMT","end":"Tue, 20 Jan 2026 07:18:54 GMT"},"fingerprint":{"sha1":"C7:F8:82:22:3E:BC:9D:F4:7B:0A:EF:A0:EE:C2:C2:D1:34:7E:55:1D","sha256":"EA:85:37:F0:6A:CB:4D:61:4B:3D:2C:58:4B:FF:E5:CE:3C:33:94:71:D8:11:77:5A:C1:99:2F:94:1F:D2:FD:F1"}}},"request":{"raw":"GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2024.6.1\"\r\nlast-modified: Thu, 06 Jun 2024 15:52:56 GMT\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9931acc4bf4a568a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19948,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (19948), with no line terminators","md5":"ec18af6d41f6f278b6aed3bdabffa7bc","sha1":"62c9e2cab76b888829f3c5335e91c320b22329ae","sha256":"8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f","sha512":"669b0e9a545057acbdd3b4c8d1d2811eaf4c776f679da1083e591ff38ae7684467abacef5af3d4aabd9fb7c335692dbca0def63ddac2cd28d8e14e95680c3511","ssdeep":"384:XriNpnjyMkg8XMtExRN1w29JIOzahXtO2nJ65:GijgSWuanfJ65","tlshash":"8d92d7def645723613f76076913f220b733b35a528068459812adbc22c3d98f6267f6e","first_seen":"2024-06-07T09:21:23Z","last_seen":"2026-04-05T04:38:59.114194Z","times_seen":330312,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":4,"connect":1,"send":0,"wait":13,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.718Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://akiraylashop.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 22 Oct 2025 19:10:22 GMT\r\nexpires: Thu, 22 Oct 2026 19:10:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nage: 66904\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-04-05T04:48:32.649452Z","times_seen":307510,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":134,"dns":4,"connect":24,"send":0,"wait":29,"receive":2,"ssl":99},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Montserrat:wght@400;500;700\u0026family=Roboto:wght@300;400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:34:12 GMT","end":"Wed, 24 Dec 2025 14:34:11 GMT"},"fingerprint":{"sha1":"A8:1F:72:36:24:F2:F6:E0:7B:67:5F:39:3B:77:D6:8D:FC:AA:91:DF","sha256":"C0:8F:C7:95:96:3C:18:D4:60:5F:92:EC:FE:5D:AB:58:62:6D:05:D5:A1:3F:B1:EC:B0:88:5F:E3:9E:21:52:BF"}}},"request":{"raw":"GET /css2?family=Montserrat:wght@400;500;700\u0026family=Roboto:wght@300;400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 23 Oct 2025 13:45:26 GMT\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28121,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"44b5638075199390459a295a3fb1f3b5","sha1":"649bff85363bd7851bd3f809e232d628d0edcecb","sha256":"fcae65161129edc47f5b605bff3feee16c44e111e72c60568f3bdbda68d7386a","sha512":"43dcdf17f3d241bb573734e11cafcf1c71fff77571caf129c956e0bf0d131d91c86b75ed96d5f0753524057e0d41b9d10d965dae52f267d7bf28e775baa58974","ssdeep":"768:9c70afUQRptmJKBLfhQE8YtCR6UfaQ7zfTYHw+fQQVNJR:UBiad","tlshash":"eac22ca1041754009b835cd223cebf35fe4e92217051c0b9abfdab6beddbc66426936d","first_seen":"2025-10-23T13:45:57.847266Z","last_seen":"2025-10-23T13:45:57.847266Z","times_seen":1,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":126,"dns":1,"connect":15,"send":0,"wait":35,"receive":0,"ssl":124},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"akiraylashop.xyz/gallery/residentevilvillage.jpg","fqdn":"akiraylashop.xyz","domain":"akiraylashop.xyz","tld":"xyz"},"ip":{"addr":"172.67.143.9","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://akiraylashop.xyz/","date":"2025-10-23T13:45:26.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"akiraylashop.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 22:59:05 GMT","end":"Fri, 12 Dec 2025 13:56:14 GMT"},"fingerprint":{"sha1":"81:29:0A:E1:40:D1:67:40:72:EE:83:4D:70:83:92:B2:E1:47:A4:DF","sha256":"FC:C6:7C:D2:40:58:67:84:B1:54:9E:F5:8F:AE:C4:2F:CB:7E:0A:C8:F4:F2:37:40:6E:E7:E2:06:50:68:52:55"}}},"request":{"raw":"GET /gallery/residentevilvillage.jpg HTTP/1.1\r\nHost: akiraylashop.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://akiraylashop.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 23 Oct 2025 13:45:26 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 49929\r\ncache-control: public, max-age=691200\r\nexpires: Fri, 31 Oct 2025 13:45:26 GMT\r\nlast-modified: Thu, 22 May 2025 17:35:58 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=h9v0rF%2F9fOqNlvUv%2B8rmfSTNqOC7dJ%2FeeVjX4NJJJHAMQQxg6T%2FCaQTnG2eTqDDQN1%2FPNz4g5LazVky3A9WhueJbZDLgByYsMDdtBysb7hY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9931acc48decdfec-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":49929,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 440x441, components 3","md5":"cde324f5fbcd3f75c7e1fababe8c94c9","sha1":"572f22d1af8c91b9e8ddf06fc5a1a7dccc231f5f","sha256":"b53207114e05179fd3126d64095bfdf22d2e61d5d7a83531aaca24906192c5bb","sha512":"bc45f817d437e7c38e04b6ed00f485f35f15ef50f16043b24ae07c78d7fa012280527abbd75dfb708bd7e74a0bf947f88013dcef80d72582dbc6ad5274ba2b48","ssdeep":"768:SbLAbG2l6rybARLR+mhdQ4XBlUE15H/E1oyZgbOVKvyp+a9LFkSO:Soy2eybQ+kdtMM5E1cbO4vy79LFI","tlshash":"d72301f3ae189bb03f9b90c4995f1c5ba5f29d08d1b8621413b4f27d2791be980f0798","first_seen":"2025-10-23T13:45:57.849806Z","last_seen":"2025-10-23T13:45:57.849806Z","times_seen":1,"resource_available":false,"data":null}},"time_used":352,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":78,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-23","alert":"Sinkholed","trigger":"akiraylashop.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}}]}