{"report_id":"d1fec70d-9eb5-4147-845e-fff73234cf54","version":6,"status":"done","tags":[],"date":"2026-03-15T04:55:00Z","url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"172.67.191.53","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"title":"International law firm - legal international services and consultations from Incluence","dom":{"size":247227,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (45923)","md5":"29f30eab819d38c23450c91e2ca44aa4","sha1":"7d69408de55b91f5641a84d6e4e17147242d095c","sha256":"242d981b45c858fe0b1e123f3a6a2427dd190a786449d1f8b41e7d6409eb6128","sha512":"51e4dd8e675a50e22c89038e38f333447000967cf0b0eec6ae0b7f6ec98b7cac75912609532ac7663858692dbd17825103160f9a313f4526dcaac2f86549292c","ssdeep":"3072:BY5LynxTgWM68oqXpCQxBtEuPtmbduf1x8wa9C5aQxlZqy9/Fo:25WnxTgWM68oqXHBemQdGa9GaQN/Fo","tlshash":"3f34d40ad024dc29db890d69abf22e36f08dc04b458b1c69b7efee1153c15f177a3a95","dom_hash":"domhash0199d2e8f1a09bd523ac104450b0f06f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"172.67.191.53","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-19T04:55:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.google.com","ip":{"addr":"142.251.156.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2026-03-08T22:29:09.758152Z","alert_count":0,"request_count":2,"received_data":1007,"sent_data":1944,"comment":"","tags":null,"fingerprints":null},{"fqdn":"incluence-strapi.adm-devs.com","ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2023-07-26","domain_rank":0,"first_seen":"2025-12-23T10:16:20.107958Z","last_seen":"2025-12-23T10:16:20.107958Z","alert_count":0,"request_count":13,"received_data":35297,"sent_data":6149,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"test-4930-test.com","ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":82,"request_count":41,"received_data":4801283,"sent_data":21689,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-03-08T22:22:58.987044Z","alert_count":0,"request_count":3,"received_data":1256756,"sent_data":1338,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"region1.analytics.google.com","ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22257,"first_seen":"2022-03-17T11:26:33Z","last_seen":"2026-03-08T22:38:10.903448Z","alert_count":0,"request_count":1,"received_data":852,"sent_data":993,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.no","ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2001-02-26","domain_rank":92680,"first_seen":"2012-06-26T23:22:08Z","last_seen":"2026-03-08T22:32:53.659808Z","alert_count":0,"request_count":1,"received_data":580,"sent_data":681,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"de21f459ab20d52e2f454fe1e07b476f","sha1":"120ec369d51b4bbcfebf0dab10bae20106212e2c","sha256":"4db1eab13993d5e46306b39a5ac169c8a9ffc7f9163231e5617afd91d8eb4885","sha512":"ed6b67608b2cf472661ccd43fad88e7ef7e018150323cde5a5e2707cc8248d86454f127cdfe58a9ddda7574a67cd9c45b99aa7814042727e2ebcc60a6214b239","ssdeep":"","tlshash":"f2f0d45f2c43a49633fa353dc327566a3752070364c2d409fa4dc4543fd49951c469ce","size":575,"data":"","first_seen":"2025-12-23T10:16:28.72444Z","last_seen":"2026-03-15T05:07:35.147858Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/7089-a09219df6e5bd3989aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf67f1b77d3a3b5956547446ab74de9e","sha1":"9767699dc9b485fdf622898eecb38a7021807791","sha256":"072f31c2d5e66d6eead9643d0f4beeb6ea28b7c4dd82ab4c6236cea350438d4b","sha512":"5927eed5f083348e961857634c839fcfc34376fae1a9a77e3f1741e8b4139cc752787048829dda8634feed73893dc18d07313f3183254be82a0d3c74b0edcbe0","ssdeep":"192:WaRUnylTo2IxtXzmx+j2JX32epYNG6MNCqIqWjZ2wLQHJvtoiMYMVagnePE2N:WainGoXQJ2epHvkqcjYMxLuN","tlshash":"b33292e9b1d2f8a243ab2060843f201bf27f5d35642de040e326ddd5b8a565dd073faa","size":11825,"data":"","first_seen":"2026-03-15T04:55:12.909412Z","last_seen":"2026-03-15T05:07:35.095757Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/9757-cedf4e6c6cdee72f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8412c8bab5f24b8a653c43d4ee527f8c","sha1":"ba02cc70c14bd85a349377f0af7214e687ee9e02","sha256":"1e9c4c28b76c96f7f7e709a99d5b7db07ffcc6bd28a8da8088d2048b2a1375a5","sha512":"50229d3f85a2e6c6a517a76248ddc219b1180338d2b8e90592e6f1129aa6b91139c7363b3f3b8077c850bee0fa58c59078a886a5ce7089529deaf223b1545e80","ssdeep":"6144:JMsSo2Fkqy/1RTogHBe1EjhPwoooj3ipizv4GCnwSreWhps++tg/ZGC:tSo22q4RToOvhooR24vEnwSreWLsrC","tlshash":"abd44dd5b681b42157c791aa803f0106f73a6428240e443cfa68d9db7c79e8e917ffb6","size":614722,"data":"","first_seen":"2026-03-15T04:55:12.964009Z","last_seen":"2026-03-15T05:07:35.113521Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"2f756ba03c076a97eaafbc70d535adec","sha1":"a53ea49ce61ecf4cedab4adfc55e04fd15d32794","sha256":"82e200482d689d5687acdf047270a227c40fbf34bdbde2788af8c02358e6160c","sha512":"7b5c075f1ad5a6d6ce5003581d319347129505cbd490590fdc518c0d134a2eaff279ff10ba56076a2fa52bbd6623fd1177af5a20a6a6bc2ca36183379616e364","ssdeep":"","tlshash":"8f01e1da6c527c7673ed2b29c3bb519a2352330454924455be4e881317da4821c42dce","size":662,"data":"","first_seen":"2025-12-23T10:16:28.721975Z","last_seen":"2026-03-15T05:07:35.136064Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0e3004fe618e68db6b5533d029b7c6c0","sha1":"60e5486686245f8c8da6096ae0676427f61b6db9","sha256":"ee242920f7922ee3a8dd45c39da0bc56679a3fa3072081a938a34f6a3e06fc75","sha512":"629037022c9178efb5d097291899b94a6f2a41ac153c7238ce91a5151ebf0a32e1d6c0f4bcc606c97e1fa7cc85a5db06120b08e4662fa17674b7684d25c83644","ssdeep":"","tlshash":"c101e1ee6c927c7673e92b29c3b745aa2352330410a24495bb4e84532bda8921842dce","size":663,"data":"","first_seen":"2025-12-23T10:16:28.723262Z","last_seen":"2026-03-15T05:07:35.137476Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-18T11:32:31.57261Z","times_seen":163790,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"218ae8cdec606c3b3a8bdaa391e5fddc","sha1":"dac6739abb60e4b84f80d45cbfcffef85fef2130","sha256":"b95e54acce973b63aede38ee8a7b32af4a2af91d021b49514ef92397bc3047b9","sha512":"f90f09351cacb93553eab1c33fb5554db803aafd4badd15939f4b49634b1531086ee4097b12b3ce662a262d0e0b404927b59c373a262649576affbd9bb1549bf","ssdeep":"","tlshash":"89d08c88210b0c7152b72a024b2fa200b006235298a089213a0ea3044f21e43e744854","size":204,"data":"","first_seen":"2025-12-23T10:16:28.727144Z","last_seen":"2026-03-15T05:07:35.150964Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=UA-173249582-1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"726735f99601af8b5d4cf7ba4fd01527","sha1":"9d29e8ea0f1aecb2df8e62f7c11b064b95eddd86","sha256":"e52266875f068e4534a5be1559871d8e9a0278b5a2626a6053deb538e36567c7","sha512":"cb26a6242e6a02be11f2794084cb8e0b7b89329f9437ed6ac3c0cb534e3d0342526905b0772e88e9b8930d8c9c511a0831c17223488b95daa346b817262a2233","ssdeep":"6144:uKleMxlq0aYMN3jpQQ84hNyArZ7M2aXX3/kZGf9bQS2/X:oeRaJ3GQ8lvtb0/","tlshash":"9a7419cdb3d6702293a3a478503f018bb27a7992f84cc899f185d9d42e7069a4277f7d","size":345774,"data":"","first_seen":"2026-03-15T04:55:12.881869Z","last_seen":"2026-03-15T04:55:12.881869Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-QVF6EFRFSP\u0026cx=c\u0026gtm=4e63c0h2","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8d125c7e173095cedc15d87c6a2ddca5","sha1":"d3aadda30b549ee2c6f7abd57a93a0d2eb4a2da8","sha256":"42c9b8c74d40592ffba4cae49a7bfce79382e4b9efe48873a0c6ad36887e140b","sha512":"29da1088955f3b0d2e974ce1a5cadabe781e6bebc70712f0df3416b315a088df89b36c8d3a8d9c895dca4af026aa548799396c88ee2810e66f6148dac8e34d32","ssdeep":"6144:9+KleM+Abwq0aY2N3jprC51Q84hjASArZ7M2aOX3/JYZNmcT1ATvm+:qpLRa/3m1Q80KvKMj","tlshash":"55a4f9ceb3c67426929af478503f01cba97b25a2b45cc89af189ccf02d7459a5137f78","size":491912,"data":"","first_seen":"2026-03-15T04:55:12.960025Z","last_seen":"2026-03-15T04:55:12.960025Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-18T11:29:56.800583Z","times_seen":372167,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ef704909553b739431a97fac92b302be","sha1":"137acade8f0850cb0566441bb8957b2cbf05f949","sha256":"7d8a5b11f6f5ce97b946a6ee431ae0636190f12bd7e21472ba10ac07b233e117","sha512":"dc8a39a66d59b816c680a7424876b8d567e4e741c0932d53d098f5a09a72a3d5afdd1fc04625ec88a73e74ad48f8c32f4c1712705ec16de3d9c30ebcba7b92e7","ssdeep":"","tlshash":"bd112c89f249dcdd682e9627a6722ca440ccebae02e185cea2cec55f47e5475218914f","size":876,"data":"","first_seen":"2026-03-15T04:55:12.967834Z","last_seen":"2026-03-15T05:07:35.139027Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1002dcd2da36a964e03e418623cf5189","sha1":"eb5e166eb1f71d00ce02d59547cd2b22ff90e5f7","sha256":"5a99d17d674cd60b08f2572af43403bfb2a49689acf925c6c6d3c8458b6a4ea5","sha512":"c82f1eaac2c7ab8e22f245a2cf72dd09ea506b7b7a1319fd3c963bedb4650111ca614bb4a53bf403ba07f3198031ea828c554a392c41341d523037732b577263","ssdeep":"","tlshash":"f2619b2d6005dd4fec6e3d69027e9d3a54cc8a7f43e5def88688ce150a8207927d6dc1","size":3174,"data":"","first_seen":"2026-03-15T04:55:12.968587Z","last_seen":"2026-03-15T05:07:35.141389Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"913874e1933ddd87611a7c040e5f85e5","sha1":"15d68771325ef24aadc032063c831d5b24d578c8","sha256":"7b70b8149242c11ac4decee733760edfca95a606bd8f40189850599d08f02250","sha512":"24e1c115f13e8219a0426153eb7d7e7abe996ef1090b99af3589db543e7457c4249d6b0d6e1fd31ea6dc89adc43b4e7f14f08bb52d7916be809d634590bd2cf5","ssdeep":"","tlshash":"cfc0c090dc42cc1cc3660f321c3b0d3921ccc56403054106dcc6ce280981b3005b1ec9","size":185,"data":"","first_seen":"2025-07-30T06:30:11.886632Z","last_seen":"2026-06-18T11:26:36.011498Z","times_seen":2866,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"783f1ee447dbcee0e9d1539c580d6043","sha1":"b7932d9d1479c8a7baf453529806b48ec93ed3e7","sha256":"47c9590507c730f6c87f84659284b7b5e400af6aae0ecf5c66bcb717d86c85e9","sha512":"4c77041ee0461a7ab7738e336d22f597ef3fb560e20eb9f9585583b3ec15e82ed88050698408cb2f00865ca7ed518ad0c0237cfae57b9352c23a7f61d86eb124","ssdeep":"","tlshash":"f0e0c0ca741348b1b5ef997a23f5d124b083660938191c32feeec824af5c68b48665ac","size":427,"data":"","first_seen":"2026-03-15T04:55:12.969828Z","last_seen":"2026-03-15T05:07:35.155214Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c22f5a3edd99f86596428e1cb0ffd5dd","sha1":"7648d4cf59def80e554320e963dd3015683251d3","sha256":"aca62cc7105e252fb2878bb708d7f2ee46cadda097fc8e344cc166d7d2826ba6","sha512":"348734df4a2542ab0ec6915d6da9fd5d089db05ae8b943f3e6eaf6628de1156a3bf22fe3412a4fac970b8403528374109655d6b790509ea63d9881f105daf2e3","ssdeep":"","tlshash":"15e0722a30c3003a22b796aa23f7810a2522370fc48ecb127e6fc6d61f28ca2040690c","size":353,"data":"","first_seen":"2025-12-23T10:16:28.725564Z","last_seen":"2026-03-15T05:07:35.148421Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/ed9f2dc4-188e71e83af898c09aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"68f8b0750c6a1f3c136f5a21213e1e79","sha1":"468d7d5383116fe6a9a3b15e551af9794653ac34","sha256":"50f26af1e68ae957e9aee1f2f622d3694eca257cf92602d217130845d23d77ec","sha512":"711af69bce7e37e7a2d7a65203f4c7b697738639b5400874ab86c34be22eff0f23e6b2fcc59a18d7ba130ce69eedc654bbb66cd85be62356eea8f07d3c7b354d","ssdeep":"12288:SomB6T1qCex7+5uYbSUzXkyTX4UrDCBPv:SoC6T19CGYUqPv","tlshash":"fae46cd97590f5b4a6a347e211ff440af33e7612501d8420fb1cf8ca57980eaa1a7fad","size":668023,"data":"","first_seen":"2026-01-21T22:34:49.879819Z","last_seen":"2026-06-14T02:15:56.581121Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"caa00e1dfe6295cadcd671e175f74a2e","sha1":"01f01b6fc7c8fdd50b9917bafecf373a4d2dbaef","sha256":"c0cd3b49ab04cf2219b8b1671774ec0732475c6b65bad2c4e1d1797b0dec50cc","sha512":"0c1ae61b71e4e62f04bef02448565f88f6aa70f912fbdfc1a308bc8c529a218dd0af466144418bc4967ab339eae2519a735ed4140e49025e6aec96f67eb802a5","ssdeep":"","tlshash":"b5900268e55a0c959036491254381c054798c40c00444d8053e0508a54a1f55a549f49","size":55,"data":"","first_seen":"2025-08-15T12:41:12.055806Z","last_seen":"2026-03-15T05:07:35.142624Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/webpack-2dd5aba9230894dc9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c307d547870796177a1b86515868a19","sha1":"ce7ac63e2a16e2a085c7c31dde853842fe71c529","sha256":"91511cd1f917ce11496cf420d24cd1317322dd1d744c10cf50f14e338f3771c8","sha512":"3a8321a3a36a62415d9a3f05d78492bd7b813ba7f85dd2c13a1a9a56359f778f334ae4d8b371b10c9464a6f1fd1bcbe133be43eec12027cdaff9473eecbd44d0","ssdeep":"96:04J2mRxqWitutoQ2C7CBVI3VMXSGFGjTOnwXP6pZxD:02Atk7GAuXkjTLXyLxD","tlshash":"e481c6ba3255eab556f100c9983ec151fa2d213b151ae8b0a71bdcb9a474ed10622ff3","size":4197,"data":"","first_seen":"2026-03-15T04:55:12.917649Z","last_seen":"2026-03-15T05:07:35.117465Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/3834-0fb4b8a41cf1688f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c0c59d9c643daed16088463f4de11999","sha1":"7efc819016571c2d77e2cf686c618ec5c18d4661","sha256":"6119260c18edc63fb1dd7656a2e048808f5d8df95cd3b87185ce71264bacf981","sha512":"45f9c5c490bd1175a1d02c418145ea89bbfe3682899828060ba707739af0cc6deb23c1f0626e0217d812e017eabc2a68b22105e50320c00b0fad5d9ad04809d9","ssdeep":"384:Mxg5EG6W7g7vrDD64N7jznKa8MmURtK8Eu6wu6hnx6+ItJnw6kK5Af2pVMI:x5Pg7vrvXL8NGYu6wu6hnx6+I/Afep","tlshash":"9782fac8f4dab069a13355dc81af4059621f35249e0dfc22febe48a107d59c8e263f6e","size":18241,"data":"","first_seen":"2026-03-15T04:55:12.895415Z","last_seen":"2026-03-15T05:07:35.099944Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b483a3fe8367e252e71db6a645a5f0f0","sha1":"d99e7611ce0f44873f5215b936867a417770a3c6","sha256":"b478902c51f5a2bd6c68b00f93df1446de7a5b6b98bea9cfb7b291f1aaed0ed5","sha512":"0629a37cd88ca221359f8ae1af5fb047150e8822fa9d91f4c73d78a5c4c753ab5424d5b1bd989e0b1ce52ee598ba3606cd758c8534c92c5cc790e0d7f641059c","ssdeep":"","tlshash":"406110e7ac13dd08cf568d0521be3c7590cd839651c6b853a1c9dea051c3d746ae3772","size":3187,"data":"","first_seen":"2026-03-15T04:55:12.972689Z","last_seen":"2026-03-15T05:07:35.143219Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"20281e45103fdcedd0a42ece4b5d8566","sha1":"365152b9a541be927ed138e1b4a9eaeb8b0fe0de","sha256":"f158da4b9371d073bc1d9cca38044807cb946788682b45acc28a6cadbba77aba","sha512":"92f35e9bde5ccb7ebd0ed0d1d85bf89f719bc588aa9458453c0df76843d28470015e2616fbee4ee915659dd6fec41a9c4b52fb78ac3b5c09501b5a8b8d86b4c1","ssdeep":"","tlshash":"cb900470f1400c574431001314fc711115dcd14c04010d001f515f473c131557f0dd47","size":45,"data":"","first_seen":"2025-07-25T19:48:55.250327Z","last_seen":"2026-06-18T11:26:36.013292Z","times_seen":5491,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"34eda56130ffef1bcf62c319b6706c6a","sha1":"7bf5b66cdb9f7f631b421a3389eaf2ac905f2748","sha256":"6f7a649c61bdd284b4039c79502e6f99a98fb4b2285bbb200263a525d389bfcd","sha512":"fd3340c30bda738ee99b892f3619fcc01e513d420ad823f502d1b6bd33667b5bbce76d08a3888a2f460d110bef5e452452413806eb6f385d1d279ceaedc93596","ssdeep":"","tlshash":"fdf0c20fa6c4de5c285eae2149723ee6844cda7b02bd491bd21df49f57d103e230805e","size":596,"data":"","first_seen":"2026-03-15T04:55:12.973949Z","last_seen":"2026-03-15T05:07:35.144439Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"abdf94ab1ec4afa994f27e65db7b6de5","sha1":"6c73b1d2c78668929f26748d70aed554844d2be1","sha256":"7244a99a3d7ffda47d314c2aa8cf24524df94c65edd8bd97f4cc88c4cb8d5629","sha512":"903b0a133dbe5237d9850c84b401ce733cb0c611130f263bed664ed6bd0491fe11c6f0d7e2f27703772e5944e722c9c452751882c7639d6d05e4d8901023294f","ssdeep":"96:LGZmOAWNgdhleUhl0BXwBi2kBe0ma50CDRGRBUks+4:rOvShlFhl0Jwc2GeLajRGRqh","tlshash":"da9142df6809dc71f9ca7c1911fa9d3a305a118905c5efb5fb8cdc110b864ba3882ac8","size":4428,"data":"","first_seen":"2026-03-15T04:55:12.974741Z","last_seen":"2026-03-15T05:07:35.145021Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"88eb554e2e1082d316bc1ac236b440f9","sha1":"e4a7f22269e29ea5f97e0e6c669a6e68cffdf3b9","sha256":"93818248245e607b41d4bc2c8ef527cb6df41e88c000c3eda34c47f98e2bd5cf","sha512":"f76b401b1ea6ef4d212e4ba405071815c11ff47f0a3b838da4e8f672163c76b7748e44e4e799f3f9415b09454826f4009066e78b8a36253eb368d0250f3b89cd","ssdeep":"","tlshash":"f6f09e9a2c43a45633fa2539c32b666a2756170368c2d415ba4d84142fd89961c46d8e","size":574,"data":"","first_seen":"2025-12-23T10:16:28.728486Z","last_seen":"2026-03-15T05:07:35.152667Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/main-app-06999b77aed4f71c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"653025f107e02bd51748eca07e3997df","sha1":"4d9cb486188da651f4bbb7c4c2f2218d7d9cb952","sha256":"02e9a3b6263c352edbbd45f446b67de0a506732eebda36c097c33f22326b95f5","sha512":"dff4f8ab39ea4dacfcec6574f90a6c1594300e0bd5bed7624d19240bb3363532139c46624fa715981369a5962a98294d852a836a017eb07fe45b806afdb3c01e","ssdeep":"","tlshash":"a2f018965f4cf41f5c266e74fe97ace3181f4135202b4e647900de612c27b6ce260508","size":579,"data":"","first_seen":"2026-03-15T04:55:12.959205Z","last_seen":"2026-03-15T05:07:35.130881Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a9661226e3a63859a936c540ba050ba2","sha1":"3723372e10ee440631f63c3af34cecf5aeee7e3f","sha256":"6d6831e4e2881872d4be6b9a77e969b87c812cf4cf12d4970934da1a962eeb4b","sha512":"4cabd14d2027b82f8d0d4477f3a6e4d64eb969a09c6743db90b11b25ecb49bf70b836b056e622327657f32a5f33c0d2798efa48ecf686f7aec4d16ef139ca05a","ssdeep":"","tlshash":"cd31d10f66c4de9c289eaf2249713ee6884cda7712fd491bd25ef49f67d103a230805e","size":1830,"data":"","first_seen":"2026-03-15T04:55:12.976386Z","last_seen":"2026-03-15T05:07:35.146023Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"aa032d1acc42c9f25f46a3ce106ec9ef","sha1":"f7d66775bc7144875b2b4d8a4509fac5a39a812e","sha256":"9088e25f67e94b1ca75973d539e54f60b612e307d4f789a0c475337d23747a60","sha512":"b8ec83f6ef95105af887e61bd39fc80f55a1975e6bd8e0363102c97a70f6c6bdc8ed2e37b0aa1209cde91ab744cbc350ec3d31a1e9dd4a63a5fe9a17fdae9451","ssdeep":"768:mDN7/hxxWaKdYTrx4T2QQsbihGspNvrS2i5J7T4QH67DDKx0+AGXQSzUsjFckeRS:oxUOhf+IUWMfEn8oqXd","tlshash":"d9638f56e034cc21d3892d8ebfb16e3fa31f8145421d6abab7d7e950e4060f4b5e24e6","size":67684,"data":"","first_seen":"2026-03-15T04:55:12.977174Z","last_seen":"2026-03-15T05:07:35.146623Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2942def2d94b6e1b0b79b3566ee32eb2","sha1":"5ee7abdbbd36f0cbe4ea166f916879ea2d1fc08b","sha256":"9a300fbc92910404cfc2d0e40ded6dfadc3699b9958e05d57d822625f780773f","sha512":"28a77dfdb21a0f7e2ee27bd31811c5ada021b8f708f30a7396bf6b8514249da21a68fc5d18f32893c06d327c61097debcc28ae3826d19354651a84c24f387be7","ssdeep":"","tlshash":"eac02b8430f3226420b31038037713041143024f308c94337ffcc1006f0820b0c15108","size":155,"data":"","first_seen":"2023-11-17T13:20:29Z","last_seen":"2026-06-18T08:34:06.60357Z","times_seen":20050,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/7714-642f79b3d42149d19aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb2317e39ebfec4f37c6f92a7d37588a","sha1":"abb1eacf4966f47324451fb1bd4df8fb4d704807","sha256":"cf04ba22caf500d4bc431443a0df11058336bcd292dea24bcc3ffdd270609732","sha512":"cdac3e3feb7834a1c6d414c48e6e26a6da7f6aca74cbf01efd45d9cc522e481861c8803b9143e503fae1516d5e920ca5bf09c4958cc545fce44a3a53f7b16a1d","ssdeep":"1536:tuo+IhC8XXjF4j6Xli6blsbQ17xNp36Pj1XlvoL7n3K5RihqQHJtUsNBM:DIeRsvofnqQHJtUsPM","tlshash":"0bb3cd36b11e8dbfc36375d0858f908bb6786669178124e8fe281f39024b7da5e3d235","size":113213,"data":"","first_seen":"2026-03-15T04:55:12.901317Z","last_seen":"2026-03-15T05:07:35.123759Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/6922-899c12574a89b7019aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c34cbee15177055477395d2f098f88d4","sha1":"48de2e9fd3b1bd3f86b8e73d3bff352a77c1e4ee","sha256":"188170a9983684a3ef08c7178953cf59e828637a7702ad4a2b7965b3d634e183","sha512":"ba21e29f12890727ecb63bd8a9ef08250fab66f24648494674772d3b8d8af6567197cc12e82289dd7d4fdc90588417a9b4a971a4017305d4b07000f6d7d98a5d","ssdeep":"1536:IrPHSyb5lkZZa9eAoCHbBKrb3g9Vn9JnV6MbeMbkxHvcl5fwubNp1XUMgH5:cPHSQ9eAoCHEHAVn96i5LUrZ","tlshash":"e3833ad5b2d2f0664bad11d5943a0002f36add6d201ed4a8f3b4ace73564f8da0e6f39","size":82111,"data":"","first_seen":"2026-03-15T04:55:12.929312Z","last_seen":"2026-03-15T05:07:35.135451Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/4bd1b696-cc729d47eba2cee49aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4004d2af30bd6d785706bf90c1dde47b","sha1":"01c941f8150742edddc06adeaa5bd8880fbff05a","sha256":"c382df3dab1b557cc2e49df81b8e3328cb7d7c0287cace83a7ae6325e7535e84","sha512":"afeb1eb23a53f681242ee93797da76cfba0c44d08e6c4b91554f0af2331942bae990b1a66639f05ae19b9057608b607585b421162006b94b6877a645f6e405f8","ssdeep":"1536:HWEkaLGwcd4Mofwxnig5O0yK8QEVWhR6HSHDbxULwzLB7KCUrST5YBOPZSfL3p4:maL1MooL+HiDSLw0K4WSW","tlshash":"27f3e7ec3999e651aeb302a700df2803737c261b240d4d60a614fd9da5b845bb17bfde","size":172735,"data":"","first_seen":"2025-07-24T18:51:53.651215Z","last_seen":"2026-06-18T09:42:34.611562Z","times_seen":543,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/4743-dd7570059a374a9f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"bf64e6c313eb89640ba5a3df36c20f8a","sha1":"52653124c18ef5621ae999cc1ad0b9028d2b7e93","sha256":"514b6e1a79bf77a75b90d4a94fc313fab0b39408c3deee6a7b1a969f2d724412","sha512":"034a34137d0a55e874c2540d17a373bf327e5806903f129c1597d13f71a2d0709a5e9acc7c4e417e88b82e7506dd492afd8cb3054654033c210ec093b0cfabd0","ssdeep":"384:DLwLaGo0YQ4MLlniS5YQDDrQ32qzVscC9SbyMsI34dAarjX:DLwOG7YLMLliX4q2qzVscC9osIIdrjX","tlshash":"cc920ad8b0c778f115f305a0843f520b7139292d688e9450b3b7e9e625fadce6076fa9","size":20370,"data":"","first_seen":"2026-03-15T04:55:12.884351Z","last_seen":"2026-03-15T05:07:35.094095Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"dca3c06318b84f3bff2df28cd1c02e44","sha1":"dfd7a8aa3fa13c94ec5f390f66bbb0e22ada3314","sha256":"19c86203719d75c2823a49e6df34c6b1e9127a728f763c75571f72e6b14e117c","sha512":"3f0bc219dd0f105a265db3e62149b4b268c3dfd2360aa97eb13f30cf1e2e80e726f4082c583a01502752eff10c4af164bf14b98da4a86f0f7c99837873f4510e","ssdeep":"","tlshash":"13213fcbb40dd830e99b3d2a12f18d25208b310a408cab71bfdccd15176aabf1942a8c","size":1355,"data":"","first_seen":"2026-03-15T04:55:12.978404Z","last_seen":"2026-03-15T05:07:35.147235Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ef41d76c91c25a1a7ec1d90f1d324c4a","sha1":"931d93b1f1766cf0e3c9dd3b75f4355275febec4","sha256":"0eb92d9385e57cd8009370b7d7fa76bae086c08251bc466f2e951ebbf55b55ac","sha512":"5ec781c87f48eb91d7490ac3b1f746ac2e40a9faf390fdf0b39413ba75719672fdfd54a49ca5c66bf3051af6242ae280571395005d3d60e0eeae9626ff6db9ed","ssdeep":"","tlshash":"1621f31f6a48ce0ee87e6d26467a3cb6508cc93b03b94636c1dde94d17c103d2bd9059","size":1364,"data":"","first_seen":"2026-03-15T04:55:12.979087Z","last_seen":"2026-03-15T05:07:35.149575Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e5fa436674fcbb5103d102a6bb3850d0","sha1":"8bdf9c2e73dfc4123309e309c67fba5367876364","sha256":"4a1fc7f622d796fcaddbf4e9cfa5474b5ceb89b5d58ff22f1ac3d104c5ad909c","sha512":"4d7ea5f2a62e4eb6f654cdd500c1828f109a3f0d0146a22c5887ac77a9e570456ba71eb6e4f7696863c7ec3eab54c77f85bda8942445793682e863c544b2bd4a","ssdeep":"","tlshash":"6301d10fa2c4ce6c285e9e2249313ef6844cda7b12b9491be25de05f57d107a274804f","size":673,"data":"","first_seen":"2026-03-15T04:55:12.979903Z","last_seen":"2026-03-15T05:07:35.150312Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/3063-e527376824cf716c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba908138dffcd3bd7fed7443dae83f7d","sha1":"0b0f045f90f6e9e9f8598bc68d2dfd6e2ef686bb","sha256":"82cb1308a0ca925147325583dae837ded8b548c94631de6d6f9ba4fda810f0de","sha512":"9ce1601e6ce0d22b09864c642537695528fe0531cecb2f7a571cddfe7ac98b49e9a1ea984abbb42ed814f926d4be6cc56edad00476c5ddc5a407db304bba494a","ssdeep":"192:uv0uWtS6xU4j+j1WtKVWa2BcwdrU2J5vCGdzldiPlpXRFSY7L4B/:u9WtIqW1WTvNFkoA49","tlshash":"c762f86535a8fce6125390e1d43f001ef2797d72632ee2c06366c4c4a9b99d9a122f7a","size":15178,"data":"","first_seen":"2026-03-15T04:55:12.952275Z","last_seen":"2026-03-15T05:07:35.127397Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/page-c9f3c08587bbac8b9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a550de500731c37cc1803db0dfa8fd5f","sha1":"082c43d3685fb3e1091fcdb9f5157bb3f73326ec","sha256":"16d54bbdf695cf4d8ee4244f920e8fb5857eb0a24d14059529daa5ef63692f35","sha512":"ff6bd5a7f5b29ce8324ee1686db1bf4eba1b2c9a8e036a5f691838d9542a4f279fb2caa36ffe41bef22134385fea5a39120c342e5a85198d0f150fb6de64ac96","ssdeep":"384:ui7YvhbT8AWUQmoWCwtdw6TDW2HTZv1Z609+ZLXaAo7+:uo2hXfvCwtS6TtlNqxq+","tlshash":"9092418c60a5bfe87a5b08957e6f940d712f3b48da0f88b4b6b8a8561d4c1c47613fcd","size":19542,"data":"","first_seen":"2026-03-15T04:55:12.878542Z","last_seen":"2026-03-15T05:07:35.094781Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/5964-475b6674c25f019c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"eccb736544d4b4c9069ca6ab378f57c4","sha1":"8fbdd13ec856a08d392caa9577ba25c45488ae87","sha256":"4acbf99f8e878f4304abbd83979462e1356aff15643af62d574737eba46f487a","sha512":"230933c4d0a3e6d032a8649a99dacf269d63a6dac7cc8ba5f4033edee699bb378fcb8ba8b69e9b57347c0ff093ff1eb6eafb8d21a09ca7c286002326c9f7104a","ssdeep":"3072:LY5ypXBMwlO7AlqF9szR3JApDXCNubJMdzT:LBXOwlC5TGuDXC8bI","tlshash":"0c34d8e576d0f9e102a384e5843f400bf3396c36142eb4d0a366dcd5b9a45dea173faa","size":237603,"data":"","first_seen":"2026-03-15T04:55:12.898061Z","last_seen":"2026-03-15T05:07:35.093327Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"76d19a2ba605dbfbf05a7d3038977b3e","sha1":"27abdc8c85ca14b123e5504a8ca7d8e8fd58e30e","sha256":"f7edf6d983a35d115f9b701f3b81328cebb8c72d9e0937177a7c9210d3b6224e","sha512":"484c459d2b8ef49724037edb54c1ae95c0ce546227a29f720d9bb6ff7268825e61ecc146544d8cb5ded8324f3568bc4702ae2dd2edf769c7381f45da3319331a","ssdeep":"1536:DcgFXM4v72suM/PQxBtE2vbstGOogsmYw:cCQxBtEuw","tlshash":"5243011e5a28e899eac40d3597f76d71b4c8c04b0ccb2c285a6fef1513f1976ab23e51","size":57397,"data":"","first_seen":"2026-03-15T04:55:12.980821Z","last_seen":"2026-03-15T05:07:35.152103Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e62ff7becc1201d1d29edd559c8aade0","sha1":"7b7db6caf6c058775812a86c2d2eeba68480dc6e","sha256":"8eb38e5c61995e445bb0dc3a121dd31c0e4eb47801d3eb26bf5a8ff016b52dc5","sha512":"9cab6fc467f5f03e3831e7e90def531bfdbd9f37f578ebc836dade22d957d8148943b3bb8c7352ef29f1330a84b249354cd67a76104dbf5eedcf2724768fda69","ssdeep":"","tlshash":"a1e08c0fa281ce5e146e9f2208753da6549cda2b12b9051be25ee05f27d103a264945e","size":310,"data":"","first_seen":"2026-03-15T04:55:12.981608Z","last_seen":"2026-03-15T05:07:35.153251Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/layout-49d886cd8d7f0d949aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d07e31b5463c94b6870d2ceb8dabe7e","sha1":"9a563a0a5d972806927d3a0123817faac8782957","sha256":"7cc48fc14a9dd84c4998746e89f5ec19d2aea92af944dfaea2cebb9e7e8741b8","sha512":"c5b81bdbb6c91619657e215c2a660ce4605c1c5d5e24f99867f172deb54272743719709d6d23fa80b99598e137de8205fac4547ccce0fb347ec482f290e1b419","ssdeep":"768:LgyYkYZRpblPl3KWxobjojFWoBG5lW2aVrc5c9EdajA7lg8hhqUkPe14X:LWBLKzq+Z7lg8hhqUkPe14X","tlshash":"54b2c729f095759ca11b49c8e15f4c0cf22f6e58d70d88b5b3b2e4192ad34a8f652bec","size":24738,"data":"","first_seen":"2026-03-15T04:55:12.910282Z","last_seen":"2026-03-15T05:07:35.123017Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=AW-17660074394","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b6f8c7c45a37dd205637a385668a511","sha1":"29519b2360008b8470146f0fe97297eb25281d46","sha256":"ed9d9a27d9da4a168c7d3a24c157680963b702ee50e3d730552373a95dbab232","sha512":"7cd76a9dfaeaf6951b29ded9d5b4d155876b8a0577d9862eda66918344164e8f543325f4e13078313743de6c3f21c2f875932acb1d715a43c2f6e1d4c12829ca","ssdeep":"6144:CT0k+ECNF08vDOE8cvffVsgXBGOYsBxu5WpRSq7KB:43dCNCyOE8aBkgG","tlshash":"ce9419cdb3d6742293a7b478503f018ba57b6aa2b44cc895f189cce42d7469a4237f7c","size":417206,"data":"","first_seen":"2026-03-15T04:55:12.879995Z","last_seen":"2026-03-15T04:55:12.879995Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0eacd2597993223e5659454ad3d6800f","sha1":"4fc5229826b2634de1b56f02bcd4ca4d51877d8d","sha256":"3bf75a44d548af0f16bac86755d42257d47622915cf459d022bcb489bf9f3fe6","sha512":"a19fdd921216c0c0d736c7a4feaf660cbcafbac546cd90889c3fa966473f41758a8933eba8629ff872f5c3af1866dbcc7f7824194ebace8c2d1c8d96e7ffed46","ssdeep":"384:QIzhUFWf8zhNWxWf1zhx/WfZzhFI1jLioVkMrHw23ZWp1GTrpQldWqUvZUUxLOpL:QIzhUof8zhNWcf1zhxOfZzhFI1jLioV2","tlshash":"f0a2c7099a18e8adabc40da0c7b75d70b8c4c04b58d76c2c567abf2263f55f79316b82","size":21628,"data":"","first_seen":"2026-03-15T04:55:12.982394Z","last_seen":"2026-03-15T05:07:35.153823Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6db00f8db8dd6ca0bdaee2f020742b00","sha1":"444c5d46e76bda276171c6f02de445cc49ab2ff8","sha256":"1e0ffc12fd3a15f6648f4c727120ed9b8bf6ecd26588aa80cfc48b85667d0289","sha512":"2d88746c88bf4b465b8a320cf6959d7e11a40bc57ecae7ce5340cc7e73e99ce288f2617e09388f48826bc8a286b961e6906c99a9d751015f20e6019c05c9154b","ssdeep":"","tlshash":"93f050787046dd6cec873456157f7c3b251d95198a46cea081e8d901d5964787b416c4","size":499,"data":"","first_seen":"2026-03-15T04:55:12.98318Z","last_seen":"2026-03-15T05:07:35.154337Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c712212741090280fdc285763bb7d716","sha1":"a8f4c84f36facea65c1d81c6974e6ed3ee4a3826","sha256":"e73dd5852aa6d6625815743f16a459555e0b17e426fbdff8cfa714268097cba3","sha512":"1190b74bcb7f7b256192003b14ff2269424406e15e3f214f639ff980452679839039a686d590791ca2cd947e482e240f36637835cd26cbcec934789e033e6654","ssdeep":"","tlshash":"3611dd0fa186cd4f985e6f16097e7c76108cd53b07bd8b2ad29ee80a16c503e378618a","size":1109,"data":"","first_seen":"2026-03-15T04:55:12.984047Z","last_seen":"2026-03-15T05:07:35.155972Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ed44fc05cad2aa1129917a49c19b2990","sha1":"1da6535f27a0c5ab0e0ab8b665416120c6967145","sha256":"a89a9ff05bf0a436bd59de224401a076f802ce0d856283645fdb1d9ec0642b64","sha512":"c7ca2d08c311a4c51df2afb5232b54219bdd59f861e4890116360a72477081efefef057bdebb81c507682dd1a3628f9f7ac686415870c255440b48e04913b5ff","ssdeep":"","tlshash":"51e0c0ca741348b1b5ef997a23f5d124b083660938191c32feeec824af5c68b48665ac","size":415,"data":"","first_seen":"2026-03-15T04:55:12.984872Z","last_seen":"2026-03-15T05:07:35.136714Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/459-3e5863a59a5dd3599aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"74ea4b2090e3fff898b0be95c3aee090","sha1":"3824122bd57f582b26da3364af220dd97d99cf92","sha256":"8cd598a69d81e56b9848daa235285022d2a8f0759c4c49eef94f25ad4e3da5aa","sha512":"d376bdcc4b8e329e11e16fe126bc85def551d9869775e6fec9606eff465771721e7da82271eed99891071b1af05192e78b7e742d41658e882e62c397b1652948","ssdeep":"1536:sfVrO4MvBl6vHr8ftaG6xqoqQvHDvf8UainBtViA6wLFBLObfnjK67kEh:TOxqofNWmgDh","tlshash":"5993098aa221b57692eb129b92a5c151b3f54844b449c43c71f88cef55bc99c03feff8","size":90918,"data":"","first_seen":"2026-03-15T04:55:12.953152Z","last_seen":"2026-03-15T05:07:35.106526Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/not-found-26981fd91627fb149aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3b992a09e711859a77f29a064d382aec","sha1":"84a337f6dfeba7c1814a8cd35f72261a1736a0f3","sha256":"4dfa3a68587d0363e94010b4fbd7c7b4b65a9995761499e82de39b0b5fedfd30","sha512":"f2fc638cf8b22de905a33a654aaaefe251e8cd28bb0416d9fa8f9e108b7ccbf54bbca13a49b9c205ce7fe13f3dd0b8a26018c342071f025df8a650412583e8e6","ssdeep":"96:7CB4CDbOd6LNukMygDHIbztOzQ3FaQrF/6:7CX/LhOrIQQ3FFrF/6","tlshash":"3691f8dab04af4ca1ed104e4c57f5a47613b5934301f9e107072fdb504aafcda266f6a","size":4526,"data":"","first_seen":"2026-03-15T04:55:12.911205Z","last_seen":"2026-03-15T05:07:35.107215Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9cba82aa5875982e0d61df914c811442","sha1":"146d9bb214cac52f920721d1a32996c085ead4de","sha256":"ae8d4d834bc5e20a2f3ccf82d2e6ff2478e4e182a1ba530f01a2b83bbcb821a9","sha512":"f8b615070c733ce00415241ea96bcd906fc2da02063ff77e5846c9e8c175e70c5ad4a1f69b6af876bedfebdcc33bbab129094957ee7ee2553a93279a1f9487ba","ssdeep":"","tlshash":"98311a347057c96dfd8a2a487d3fccaf2508a185849dcb32f5fdea2087878759981ad4","size":1728,"data":"","first_seen":"2026-03-15T04:55:12.985795Z","last_seen":"2026-03-15T05:07:35.156492Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"434ac0851813948e6c45e863a0f1f3ee","sha1":"e227a04fbc4bf7367b44fd5c80831d784ef7633f","sha256":"ba747b42183aef4a0f29b95d2ce4749742220965e1a9bdd668e39a09802e912c","sha512":"84ece2b8bfdd5cb511c060f214c5a973c99e7cf497f3c1f9e41bee018254769f82f30399d2b1dd15e3fe930d8d3337cb1352729092e3a723027fa0c9e4b905da","ssdeep":"","tlshash":"3741f51bb417cc6fd4af8d9e1b7f3c360089d86b0b49be60d0eada14194527d3ad7a90","size":2372,"data":"","first_seen":"2026-03-15T04:55:12.986559Z","last_seen":"2026-03-15T05:07:35.157064Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8129ea1ab52b2fdb3694d11ca4f2f048","sha1":"f0ec110c88ebf63918311b917719c0277de945f1","sha256":"de5e08435f530aa99fcaf3ec3e429121306b59624b51f6f1b91c77fddab6db02","sha512":"dff8de718220452ae2f5ffb8275616800970d2e18ff69387423492f1f1bf8efcb65d5180a09bc5768bc1f62ff333d319c43d84b258bb35cf2b3db011ce0d0e14","ssdeep":"","tlshash":"c941192ab416cc5fd4af4d8d1f7f2c7e105dd96b0b857e60c0eeda14090663c2ad3a81","size":2354,"data":"","first_seen":"2026-03-15T04:55:12.987313Z","last_seen":"2026-03-15T05:07:35.157618Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5fcadc43bf7e1356654308b20699cbff","sha1":"cb56987282e648fced534973446bc7adf5761de8","sha256":"c3747b63130e3dce2ce03db90441b9d995988b4a38629dac6fcc3058d3c4b021","sha512":"e53a4b373aa293d59610f3fefe80fabd61268617a605f7194f2fc8e664a4954ae34401576067091263274b4eff59d8ba8e6268c30b62c0004a9197cc4e3c3f53","ssdeep":"","tlshash":"2e11a33ab006cc4fd4aead8e4b3f6c39108dd46b0685eeb0c499da10198263d2ad7ac0","size":874,"data":"","first_seen":"2026-03-15T04:55:12.988064Z","last_seen":"2026-03-15T05:07:35.158147Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.google.com/ccm/collect?frm=0\u0026en=page_view\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026scrsrc=www.googletagmanager.com\u0026rnd=351181641.1773550475\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026auid=1055936571.1773550475\u0026navt=n\u0026npa=1\u0026gtm=45be63b1v9234071172za200zd9234071172xec\u0026gcd=13l3l3l2l1l1\u0026dma_cps=a\u0026dma=1\u0026tag_exp=102015666~103116026~103200004~115616986~115938465~115938469~116024733~117484252\u0026apve=1\u0026apvf=f\u0026apvc=1\u0026tids=AW-17660074394\u0026tid=AW-17660074394\u0026tft=1773550474752\u0026tfd=1511","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.156.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:35.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 08:39:05 GMT","end":"Mon, 13 Apr 2026 08:39:04 GMT"},"fingerprint":{"sha1":"AC:37:C7:AF:75:CB:27:69:D4:EC:B6:A6:68:E1:51:4A:A3:99:78:B0","sha256":"63:86:A6:69:FF:ED:40:2B:88:13:6E:3E:4F:01:08:AB:8D:96:19:72:D3:22:DD:14:05:79:8E:5D:58:1F:0D:39"}}},"request":{"raw":"GET /ccm/collect?frm=0\u0026en=page_view\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026scrsrc=www.googletagmanager.com\u0026rnd=351181641.1773550475\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026auid=1055936571.1773550475\u0026navt=n\u0026npa=1\u0026gtm=45be63b1v9234071172za200zd9234071172xec\u0026gcd=13l3l3l2l1l1\u0026dma_cps=a\u0026dma=1\u0026tag_exp=102015666~103116026~103200004~115616986~115938465~115938469~116024733~117484252\u0026apve=1\u0026apvf=f\u0026apvc=1\u0026tids=AW-17660074394\u0026tid=AW-17660074394\u0026tft=1773550474752\u0026tfd=1511 HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\ncontent-type: text/plain\r\nvary: Origin, X-Origin, Referer\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com//uploads/5e8db3d7f83802f8c8584e81_social_whatsapp_5cabdf099f.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET //uploads/5e8db3d7f83802f8c8584e81_social_whatsapp_5cabdf099f.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:23:52 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1991,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"44dafee79ff780b25a087bca2f244701","sha1":"e9a5419810fe7b0bdccf6b35c8cf9b50db7ca786","sha256":"7268fa9f634775d5003e26905218d30553170aeb432f8bbd91c5a20d1730c706","sha512":"dc05302bb92c4ec822784cd5d25f3a1052c6ac73eae13220c798bef02ba9f8caf1c84690bc79b3259fcb8a6036486b72548ee9852831ba015e8e50937d919a22","ssdeep":"","tlshash":"1c4123fef7d2b7e0d40ae3f0943151a2768728fe3e09da8d82619da0f54105d449dc09","first_seen":"2025-12-23T10:16:28.692399Z","last_seen":"2026-03-15T05:07:35.105692Z","times_seen":3,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/about-us?_rsc=8rrgv","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /about-us?_rsc=8rrgv HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nRSC: 1\r\nNext-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%5B%22locale%22%2C%22en%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D%7D%2Cnull%2Cnull%5D\r\nNext-Router-Prefetch: 1\r\nNext-Url: /en\r\nx-deployment-id: dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O667Sya9KmHXSU3SZe6euSUi20fie0fStyDNEjXonYJqdRzCBnTfhoQVGpNTG6O5OCsnLcta0gBDGim8kTjCvjR5yZcalUIqyGd6mjGeyzWf1g%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebc26b9235a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"cad5a56a8ec85fc00598d7276bf4307c","sha1":"e3d0af49d797b0d390d1a7a8773da9e76c108f6d","sha256":"5787192ade40c6601ff31fa636c1d60d8fed07bd07094518634d2eb19991b294","sha512":"3b6d51571b82e5d98d6e0283c7ee602fb30c9bed86598763289fafa8ebfad349a09dfd368fa3a2eb9d217cf0dcc3bbcae951611ea73eeb2143915bfe4a74ba9d","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfHVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQpVdmnxTgWM68oqXHBemQdZ","tlshash":"2724c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.85586Z","last_seen":"2026-03-15T04:55:12.85586Z","times_seen":1,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nexpires: Sun, 15 Mar 2026 05:42:33 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pCLSHAN%2F%2FZej4E5FqEcqcKY10E16AjcAz9m%2BH%2FMpnWP4o2ikKxMRnvHNlS5%2F%2BUv9ekWy4Az4z5tJfd8c9xeA7bdj9JUwqIhVd1HCcfOp3nJOrQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncf-ray: 9dc8ebbc7b2535a6-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-18T11:29:56.800583Z","times_seen":372167,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/assets/backgrounds/about-info.svg","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /assets/backgrounds/about-info.svg HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69afece4-419\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=edbL9b8Gq%2B4onWH0EpXDXr8fb%2FjlgL8YZaBlzDzdyRK68z52x1li4Best%2B5wo%2Foz655lQnx4%2FexBRJXjGaz%2BArsysx65vpO7R%2Bj1hezunZAwCg%3D%3D\"}]}\r\ncf-ray: 9dc8ebbe2b4835a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1049,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4304946d25ca283baf223ddaabbd5eff","sha1":"a0e8474720c5a04adec353f4242eeb556b9e7555","sha256":"a56d9c23d59c246abbdece4ca3aeb4e13208633a4ee39f9e3fe85256a3daa940","sha512":"406bce7a1d4a1633f06537cba169390fc33da05842e6a08debf9978a94640e01f74b13514898117f5f1078bbb44b03935165b881449011b4aa40753dc9b22b1b","ssdeep":"","tlshash":"40112fd803a0e9def54c8b1c9ee4490e2e1ee033c4524444f96e8b7b8fa0c4068473d6","first_seen":"2025-12-23T10:16:28.70657Z","last_seen":"2026-03-15T05:07:35.121106Z","times_seen":3,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/1_55990e8863.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/1_55990e8863.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:23:59 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":729,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4583c8aa12891b735c3fca6c91fe9b21","sha1":"00319417b22a49ed1444c9cf4997fa78b22caed9","sha256":"ac51a6559123ace3ec03e70c72482f05cce77d8083131fd2551401afe5667516","sha512":"673b4b0d02c683ffd12ee303a0774e14af81a7eb70d54370619861852095dd5e9170cf3824d4bebf50b75144136046667564ff52deac25b30d7e78ef16630f03","ssdeep":"","tlshash":"6101446ddecfc36b18588635f9a63224b39308db1c0132c5aaf7922bfd5c979588e1d0","first_seen":"2025-12-23T10:16:28.715775Z","last_seen":"2026-03-15T05:07:35.103314Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":110,"dns":42,"connect":23,"send":0,"wait":39,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/9_07409a1ac3.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/9_07409a1ac3.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:27 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":817,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"68ec81b85a706b5e59f3e630ff4aa34b","sha1":"e37ebd5119c6e74e61a281186b7eb6632fe03285","sha256":"0a7dc0c31e14636a166b19fe3a6cad15c9515f77310a2e91a4181e68cb106c29","sha512":"70eff5f0e9f6ae77f05ded04ae9591e93634e116b9e329baa2ab3fde80bc0e90b6bdba5fc059095e5e99eda70c9d1f6b7c6a489cfd1c738dbde829ac668df8a2","ssdeep":"","tlshash":"2601f56dda8ec36558948935a8a93279b2bb0cde0883b1c496f2432efd38675688d1c1","first_seen":"2025-12-23T10:16:28.654901Z","last_seen":"2026-03-15T05:07:35.100941Z","times_seen":3,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/favicon.svg","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:35.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nCookie: _gcl_au=1.1.1055936571.1773550475\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eYWWV1UvRPIx9hDzIN3IUl1fWNVLphoUtMpef2dNCV4PWzODC0Ga8tIKe4LJW9tJkmqzHC%2Ffp5jYq8nGrOYe3NmCzEH%2F8K9xHb%2FMF7k4Yhzx9g%3D%3D\"}]}\r\npriority: u=6,i=?0\r\ncf-ray: 9dc8ebc4cbab35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"d005ae577dc2313eaf9de1cedbdd8e45","sha1":"37b1af9c49f2adc5f2059f726e763363eb2e57ab","sha256":"b1563d1bb0b800c8fb278926b0db81f9a00335cd28d373b14bec3f0f063c7d02","sha512":"a59f9a9959194a715afa8bc4fde18263ac6582d33b1288d0e81cb18565a168bd8fe9b09b52e6285b85e75a852289a5195ab0b24472d11a3c6dd0b509d4bb705c","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfQVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQ+VdmnxTgWM68oqXHBemQdZ","tlshash":"5324c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.875424Z","last_seen":"2026-03-15T04:55:12.875424Z","times_seen":1,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/assets/backgrounds/qualification-bg.svg","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /assets/backgrounds/qualification-bg.svg HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:25 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69afece5-40a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BBtmU4CKlbcRe81X2HofIMgqeBGdOdHqpmd63b3P%2F%2FBBxNjl5PxHggn7nn7BjFy6FCOcYEKeLIi%2BqMmbhpmsHHZAqu5mu4WG8xTYhWFll%2Fa6kA%3D%3D\"}]}\r\ncf-ray: 9dc8ebbe2b4735a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1034,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fa5fc494f779e27cec9f9de47160e5f4","sha1":"07624d8fcf99ab5189dc998740a684d2552c4f8f","sha256":"24aa80f9f3ff895bc7a81aa70835378aa3c48ea5bf0bb1e95e43ff534a41cbe6","sha512":"24015c67cf9d3a6f063f0ecdef59a5c4ba131e0e0363fc542331106a09d36a2bb0df5ba4c50cd9c193f88888807ca8a470ffaec11c8ca232b31d73e26c767f7f","ssdeep":"","tlshash":"61118ced92a8dc74ed1c8ac9ee52f02c12264972acd9c641e1c9477f1ce09cd3c5fa99","first_seen":"2025-12-23T10:16:28.697035Z","last_seen":"2026-03-15T05:07:35.118781Z","times_seen":3,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/2_d6138ebe86.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/2_d6138ebe86.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:21 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":857,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f1c1f823acad8b7dc02cab1381a2b24b","sha1":"0513e5cda4ee5a2803773d9146d541d0fc6c6dec","sha256":"972a0124474274762be9b38f503be5d69af887afba68c7a67320e93b1b9fe565","sha512":"e61a463f4bb368a8630213b875317f88276c66b8845f2ee8bbab213674c38dde6f9e308ba98bb87a8550effc8ec163d99c95f85e21620cdef9cbe93bc976675f","ssdeep":"","tlshash":"8a11d66dd6cfc35a58948939b865226cf39b08da1c8371c5aaf3532bfc38a655cce1c1","first_seen":"2025-12-23T10:16:28.652662Z","last_seen":"2026-03-15T05:07:35.119508Z","times_seen":3,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":106,"dns":51,"connect":23,"send":0,"wait":36,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/page-c9f3c08587bbac8b9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/app/%5blocale%5d/page-c9f3c08587bbac8b9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-4c56\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H%2FPc2BvXeCYQ6653%2BGkNZtkGGMwS5pZH%2BZCQpXezr4boezEnYSgKeYKEXnCs0O724uWWTR9gxpARXi9BQgjAnuAoZU9gi6bnk3RfmO64W51x7g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc7b2235a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19542,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19542), with no line terminators","md5":"a550de500731c37cc1803db0dfa8fd5f","sha1":"082c43d3685fb3e1091fcdb9f5157bb3f73326ec","sha256":"16d54bbdf695cf4d8ee4244f920e8fb5857eb0a24d14059529daa5ef63692f35","sha512":"ff6bd5a7f5b29ce8324ee1686db1bf4eba1b2c9a8e036a5f691838d9542a4f279fb2caa36ffe41bef22134385fea5a39120c342e5a85198d0f150fb6de64ac96","ssdeep":"384:ui7YvhbT8AWUQmoWCwtdw6TDW2HTZv1Z609+ZLXaAo7+:uo2hXfvCwtS6TtlNqxq+","tlshash":"9092418c60a5bfe87a5b08957e6f940d712f3b48da0f88b4b6b8a8561d4c1c47613fcd","first_seen":"2026-03-15T04:55:12.878542Z","last_seen":"2026-03-15T05:07:35.094781Z","times_seen":2,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=AW-17660074394","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:37 GMT","end":"Mon, 27 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"8B:BA:E2:19:5D:6C:81:59:ED:D8:AA:3B:2D:5F:A3:A2:C8:A1:E3:DF","sha256":"B0:8C:FC:C1:98:34:EB:0E:FF:AB:13:B4:9E:AA:B1:7E:02:11:9A:93:31:F2:A1:0F:23:9E:2B:C3:6F:EC:26:F8"}}},"request":{"raw":"GET /gtag/js?id=AW-17660074394 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\nexpires: Sun, 15 Mar 2026 04:54:33 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Sun, 15 Mar 2026 03:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 140799\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":417206,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5882)","md5":"5b6f8c7c45a37dd205637a385668a511","sha1":"29519b2360008b8470146f0fe97297eb25281d46","sha256":"ed9d9a27d9da4a168c7d3a24c157680963b702ee50e3d730552373a95dbab232","sha512":"7cd76a9dfaeaf6951b29ded9d5b4d155876b8a0577d9862eda66918344164e8f543325f4e13078313743de6c3f21c2f875932acb1d715a43c2f6e1d4c12829ca","ssdeep":"6144:CT0k+ECNF08vDOE8cvffVsgXBGOYsBxu5WpRSq7KB:43dCNCyOE8aBkgG","tlshash":"ce9419cdb3d6742293a7b478503f018ba57b6aa2b44cc895f189cce42d7469a4237f7c","first_seen":"2026-03-15T04:55:12.879995Z","last_seen":"2026-03-15T04:55:12.879995Z","times_seen":1,"resource_available":true,"data":null}},"time_used":213,"timings":{"blocked":67,"dns":0,"connect":8,"send":0,"wait":31,"receive":25,"ssl":80},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=UA-173249582-1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.436Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:37 GMT","end":"Mon, 27 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"8B:BA:E2:19:5D:6C:81:59:ED:D8:AA:3B:2D:5F:A3:A2:C8:A1:E3:DF","sha256":"B0:8C:FC:C1:98:34:EB:0E:FF:AB:13:B4:9E:AA:B1:7E:02:11:9A:93:31:F2:A1:0F:23:9E:2B:C3:6F:EC:26:F8"}}},"request":{"raw":"GET /gtm.js?id=UA-173249582-1 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\nexpires: Sun, 15 Mar 2026 04:54:34 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Sun, 15 Mar 2026 03:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 119748\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":345774,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5882)","md5":"726735f99601af8b5d4cf7ba4fd01527","sha1":"9d29e8ea0f1aecb2df8e62f7c11b064b95eddd86","sha256":"e52266875f068e4534a5be1559871d8e9a0278b5a2626a6053deb538e36567c7","sha512":"cb26a6242e6a02be11f2794084cb8e0b7b89329f9437ed6ac3c0cb534e3d0342526905b0772e88e9b8930d8c9c511a0831c17223488b95daa346b817262a2233","ssdeep":"6144:uKleMxlq0aYMN3jpQQ84hNyArZ7M2aXX3/kZGf9bQS2/X:oeRaJ3GQ8lvtb0/","tlshash":"9a7419cdb3d6702293a3a478503f018bb27a7992f84cc899f185d9d42e7069a4277f7d","first_seen":"2026-03-15T04:55:12.881869Z","last_seen":"2026-03-15T04:55:12.881869Z","times_seen":1,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/media/26d4368bf94c0ec4-s.p.woff2","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/media/26d4368bf94c0ec4-s.p.woff2 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Q0Yf9lSBPJmogyjs9IGIUIPD1es%2BLoNehJXJpQ5aX%2F3z38cEmgMG%2BO9fHKqHSjP3EzgISwrrT0jCaWcUkNVN046iUy2gZZSZVywQws4LDNYpkg%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebbe3b4c35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"28dc5b3e9a4fcb8e4bdb3e491c3658a5","sha1":"cc1595baa09a6c263bdc8b8725160c2ba66d5b0a","sha256":"d5e79fee880b1f6e712a62a9f441369ac2bf71403844f3a45f3d0952e089d713","sha512":"9663d9e1e241652a8615cfb34773e32bc5578e0b3922826a13b41e17bd2c628c224226bfd4dd62e930012d37afc15b2413ef5a627f67620ae09a14ce4ad4fddb","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfgVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQKVdmnxTgWM68oqXHBemQdZ","tlshash":"ad24c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.88329Z","last_seen":"2026-03-15T04:55:12.88329Z","times_seen":1,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/4743-dd7570059a374a9f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/4743-dd7570059a374a9f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-4f92\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wGcyzVDz0eq24sDxILo6ZuKD4MFJ6vsxat6m6dUND0ucsuHBOq%2FtfZ%2F8nLluXGD8DVbXrA53hESGX0A%2FJLvcOV7z3wLMNR0AoLZJSSLIwqOQGg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1c35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20370,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20370), with no line terminators","md5":"bf64e6c313eb89640ba5a3df36c20f8a","sha1":"52653124c18ef5621ae999cc1ad0b9028d2b7e93","sha256":"514b6e1a79bf77a75b90d4a94fc313fab0b39408c3deee6a7b1a969f2d724412","sha512":"034a34137d0a55e874c2540d17a373bf327e5806903f129c1597d13f71a2d0709a5e9acc7c4e417e88b82e7506dd492afd8cb3054654033c210ec093b0cfabd0","ssdeep":"384:DLwLaGo0YQ4MLlniS5YQDDrQ32qzVscC9SbyMsI34dAarjX:DLwOG7YLMLliX4q2qzVscC9osIIdrjX","tlshash":"cc920ad8b0c778f115f305a0843f520b7139292d688e9450b3b7e9e625fadce6076fa9","first_seen":"2026-03-15T04:55:12.884351Z","last_seen":"2026-03-15T05:07:35.094095Z","times_seen":2,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/4_8353e802e3.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/4_8353e802e3.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:28 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":803,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"56933ec77fd85b1ea48ee3355ac45e0f","sha1":"a7b9587cb2c4ef1210f75268a3fe4eb57082478c","sha256":"78023017320803dba757effecaef70960d801bc53408daa50c6c54245efa475d","sha512":"dafb7f16ebf616bcdb92bb5a03d7775516bf593990d9c655b86ea1ad5ede7b60611938997f4ad04d22799325ef546095658090b369f96ab7e122e0ae303fc244","ssdeep":"","tlshash":"1901f16dda4ec2554ca44835bdaa31bdf2af0cee188371c865e28326fd3ca35688d1c1","first_seen":"2025-12-23T10:16:28.643291Z","last_seen":"2026-03-15T05:07:35.120301Z","times_seen":3,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":106,"dns":39,"connect":36,"send":0,"wait":30,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/7_09a3f6188e.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/7_09a3f6188e.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:23:58 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":689,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0af3884825c69c8ada35c29d5623c753","sha1":"3f40d79339fc7128feb618631f71e5eafb4bac95","sha256":"f3b127599ab737b9e9acd9efe40123d978716c5f79b1373496238ad2195eb8ef","sha512":"328c336827879db7f5964293e59cb7750e8f0c7419b7c79d71800d7d431c750973f60e8f9fff3e6d74b7d80d6953574986e3b9a2a269ec87d785abd2be3b941b","ssdeep":"","tlshash":"ed01d16dd6cec62198a489397da50269f1af0cde1c8371c4a6f1432efc3cab1588d0c1","first_seen":"2025-12-23T10:16:28.645398Z","last_seen":"2026-03-15T05:07:35.091612Z","times_seen":3,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/ed9f2dc4-188e71e83af898c09aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/ed9f2dc4-188e71e83af898c09aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-a3177\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sCXygcgCer63gPdfZzEcnhXaW1M01JoqNeJls2Ve612OG8%2F%2BXEegyyiQ8w0tp3i4i%2BIK4KlsUC4bkpe7SN07XSxxfZ6R7Q7Qafadhq8cpim9sw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1535a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":668023,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32105)","md5":"68f8b0750c6a1f3c136f5a21213e1e79","sha1":"468d7d5383116fe6a9a3b15e551af9794653ac34","sha256":"50f26af1e68ae957e9aee1f2f622d3694eca257cf92602d217130845d23d77ec","sha512":"711af69bce7e37e7a2d7a65203f4c7b697738639b5400874ab86c34be22eff0f23e6b2fcc59a18d7ba130ce69eedc654bbb66cd85be62356eea8f07d3c7b354d","ssdeep":"12288:SomB6T1qCex7+5uYbSUzXkyTX4UrDCBPv:SoC6T19CGYUqPv","tlshash":"fae46cd97590f5b4a6a347e211ff440af33e7612501d8420fb1cf8ca57980eaa1a7fad","first_seen":"2026-01-21T22:34:49.879819Z","last_seen":"2026-06-14T02:15:56.581121Z","times_seen":6,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":81,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/3834-0fb4b8a41cf1688f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/3834-0fb4b8a41cf1688f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-4741\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8zHSUvyX197M%2B5hLXEV%2BzddoL73dasjK1MneCMUsK6ylxtzsVK5%2BQxvYIzEINmvlSHh6XL8zJ1xcS%2FAqx6Srqr50vsGr%2Ft3OWbp%2Fprq93btZlw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1d35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18241,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (18184), with no line terminators","md5":"c0c59d9c643daed16088463f4de11999","sha1":"7efc819016571c2d77e2cf686c618ec5c18d4661","sha256":"6119260c18edc63fb1dd7656a2e048808f5d8df95cd3b87185ce71264bacf981","sha512":"45f9c5c490bd1175a1d02c418145ea89bbfe3682899828060ba707739af0cc6deb23c1f0626e0217d812e017eabc2a68b22105e50320c00b0fad5d9ad04809d9","ssdeep":"384:Mxg5EG6W7g7vrDD64N7jznKa8MmURtK8Eu6wu6hnx6+ItJnw6kK5Af2pVMI:x5Pg7vrvXL8NGYu6wu6hnx6+I/Afep","tlshash":"9782fac8f4dab069a13355dc81af4059621f35249e0dfc22febe48a107d59c8e263f6e","first_seen":"2026-03-15T04:55:12.895415Z","last_seen":"2026-03-15T05:07:35.099944Z","times_seen":2,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/media/26d4368bf94c0ec4-s.p.woff2","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/media/26d4368bf94c0ec4-s.p.woff2 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yl3uMVM23YiSHCE8UxF5Dd3X05oWHnyhKFgfrLBfYPuczZzcB3s4sEbx5IenwwUUkZ7kKAg%2F0HL8Hwvpv%2FPifRc9z%2FC81ZqTCGGCf7dqzVWwyA%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebbe3b4935a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"218006a21234d72fc73839affba3e41f","sha1":"dc8668f96a7c021aded710a4823ec486caabb4e4","sha256":"790900712eb081abc7dc29106de70d6db28552866d22f994f4b088f54d59d579","sha512":"0a367f875bff9a492659b9b59bb0ec7e2e90830243a69c723fcb56f5ed928e0aac5e29ed344bd3918b4175577047b5a5014514114bbc69de217be51a8870713c","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfPVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQ5VdmnxTgWM68oqXHBemQdZ","tlshash":"6d24c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.896735Z","last_seen":"2026-03-15T04:55:12.896735Z","times_seen":1,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-QVF6EFRFSP\u0026gtm=45je63c0h2v9114882587za20g\u0026_p=1773550474403\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=2028529944.1773550475\u0026ecid=1568388085\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AAAIAGA\u0026_s=1\u0026tag_exp=103116026~103200004~115616985~115938465~115938468~116024733~117484252\u0026sid=1773550475\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026tfd=1852","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:35.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:37 GMT","end":"Mon, 27 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"8B:BA:E2:19:5D:6C:81:59:ED:D8:AA:3B:2D:5F:A3:A2:C8:A1:E3:DF","sha256":"B0:8C:FC:C1:98:34:EB:0E:FF:AB:13:B4:9E:AA:B1:7E:02:11:9A:93:31:F2:A1:0F:23:9E:2B:C3:6F:EC:26:F8"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-QVF6EFRFSP\u0026gtm=45je63c0h2v9114882587za20g\u0026_p=1773550474403\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026cid=2028529944.1773550475\u0026ecid=1568388085\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AAAIAGA\u0026_s=1\u0026tag_exp=103116026~103200004~115616985~115938465~115938468~116024733~117484252\u0026sid=1773550475\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026tfd=1852 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nOrigin: https://test-4930-test.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://test-4930-test.com\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:171:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:171:0\r\nreport-to: {\"group\":\"ascnsrsggc:171:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:171:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":158,"timings":{"blocked":64,"dns":0,"connect":21,"send":0,"wait":29,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/5964-475b6674c25f019c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/5964-475b6674c25f019c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-3a023\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sLQ3376EsyegdeAh%2Flhgjvp%2F93Zpd4MFGsz8DRUmTmRq4N2jAyLlwT7ROzduuZcTvUEqYZZ2LNtaDDflxoew2%2BinbczUO9MfgXJlRHERn1bTEQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1635a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":237603,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33904)","md5":"eccb736544d4b4c9069ca6ab378f57c4","sha1":"8fbdd13ec856a08d392caa9577ba25c45488ae87","sha256":"4acbf99f8e878f4304abbd83979462e1356aff15643af62d574737eba46f487a","sha512":"230933c4d0a3e6d032a8649a99dacf269d63a6dac7cc8ba5f4033edee699bb378fcb8ba8b69e9b57347c0ff093ff1eb6eafb8d21a09ca7c286002326c9f7104a","ssdeep":"3072:LY5ypXBMwlO7AlqF9szR3JApDXCNubJMdzT:LBXOwlC5TGuDXC8bI","tlshash":"0c34d8e576d0f9e102a384e5843f400bf3396c36142eb4d0a366dcd5b9a45dea173faa","first_seen":"2026-03-15T04:55:12.898061Z","last_seen":"2026-03-15T05:07:35.093327Z","times_seen":2,"resource_available":true,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/7714-642f79b3d42149d19aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/7714-642f79b3d42149d19aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-1ba3d\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MTMi9CGXnWgpF3nz484SMzG%2F1Iz1eVGGbvmzDxVNXoEvxiFOjdTnRZhnYpdGlHrRu24ZXbKZzkhSsbcv5PtdLDk3wuWsp2GG77WEX8H5Z%2BfsBg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b2035a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":113213,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65514), with no line terminators","md5":"fb2317e39ebfec4f37c6f92a7d37588a","sha1":"abb1eacf4966f47324451fb1bd4df8fb4d704807","sha256":"cf04ba22caf500d4bc431443a0df11058336bcd292dea24bcc3ffdd270609732","sha512":"cdac3e3feb7834a1c6d414c48e6e26a6da7f6aca74cbf01efd45d9cc522e481861c8803b9143e503fae1516d5e920ca5bf09c4958cc545fce44a3a53f7b16a1d","ssdeep":"1536:tuo+IhC8XXjF4j6Xli6blsbQ17xNp36Pj1XlvoL7n3K5RihqQHJtUsNBM:DIeRsvofnqQHJtUsPM","tlshash":"0bb3cd36b11e8dbfc36375d0858f908bb6786669178124e8fe281f39024b7da5e3d235","first_seen":"2026-03-15T04:55:12.901317Z","last_seen":"2026-03-15T05:07:35.123759Z","times_seen":2,"resource_available":true,"data":null}},"time_used":223,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/4049aba-4?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/4049aba-4?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kLlsCJqfNsVD4E5qbYZKJnTo04sjwWf4%2Bd8GH1WBouvMfE%2B5%2Bs7bNYyQANL9r2Mu9McTEIPBNxU5ab5sK4em73inWN0SkXczFzmmJ37QT6Fx4A%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebbf5b6c35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":222,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":171,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/www.googletagmanager.com/gtm5445.html?id=GTM-NZ8HMMP4","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.431Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /www.googletagmanager.com/gtm5445.html?id=GTM-NZ8HMMP4 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 0\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i%2FmktjvtC6nqda27u%2BGAzifcdQ6XUU%2Fr4xxdn1IaNzHspw8tfHKfdjrGMft4QYpXud3Ir8YmpLeT%2Btm78FtGKV44qpc5EdycQ3Y1KEmwxbFUNw%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebc12b8935a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/media/26d4368bf94c0ec4-s.p.woff2","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.958Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/media/26d4368bf94c0ec4-s.p.woff2 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lPSb0pdJ5I7gzdSVzY%2FOLsSK3ceH9qiB990uJJjXakUBJPeZp95JNR7V15hToRY5Cmx4E2u%2ByaOOj2o2eV6IcqskweVKNxCHu9HQCsnSW2zDuQ%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebbe3b4b35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"b48b50216f2b6d7924be759767501431","sha1":"2ea2765de48f7bf7f2823d5e578b4142ec4cdaa9","sha256":"3c853ccb7a3779b6bff6daf4de739fcb44862278af56aae53951318437f6b486","sha512":"4d3962e43c417018cc492597bf0446b9a33f918b2276a7c2d9f99ec50efc8d20259d7a6a20c2f47a21fed130e96c1e18cda4fabfcc359935d6fa10e6cb5773f2","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfVVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQfVdmnxTgWM68oqXHBemQdZ","tlshash":"3524c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.903025Z","last_seen":"2026-03-15T04:55:12.903025Z","times_seen":1,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/9757-cedf4e6c6cdee72f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.685Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/9757-cedf4e6c6cdee72f9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-96142\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HkWD6VZpcH8WtAh1UoL4PuA7R7Cf%2FC5NdWrRyLjs4r%2BBt5%2BCzi31KGzLaV8AJp23UozJtBQTolaZidpQEAj81%2FzVVO%2B1Doz4VHgI5SOyTm5xyg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1b35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":614722,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33312), with NEL line terminators","md5":"755bfed5442d313084cfc498f1fda03f","sha1":"9a55ec7854928c2dc7453119d96cc14b7eec11a8","sha256":"81f00967bff119f8aead6f08462eac9dc2a51d0924d889a55e3096f828729469","sha512":"c741e49abd6fa3edcc7b6a67f68694be3e1bef1a16fa39f343211d38dcf20c2d2a299497d00de8e56c8b8a740cedbaeefbef7638a5b01997bca9284711dd0bd7","ssdeep":"12288:tSwceOeq4RToOvhotmceW24vEnwSreWLsrC:tpw4KOpff4vEnwSreWorC","tlshash":"44d45cd57691b7220787a2b9442f0106f73a6529200e443cfa68dddb7c74e8a523ffb6","first_seen":"2026-03-15T04:55:12.907429Z","last_seen":"2026-03-15T04:55:12.907429Z","times_seen":1,"resource_available":false,"data":null}},"time_used":391,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":136,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/css/167329165ec884aa9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/css/167329165ec884aa9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-1e89\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vWED7dusg3GNeZvIFfSNIPOkpcRB9GkzhOtgN3OD81CXLJQsUbXGH%2FeuHlqrOSEk11YQLVD7Kpa8Bg5faTHQBtgkCFLWJhUK7j76DKhFqQ7eag%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc5b1235a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7817,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7817), with no line terminators","md5":"264b88d299df4c3d484ab4135f544b2b","sha1":"17463c83fb8447ba0034fae15dccb7982dc41fbb","sha256":"d521747872462831029e5cd240fb5fbfda689e09bc3e35febebc80a9a6967795","sha512":"17cc75a77e6f3d9a5456dd08522722024b5c163c821e86d8d604634d7aa385ac4a7289e252808d229690e3430d359ae6d4d5e5ec67fdb756a77a27de9fed3d9c","ssdeep":"96:SJToiBX5Xu2TzSHuepibAaJSuEywT9LXGZHpgvuIajRYGI6JJYIJlOJnH:SJTxpXuCzSOepibE5XGZHYu5Lf87x","tlshash":"98f1fd985310282396238f3657b4cbb8e57448510b93cdbf91c0bd58c7badf917af2a9","first_seen":"2026-03-15T04:55:12.908429Z","last_seen":"2026-05-11T11:38:04.221027Z","times_seen":5,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/7089-a09219df6e5bd3989aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/7089-a09219df6e5bd3989aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-2e31\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6PSW7P954cY1rZJUXdzJ2oxDT2FRcNym1%2BsM%2F3xSR3P7F%2BDKMvE2nIQ3qekYsnaZlec98kCI4auVj1%2BpPB0kod28ludlMLxEDZV1k01wKJaSiA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1835a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11825,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (11825), with no line terminators","md5":"cf67f1b77d3a3b5956547446ab74de9e","sha1":"9767699dc9b485fdf622898eecb38a7021807791","sha256":"072f31c2d5e66d6eead9643d0f4beeb6ea28b7c4dd82ab4c6236cea350438d4b","sha512":"5927eed5f083348e961857634c839fcfc34376fae1a9a77e3f1741e8b4139cc752787048829dda8634feed73893dc18d07313f3183254be82a0d3c74b0edcbe0","ssdeep":"192:WaRUnylTo2IxtXzmx+j2JX32epYNG6MNCqIqWjZ2wLQHJvtoiMYMVagnePE2N:WainGoXQJ2epHvkqcjYMxLuN","tlshash":"b33292e9b1d2f8a243ab2060843f201bf27f5d35642de040e326ddd5b8a565dd073faa","first_seen":"2026-03-15T04:55:12.909412Z","last_seen":"2026-03-15T05:07:35.095757Z","times_seen":2,"resource_available":true,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/layout-49d886cd8d7f0d949aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/app/%5blocale%5d/layout-49d886cd8d7f0d949aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-60a2\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OBiZZ2vjbnAoi76VZG2ZfTx8NIzOzT2yl5%2Fmi6fARrI1R8fUAvjFH%2BhXQ9vxCeBhlNwSpGFUdFP0q6empKkdiI0nj6Jmg%2FMwtSiHtRnVL9Weyg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1e35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24738,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24498), with no line terminators","md5":"0d07e31b5463c94b6870d2ceb8dabe7e","sha1":"9a563a0a5d972806927d3a0123817faac8782957","sha256":"7cc48fc14a9dd84c4998746e89f5ec19d2aea92af944dfaea2cebb9e7e8741b8","sha512":"c5b81bdbb6c91619657e215c2a660ce4605c1c5d5e24f99867f172deb54272743719709d6d23fa80b99598e137de8205fac4547ccce0fb347ec482f290e1b419","ssdeep":"768:LgyYkYZRpblPl3KWxobjojFWoBG5lW2aVrc5c9EdajA7lg8hhqUkPe14X:LWBLKzq+Z7lg8hhqUkPe14X","tlshash":"54b2c729f095759ca11b49c8e15f4c0cf22f6e58d70d88b5b3b2e4192ad34a8f652bec","first_seen":"2026-03-15T04:55:12.910282Z","last_seen":"2026-03-15T05:07:35.123017Z","times_seen":2,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/app/%5blocale%5d/not-found-26981fd91627fb149aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/app/%5blocale%5d/not-found-26981fd91627fb149aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-11ae\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9u7hNxXEjXQSnss8oKDyxQMsx%2BBHuSXeImyqI3ZaSzrdnJzs51uptBsi8akyZK1MJAS4NEklXlZTSao9LxQOOWC6SFU8bV2948ruhOHbYpBdaA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc7b2335a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4526,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4526), with no line terminators","md5":"3b992a09e711859a77f29a064d382aec","sha1":"84a337f6dfeba7c1814a8cd35f72261a1736a0f3","sha256":"4dfa3a68587d0363e94010b4fbd7c7b4b65a9995761499e82de39b0b5fedfd30","sha512":"f2fc638cf8b22de905a33a654aaaefe251e8cd28bb0416d9fa8f9e108b7ccbf54bbca13a49b9c205ce7fe13f3dd0b8a26018c342071f025df8a650412583e8e6","ssdeep":"96:7CB4CDbOd6LNukMygDHIbztOzQ3FaQrF/6:7CX/LhOrIQQ3FFrF/6","tlshash":"3691f8dab04af4ca1ed104e4c57f5a47613b5934301f9e107072fdb504aafcda266f6a","first_seen":"2026-03-15T04:55:12.911205Z","last_seen":"2026-03-15T05:07:35.107215Z","times_seen":2,"resource_available":true,"data":null}},"time_used":211,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":211,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/dc112a36.d0cf7ebc241f2eac.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.427Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/dc112a36.d0cf7ebc241f2eac.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vUnD%2FAjDxWeRBJ3cvI4YxW3WVYoQvLcB9mf%2BvyyBAzx7EHZhGOVVLgiklSawMFetf0hIgnqP7zzb9%2BXMS6SmW21ONA2bMUfEyMU3rLIzB9UNXQ%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebc12b8835a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/css/39662a2443b6e61c9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-a6eb\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VBEdr7H3dDVInDEvdkr3q2M7XWW9tXI78Mo8Xj3ENNmxeEEqoH11v3%2BA6UtGAyQ9t9m5ODOAsCvhU9sCWB4rDSgTxSg8SDWO5FUV9q9LknwoIw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc5b1035a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42731,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (41538)","md5":"909395cfeca8dba45088e865d5e4d9c1","sha1":"07136bb01580f27d0a6af7ab1ab42f898af67d57","sha256":"5fd77fbd36e77f412048ecd26f5b6c982a3d5520ab526d2753c6cf64f314ce74","sha512":"d98cc552aa374f98299e610dd911546c6f94075ce746d5b1f4b876eb3fe9545c8ea35c33ac8e2d0b7332a9cd532b146ab23ce959c7916e445f33b9137e603463","ssdeep":"768:asvVTR/GbsWfcX7VjrVSS5zO3pdHLr76K5fJMYhHGmbN4UB:a4VTR/GbPcX7J5zO5pLr76K5fOgmc+s","tlshash":"3c13d868921a107f6c27d8f2f1d47e5d703aa490ff6169e6ee1248148fc35b22b7276c","first_seen":"2026-03-15T04:55:12.916274Z","last_seen":"2026-03-15T05:07:35.11279Z","times_seen":2,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/webpack-2dd5aba9230894dc9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/webpack-2dd5aba9230894dc9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-1065\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nq8ZYpZbAbYjWWLWZuyLw%2BmNs4S6HtGkAPDsVlhzyzQIuhB7mx0aigRO6xIrcR91s8Vx4YoLUv%2F9wOiypFKgX42xNkUTabD14gHQRQ00bycAJQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1335a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4197,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3758)","md5":"2c307d547870796177a1b86515868a19","sha1":"ce7ac63e2a16e2a085c7c31dde853842fe71c529","sha256":"91511cd1f917ce11496cf420d24cd1317322dd1d744c10cf50f14e338f3771c8","sha512":"3a8321a3a36a62415d9a3f05d78492bd7b813ba7f85dd2c13a1a9a56359f778f334ae4d8b371b10c9464a6f1fd1bcbe133be43eec12027cdaff9473eecbd44d0","ssdeep":"96:04J2mRxqWitutoQ2C7CBVI3VMXSGFGjTOnwXP6pZxD:02Atk7GAuXkjTLXyLxD","tlshash":"e481c6ba3255eab556f100c9983ec151fa2d213b151ae8b0a71bdcb9a474ed10622ff3","first_seen":"2026-03-15T04:55:12.917649Z","last_seen":"2026-03-15T05:07:35.117465Z","times_seen":2,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/8_f0792f6120.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/8_f0792f6120.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:19 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1139,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"59da2d22e9d359cf919a2faf91fbab8f","sha1":"f5af39cc0764be0934fb5a65cf63c79a76dadefa","sha256":"becdbdb84b666b8932a996fa53baec31be931d45890b78f8465919aeee7f8cfa","sha512":"f6c0c212b0cd52a4d9712d62312eb5dd72bfae91ecea60994091e2af767a791cb2dd6bdfc79089d339b2186f015712c87ae7e61f2d80b99c5863f3cf0aa6af53","ssdeep":"","tlshash":"b021e46ddacec3652c504939b8552178f2ab0cde1c8371c0e5f2833efc38aa5588d1c1","first_seen":"2025-12-23T10:16:28.667279Z","last_seen":"2026-03-15T05:07:35.115521Z","times_seen":3,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/marketplace?_rsc=8rrgv","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /marketplace?_rsc=8rrgv HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nRSC: 1\r\nNext-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%5B%22locale%22%2C%22en%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D%7D%2Cnull%2Cnull%5D\r\nNext-Router-Prefetch: 1\r\nNext-Url: /en\r\nx-deployment-id: dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 301 Moved Permanently\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlocation: https://test-4930-test.com/marketplace/?_rsc=8rrgv\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SWLOCoTWYFRyONV9EO9RLJU%2FjKLaOVTM55Skdf5bunCjgSv7EJj8fbeMJNtNr50GWNFnVtFdBZR7cOCwp3UxL1aY%2FFLWFjFYlFWhkJWOeMNlmQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dc8ebc25b9135a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.no/ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-QVF6EFRFSP\u0026cid=2028529944.1773550475\u0026gtm=45je63c0h2v9114882587za20g\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=103116026~103200004~115616985~115938465~115938468~116024733~117484252\u0026z=1510366021","fqdn":"www.google.no","domain":"google.no","tld":"no"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:35.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.no","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:39:43 GMT","end":"Mon, 27 Apr 2026 08:39:42 GMT"},"fingerprint":{"sha1":"ED:13:E6:A9:AC:5E:48:95:A0:23:B1:F4:76:2F:A3:6E:95:4E:B7:09","sha256":"21:68:42:FB:56:73:F8:86:34:2A:C7:2A:2C:BB:10:DE:09:9B:FB:20:DB:72:B9:F6:10:76:71:B5:06:27:89:FC"}}},"request":{"raw":"GET /ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-QVF6EFRFSP\u0026cid=2028529944.1773550475\u0026gtm=45je63c0h2v9114882587za20g\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=103116026~103200004~115616985~115938465~115938468~116024733~117484252\u0026z=1510366021 HTTP/1.1\r\nHost: www.google.no\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\nx-content-type-options: nosniff\r\nserver: cafe\r\ncontent-length: 42\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-06-18T11:29:56.814823Z","times_seen":953484,"resource_available":true,"data":null}},"time_used":292,"timings":{"blocked":125,"dns":4,"connect":23,"send":0,"wait":35,"receive":1,"ssl":100},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/6922-899c12574a89b7019aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/6922-899c12574a89b7019aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-140bf\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WTmh77fzgfaNdeBrJBl4Qf7Q1Uqs6mfPblcj92ckj79zRCQcuAvDhE%2Bye%2BpSpbVYodiv3q6Xeqpi97XM%2F0HPCxzGfVNqaDhGIN%2Fe%2BUEjLmhZKA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1a35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":82111,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (43421)","md5":"c34cbee15177055477395d2f098f88d4","sha1":"48de2e9fd3b1bd3f86b8e73d3bff352a77c1e4ee","sha256":"188170a9983684a3ef08c7178953cf59e828637a7702ad4a2b7965b3d634e183","sha512":"ba21e29f12890727ecb63bd8a9ef08250fab66f24648494674772d3b8d8af6567197cc12e82289dd7d4fdc90588417a9b4a971a4017305d4b07000f6d7d98a5d","ssdeep":"1536:IrPHSyb5lkZZa9eAoCHbBKrb3g9Vn9JnV6MbeMbkxHvcl5fwubNp1XUMgH5:cPHSQ9eAoCHEHAVn96i5LUrZ","tlshash":"e3833ad5b2d2f0664bad11d5943a0002f36add6d201ed4a8f3b4ace73564f8da0e6f39","first_seen":"2026-03-15T04:55:12.929312Z","last_seen":"2026-03-15T05:07:35.135451Z","times_seen":2,"resource_available":true,"data":null}},"time_used":215,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/6_d7ab69dbe6.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/6_d7ab69dbe6.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:38 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":817,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"be65dd2d826b17af7becb980955fcdc3","sha1":"4d3c18f7352488584de4dc24da64a9386acd5e8e","sha256":"600b7629dc8151a3233d4289d14039dbf9b3508f4b143257fbe401c6149a86f7","sha512":"f03df8984e2103854a00d3ef0609d7a0e236b77fdff8909d752b5ce298fa8709e01ee9b0fe2a230f1e7ac29bff1923f799fa219a18c69f8ad4cacfb39a5cca21","ssdeep":"","tlshash":"9101f95dda8ec3255c644939b8a52279b2eb0cee1c8371c4a5f2432afd38571688d1c1","first_seen":"2025-12-23T10:16:28.664527Z","last_seen":"2026-03-15T05:07:35.126079Z","times_seen":3,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":89,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/consultation_f5a394ef06.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/consultation_f5a394ef06.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:37 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10151,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8f24625154ac0250a6e4b4c5d773c760","sha1":"809f1025f3a0fbb341a6647e2a5f350d52836c53","sha256":"bfd7128d49024b0694a148e110e8b01ef020ed1f18e0b33c3c25ea718e3771a4","sha512":"c7e70dea15ed2e9b29e8b4d2e65a061a16388bcc4c9b927e38e4262bbdc61bc81f90f136c30b6601e6d7fd625a24a5a116ea01cd5ddf19d174e00385681e8704","ssdeep":"192:tKLou5FV9USIwcEMp1UMJxaM2pOFwI23HujUx0ATd:8tV9QJp1IM2pOc3HuYyK","tlshash":"0322b032d65cbece59404c25a21ddad08e1fbd5f8a6f6c85d9c136029ce3d84f1c10b9","first_seen":"2025-12-23T10:16:28.6907Z","last_seen":"2026-03-15T05:07:35.104439Z","times_seen":3,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/marketplace/?_rsc=8rrgv","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /marketplace/?_rsc=8rrgv HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nRSC: 1\r\nNext-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%5B%22locale%22%2C%22en%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D%7D%2Cnull%2Cnull%5D\r\nNext-Router-Prefetch: 1\r\nNext-Url: /en\r\nx-deployment-id: dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nReferer: https://test-4930-test.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _gcl_au=1.1.1055936571.1773550475\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MF5WKZBRZwqaKaQ41rAIhCgkg14zMHkh3l%2FqkU5H0oECkDs7xdmZLsl11EEKCHK3WNRJIo7QmZo%2B1UJ6TtA%2FQxNaG0jbaBbTKZDqs%2BcaAxhJVQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebc3ab9c35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"1d1ed962f2c3b3101433906b6b71e395","sha1":"323b3ebdc78e3e6f9581706771cbd61bfed318a4","sha256":"2de2499f4e5f896995ee7ebaa527a39b75f520f98e12110ec6c156a2433dbe75","sha512":"5fafbbe993daaffcadae26c8db453bf195c30dea475dccdfa89166f58bb900004a81e21ca42ce1c61f8a8c85587b4d934a953082a1fb1a5256eb9502fcc92883","ssdeep":"","tlshash":"d6c08c67351e3c0ce7a322b422c36aa0d08bd3b088da1a10c640025331c31278ac7315","first_seen":"2023-11-07T17:46:00Z","last_seen":"2026-06-18T10:28:42.4015Z","times_seen":2028,"resource_available":true,"data":null}},"time_used":224,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/apple-touch-icon.png","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:35.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nCookie: _gcl_au=1.1.1055936571.1773550475\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s%2BtBn9f6ZMJYjNecURcqvOzopbtAo3WeMwOBdbmiGJWyMHM7rY%2FULkYVjZ4erQ%2FY%2B%2F5kmsNZNKA7opBNKYysYL4C8eycMX8tp1RV%2BO%2FNMSnXLQ%3D%3D\"}]}\r\npriority: u=6,i=?0\r\ncf-ray: 9dc8ebc4bbaa35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"0c1531358a094a63ab72235c70ba67a5","sha1":"98c1eb7bb0b41de39143c94d5192824ba77b19e7","sha256":"4c5711b0d7d3bcbf457911ef6eb07d616f4173b89c2ab32f9d9b74b4c06a4282","sha512":"614e7bce3320b13268db307227c80bc2c637a608867aba8e9d81e98530cb15f0d2e714ef23b2d97326cfff7186636c9d5cd5eaff1bffd97690bb73a4c9c88bdf","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfxVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQTVdmnxTgWM68oqXHBemQdZ","tlshash":"2224c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.946609Z","last_seen":"2026-03-15T04:55:12.946609Z","times_seen":1,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/css/f334533ece7c068a9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.674Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/css/f334533ece7c068a9aba.css?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-14a2b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Jey%2FvNRHbyKFCsPL98QycNNeTtOYXWsdpNCEh4zsUvw1OOXBff%2FU0TbRf7B3KX47U04qffD%2Fw4PJ9JoDHOhlv6SlSGKulUqeRljO5Ifkc64U4A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc5b1135a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84523,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"1369111170954f8d7b73c96f2829d8f0","sha1":"f3ca4b1fa74dae70046e269e4492ab4979ecd5c8","sha256":"a7281e65625fbb212f8384a32136b727f54b1da15f78e8d3baad3f7204d9cd59","sha512":"ce540b6162a60f537a2517c1d4c45906a275a8f0361090d7fdc605ed9352ebdaf5cd9ffb7dbe265761d2bc46c2a48849d89e728159262f00dc64006046774a8b","ssdeep":"384:VNQPPX5MDpFSWQ1TuAowbWCVOgKhf7Q1HhguSbrIWM4pnNGDk5v2Gn3PJrd84fAh:YPiFSWW5DOZbpNlUpE8B4wAXxg0iGg","tlshash":"09839650169a2a3d782b85bfd1e6d40c732c8081ff3f79eeed6266094bd93d6067350a","first_seen":"2025-12-23T10:16:28.688803Z","last_seen":"2026-03-15T05:07:35.116196Z","times_seen":3,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/assets/icons/logo.svg","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /assets/icons/logo.svg HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:25 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69afece5-1509\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GNdFHgaiaupzW%2FC%2BGPNzJ3zTfyaxntt4JGY1XAZ55hT0Ruim29nSbVM9qDAcvghiUUiAn%2F3nCysMBNpIqmgmRCdb97EvcXmRHpmpohGDqjgWmw%3D%3D\"}]}\r\ncf-ray: 9dc8ebbebb5735a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5385,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"45b833a8d1f4b9c3d8009b2f6509260e","sha1":"279655a0388b7850a1be6337f14a1b881f8ef644","sha256":"e7acd4026d52925f2714d42f9d5035a6d269f233753535de0a2318e32473d7de","sha512":"90b275aa53b813256b8ec83a74f1c8a4271594af806b67ac02a827693b7c59c78e67b9b2787263f3cf5a0dde2bcab72ef3c384faa9d8d8ca4baa9fc9fde9168f","ssdeep":"96:zGmNsAPQKrdMXeDPNVjpi38hitOmgOcyrmZDSPnE+REH:zG6jPdueDl9W8i8mgOcyKZ+nHEH","tlshash":"81b172e436f6c6f4c505aff8d379c1a1333e2ce60ec4da5283931d49e5221ae8ca9852","first_seen":"2025-12-23T10:16:28.693856Z","last_seen":"2026-03-15T05:07:35.128576Z","times_seen":3,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com//uploads/5e8db3cca3f96307a7800965_social_telegram_f2a14412e1.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.613Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET //uploads/5e8db3cca3f96307a7800965_social_telegram_f2a14412e1.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:13 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":730,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a2de2479764884b01080f1bf0bd5f1ea","sha1":"e4b3ba04870fd0e458bc16c685016948c9a66061","sha256":"cb47a6c1ae4e00b7ccce717113a07aae3d8fce1b96cc5de62e758b4ffc78e620","sha512":"6115ad297d1b98bfec5aecbd236b5e199541e85ad4c69037b196185643b053174f78a3e66328be1eac1c14c67bb945e01f124218cda20aef97956b4e0d35f9f6","ssdeep":"","tlshash":"74019c3677c6b486c515c77c570428b6518f6cf06e04459f97603d287b26c7d81946f1","first_seen":"2025-12-23T10:16:28.685204Z","last_seen":"2026-03-15T05:07:35.10513Z","times_seen":3,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/assets/icons/arrow-icon.svg","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /assets/icons/arrow-icon.svg HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1qOqGIzA9IXlDVKRdkdh8afSfeYc4Mdzjjgb5pbfNjh7ItETn4krkkO2%2BSJCW1WN%2FhV4O3T2w6oey2qVgvxCmNaFom4v7UAFAdDeWVi3iC%2BwQQ%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebc24b9035a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"9733ca2c8f0e55a376dab7f891f19965","sha1":"52231ebd51f2028debc9dda0c10d6e0507b3525a","sha256":"f5defc842e208b00a94ca8be103744fd167a5eddd9dbe8d96e6915d682de2815","sha512":"aa112b37cd696f57c812998df97cfb8650ff9c8596ff7db92e4a238c8e1d19bbb6e3a77b3d9beda7a6b0c2eece607b846b26a294c4d1c82f4cd318ac425457f3","ssdeep":"3072:h2K6RNRPKxayg3aQblEqf1Vd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQ3VdmnxTgWM68oqXHBemQdZ","tlshash":"0124c41ad024dc29d7890d69bbf22e36b08dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.951432Z","last_seen":"2026-03-15T04:55:12.951432Z","times_seen":1,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":136,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/3063-e527376824cf716c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/3063-e527376824cf716c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-3b4a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pP%2BIUAZc3Q8pDscAeLGEFI4kRq5EI8jF9Oazf7bgyFiMnHzlNSrBNcgF%2FWSmzwRy3u8xvyg6YbN529Zp5ARY7aJpEa8OIBiKOeXHPZdWhvvG6w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1935a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15178,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15178), with no line terminators","md5":"ba908138dffcd3bd7fed7443dae83f7d","sha1":"0b0f045f90f6e9e9f8598bc68d2dfd6e2ef686bb","sha256":"82cb1308a0ca925147325583dae837ded8b548c94631de6d6f9ba4fda810f0de","sha512":"9ce1601e6ce0d22b09864c642537695528fe0531cecb2f7a571cddfe7ac98b49e9a1ea984abbb42ed814f926d4be6cc56edad00476c5ddc5a407db304bba494a","ssdeep":"192:uv0uWtS6xU4j+j1WtKVWa2BcwdrU2J5vCGdzldiPlpXRFSY7L4B/:u9WtIqW1WTvNFkoA49","tlshash":"c762f86535a8fce6125390e1d43f001ef2797d72632ee2c06366c4c4a9b99d9a122f7a","first_seen":"2026-03-15T04:55:12.952275Z","last_seen":"2026-03-15T05:07:35.127397Z","times_seen":2,"resource_available":true,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/459-3e5863a59a5dd3599aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/459-3e5863a59a5dd3599aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-16326\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WV5%2FG1Y6uTOKJfCDN%2F6FEk5%2FY1uepwHWH5u2OEzhiv48p%2BqHHH1PTdqX1MUDtT8mnhHy9t%2FhY4MPLdvq8FQwT1EOFaAz733AfavYWzi5IeRGLw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1f35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":90918,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"74ea4b2090e3fff898b0be95c3aee090","sha1":"3824122bd57f582b26da3364af220dd97d99cf92","sha256":"8cd598a69d81e56b9848daa235285022d2a8f0759c4c49eef94f25ad4e3da5aa","sha512":"d376bdcc4b8e329e11e16fe126bc85def551d9869775e6fec9606eff465771721e7da82271eed99891071b1af05192e78b7e742d41658e882e62c397b1652948","ssdeep":"1536:sfVrO4MvBl6vHr8ftaG6xqoqQvHDvf8UainBtViA6wLFBLObfnjK67kEh:TOxqofNWmgDh","tlshash":"5993098aa221b57692eb129b92a5c151b3f54844b449c43c71f88cef55bc99c03feff8","first_seen":"2026-03-15T04:55:12.953152Z","last_seen":"2026-03-15T05:07:35.106526Z","times_seen":2,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":225,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/3_034b0ab2a4.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/3_034b0ab2a4.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:40 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":917,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"509ecde112cae4c538a1cab916a75a81","sha1":"f7bec476a8a405d2270a327b1c814189aaea9949","sha256":"4d9b18cc9e0e836d67602a3072c3a373b652ab0df48c870ea59d60d1871b16d6","sha512":"ef05ae052a780dfedb53a1987a9498c7eb82df7644ce2bce30a916908efc7ae8052a0c588b1d41f9a5514dd9d37bc8eec95ab182bf4cdb0dbf164b940f99d3e0","ssdeep":"","tlshash":"4211e96dd7cec2692c944579b96531b5f2ab0cee1c4371c4aaf2832efd3c965588d0c0","first_seen":"2025-12-23T10:16:28.716977Z","last_seen":"2026-03-15T05:07:35.131747Z","times_seen":3,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":101,"dns":0,"connect":23,"send":0,"wait":39,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/www.googletagmanager.com/gtm5445.html?id=GTM-NZ8HMMP4","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.426Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /www.googletagmanager.com/gtm5445.html?id=GTM-NZ8HMMP4 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6%2B1FLLVegPrzHzc17BW4ZMjjqMg1SkmLhfhjz3kUUghWqB5ryMllHrQKQdloTkUxg9J4dIXa52xvdCURjmW1vk4iyTkBIw2sDxxJrjfgNluLbw%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebc12b8735a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":243,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/www.googletagmanager.com/gtm0ff8.js?id=UA-173249582-1","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /www.googletagmanager.com/gtm0ff8.js?id=UA-173249582-1 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7NIIlzthVTral%2FaguEMHHhdhUdaco1YuoWaAe%2FBV%2FoIknbDcVe%2Fk9M5W1VD6OAaMAabHiN%2Bhb%2BHfyjgrS%2BIA0KnW8CgU5Qh2SC%2Bo3QiH2Hvp%2BA%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebbc7b2435a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/0_294586c8db.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/0_294586c8db.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:17 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]}],"data":{"size":911,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6a82d89dd1889d2ad28d91955a605935","sha1":"0c618bd8cb863b55cb9ac47acfdcbe63ec8a5ce3","sha256":"c76f54102ea341067edd4d65486f122af8fe713b8fa188a7ac09c3fe2e3b4ba3","sha512":"850f83ed0b48b335f954f0e71845c6261cc1806629471ad48fcddaad1ba780a7fc4996d6c9da211622c32c7d8e53430ad1f9ecf144931a473def8d5d10b0514d","ssdeep":"","tlshash":"3711617dddcfc37a28948679e996322572a708dd0c027284e5f6433ffd6c4a5588d1c0","first_seen":"2025-12-23T10:16:28.640485Z","last_seen":"2026-03-15T05:07:35.129343Z","times_seen":3,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":105,"dns":39,"connect":22,"send":0,"wait":27,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incluence-strapi.adm-devs.com/uploads/5_0dcb5309dd.svg","fqdn":"incluence-strapi.adm-devs.com","domain":"adm-devs.com","tld":"com"},"ip":{"addr":"31.220.74.191","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"incluence-strapi.adm-devs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Mar 2026 03:16:39 GMT","end":"Wed, 10 Jun 2026 03:16:38 GMT"},"fingerprint":{"sha1":"60:44:8C:61:66:26:7F:A8:C7:CB:C3:34:15:35:38:AD:39:0B:39:DB","sha256":"6C:33:D5:26:17:DC:27:11:CB:45:29:9D:12:4C:34:3C:7D:2F:68:9A:FD:88:76:B1:07:90:D3:51:AD:D1:32:3A"}}},"request":{"raw":"GET /uploads/5_0dcb5309dd.svg HTTP/1.1\r\nHost: incluence-strapi.adm-devs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://market-assets.strapi.io;media-src 'self' data: blob:;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: \r\naccess-control-allow-credentials: true\r\nlast-modified: Thu, 18 Dec 2025 18:24:34 GMT\r\ncache-control: max-age=0\r\nx-powered-by: Strapi \u003cstrapi.io\u003e\r\nx-frame-options: SAMEORIGIN, SAMEORIGIN\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: none, master-only\r\nreferrer-policy: no-referrer, same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Strapi","description":"Strapi is an open-source headless CMS used for building fast and easily manageable APIs written in JavaScript.","website":"https://strapi.io","common_platform_enumeration":"","icon":"Strapi.svg","categories":["CMS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1005,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fb7c40e2ab44cf0675e56001520cf357","sha1":"3acc5b132e40a933c1e4f9470d5ff6120fbab3d5","sha256":"8130ca2d43668d4a83979768a3587c04f270fca85faf9185bd1a6c1da41d50f2","sha512":"806d2fd0521b0bdb95e9bff6fdfc2d7e9e27dda9f76857ed88d8594c181e33c99c87661362c06f781e011782f635ac6766dcba334df1c5d3b495fb4fc0a635ed","ssdeep":"","tlshash":"5411c45dde8fc35508a89935b8a62268b3e70cda1c4371c8a6f7832afd6897559ce1c0","first_seen":"2025-12-23T10:16:28.628249Z","last_seen":"2026-03-15T05:07:35.109231Z","times_seen":3,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":111,"dns":45,"connect":36,"send":0,"wait":25,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/media/28793f5c5e3d822d-s.p.woff2?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/media/28793f5c5e3d822d-s.p.woff2?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ytop4zxCasHFLyyk4hxi%2F5V8VB5lQF3pQ%2BdzGuBnSrShiG1fEMEOYRsObswtH9uvHcBqSCKmYSUUAk96mwvkOpgpIPIgR2645oMSph%2BehPDGNA%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebbf5b6b35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"77b663e6c3e45c12b335fe5557f0a696","sha1":"173346b8960dbd77de54ea8509db22ed9390397b","sha256":"5db2daf4978b7be2cf9a6fd4bc567f480041304f0269e4a81615ae6f0b9ba0be","sha512":"01622ae7fc7a152af2f1d479b6ef680d8d7055b4b09b70596b1f5bad725c351705d4f1e1e9d55a8d370c868b488256b3fffbf22afa31bf34c4bad2ee868b5ad0","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfaVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQkVdmnxTgWM68oqXHBemQdZ","tlshash":"9e24c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.957001Z","last_seen":"2026-03-15T04:55:12.957001Z","times_seen":1,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":289,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-15T04:54:33.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8B51x3jvMCepRT4USuCoj0Cqoi2r8F4ETekXEYiA61e%2BKYNEMwV497Okzjy18%2BHr8xPwTFaONSROrGs7hIAwR%2B2WvncepJVnWbFkwtV4hNTJJA%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9dc8ebba0a81c759-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"38e14e023bb327ae91afc1160f190501","sha1":"5184152d9885f965c6bf6c8b67766a3a10c90be1","sha256":"049b5c80806fce84c42d3133ac965d712c63eece7424a0e00241c83fd95f015c","sha512":"0f1fe36fefbafab16f8c76ac7800ae9b9cf4714e383122af9c1a150204a3185aa2277f8de8f58eaadcbc3c50f4fa956d48c4734882c48ea4aa6b079ac20f004b","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfqVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQAVdmnxTgWM68oqXHBemQdZ","tlshash":"0724c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.957862Z","last_seen":"2026-03-15T04:55:12.957862Z","times_seen":1,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":23,"dns":11,"connect":1,"send":0,"wait":214,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/4bd1b696-cc729d47eba2cee49aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/4bd1b696-cc729d47eba2cee49aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-2a2bf\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DTxmCaA%2B%2BcQ5Nrrdzq1TUJ9VdcoOyaqkq9p0%2FmbxVmw8fCIo1ViXm4MLKXpVe6ZG0kqq99TtzCQdbceUvXsOrcaiqgbRkGgxG2X7abRsmlHq8w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1435a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":172735,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4004d2af30bd6d785706bf90c1dde47b","sha1":"01c941f8150742edddc06adeaa5bd8880fbff05a","sha256":"c382df3dab1b557cc2e49df81b8e3328cb7d7c0287cace83a7ae6325e7535e84","sha512":"afeb1eb23a53f681242ee93797da76cfba0c44d08e6c4b91554f0af2331942bae990b1a66639f05ae19b9057608b607585b421162006b94b6877a645f6e405f8","ssdeep":"1536:HWEkaLGwcd4Mofwxnig5O0yK8QEVWhR6HSHDbxULwzLB7KCUrST5YBOPZSfL3p4:maL1MooL+HiDSLw0K4WSW","tlshash":"27f3e7ec3999e651aeb302a700df2803737c261b240d4d60a614fd9da5b845bb17bfde","first_seen":"2025-07-24T18:51:53.651215Z","last_seen":"2026-06-18T09:42:34.611562Z","times_seen":543,"resource_available":true,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/chunks/main-app-06999b77aed4f71c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:33.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/chunks/main-app-06999b77aed4f71c9aba.js?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:33 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:24 GMT\r\netag: W/\"69afece4-243\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xqDQ700EWwppkBXiEQlitVCF1jG6gI2RddY6aD%2FyC2lUNDakoYiwcbWQXs6%2BT%2BxlZNsgP5fSxeAMch%2FIYDG29PQEp6rB9iHxh92lXslK5hJc0g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9dc8ebbc6b1735a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":579,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (579), with no line terminators","md5":"653025f107e02bd51748eca07e3997df","sha1":"4d9cb486188da651f4bbb7c4c2f2218d7d9cb952","sha256":"02e9a3b6263c352edbbd45f446b67de0a506732eebda36c097c33f22326b95f5","sha512":"dff4f8ab39ea4dacfcec6574f90a6c1594300e0bd5bed7624d19240bb3363532139c46624fa715981369a5962a98294d852a836a017eb07fe45b806afdb3c01e","ssdeep":"","tlshash":"a2f018965f4cf41f5c266e74fe97ace3181f4135202b4e647900de612c27b6ce260508","first_seen":"2026-03-15T04:55:12.959205Z","last_seen":"2026-03-15T05:07:35.130881Z","times_seen":2,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-QVF6EFRFSP\u0026cx=c\u0026gtm=4e63c0h2","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"172.217.20.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:37 GMT","end":"Mon, 27 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"8B:BA:E2:19:5D:6C:81:59:ED:D8:AA:3B:2D:5F:A3:A2:C8:A1:E3:DF","sha256":"B0:8C:FC:C1:98:34:EB:0E:FF:AB:13:B4:9E:AA:B1:7E:02:11:9A:93:31:F2:A1:0F:23:9E:2B:C3:6F:EC:26:F8"}}},"request":{"raw":"GET /gtag/js?id=G-QVF6EFRFSP\u0026cx=c\u0026gtm=4e63c0h2 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://test-4930-test.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\nexpires: Sun, 15 Mar 2026 04:54:34 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 159202\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":491912,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7243)","md5":"8d125c7e173095cedc15d87c6a2ddca5","sha1":"d3aadda30b549ee2c6f7abd57a93a0d2eb4a2da8","sha256":"42c9b8c74d40592ffba4cae49a7bfce79382e4b9efe48873a0c6ad36887e140b","sha512":"29da1088955f3b0d2e974ce1a5cadabe781e6bebc70712f0df3416b315a088df89b36c8d3a8d9c895dca4af026aa548799396c88ee2810e66f6148dac8e34d32","ssdeep":"6144:9+KleM+Abwq0aY2N3jprC51Q84hjASArZ7M2aOX3/JYZNmcT1ATvm+:qpLRa/3m1Q80KvKMj","tlshash":"55a4f9ceb3c67426929af478503f01cba97b25a2b45cc89af189ccf02d7459a5137f78","first_seen":"2026-03-15T04:55:12.960025Z","last_seen":"2026-03-15T04:55:12.960025Z","times_seen":1,"resource_available":true,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/_next/static/media/26d4368bf94c0ec4-s.p.woff2?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /_next/static/media/26d4368bf94c0ec4-s.p.woff2?dpl=dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5 HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WWqQ7naxoQS70bJ1g0EpL75WcQ9B0%2BVX0buibk%2FFdnrrfGx%2BZilqYspVVS4c6nCpktB8%2Bh4W4WlkCrzxBr4hZ2Y%2FjrXowthve4qs7HVtGhUGLw%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9dc8ebbf5b6a35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"a093a2b093ad5841d5d0b1f4aa8ac2ac","sha1":"cf5cefba1036bec104c775f5e6fd59af945201cc","sha256":"c605f4bd9755337b110469de763d3e6f04d665bda416af2fa49e105946ffdf95","sha512":"bdee884e8dcfd2fefedccab1701c1c50b0192578a610d271ae8cc910fde70866105507acd0878533cfa4be62317f41bc80f307fdb671e756ab7e37ca230582c7","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfFVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQnVdmnxTgWM68oqXHBemQdZ","tlshash":"9424c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.961436Z","last_seen":"2026-03-15T04:55:12.961436Z","times_seen":1,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":157,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"test-4930-test.com/affiliate-program?_rsc=8rrgv","fqdn":"test-4930-test.com","domain":"test-4930-test.com","tld":"com"},"ip":{"addr":"104.21.41.141","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"test-4930-test.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 09:02:08 GMT","end":"Mon, 08 Jun 2026 09:02:07 GMT"},"fingerprint":{"sha1":"73:91:E5:50:57:54:3C:0E:77:75:1E:11:52:AD:83:09:C1:AE:42:EF","sha256":"7F:E7:97:02:BB:85:86:A3:F7:48:E9:F7:B3:89:F7:33:9D:53:00:61:51:8F:AA:05:64:55:3A:7C:37:47:34:EB"}}},"request":{"raw":"GET /affiliate-program?_rsc=8rrgv HTTP/1.1\r\nHost: test-4930-test.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nRSC: 1\r\nNext-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%5B%22locale%22%2C%22en%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D%7D%2Cnull%2Cnull%5D\r\nNext-Router-Prefetch: 1\r\nNext-Url: /en\r\nx-deployment-id: dpl_BZD2sCkkVpLtJH5S1hvfBSimycf5\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 15 Mar 2026 04:54:34 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 10 Mar 2026 10:05:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cvkrKSDzg2Je3qoLIwhrQbPJ7LQ%2FQo9VeF36r7Lt3V5IdvWtp1lLZ4fcQ1mRfmVGztlpm%2FKP35YMkmlDRhBvRuzPt%2B9xyB6IHu%2FkTr2X5O6kqg%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9dc8ebc26b9335a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":229275,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65243)","md5":"1ef1d7007e090070a1fe5ab4b85d297e","sha1":"39ff25df504787f0f3465c6c8f4409e22a17899f","sha256":"f674d4e6a533ad1faaf4f8a3ab7c1a3876dfff67317d905c036cd6a3690b2ab6","sha512":"dfcc59b07592f9620629dfc0c880511ef419e066367d9a306f7f6ede19558d2b2df2c27fc2d953d358d6cf8388d74f2bff1fc136f620c27e8c047dc51dacec56","ssdeep":"3072:h2K6RNRPKxayg3aQblEqfHVd7ynxTgWM68oqXpCQxBtEuPtmbdZ:h2K6Uay2aQxVdmnxTgWM68oqXHBemQdZ","tlshash":"2024c41ad024dc29d7890d69bbf22e36b18dc04b458b1c69a3ffee1163814f1b7a39d5","first_seen":"2026-03-15T04:55:12.96237Z","last_seen":"2026-03-15T04:55:12.96237Z","times_seen":1,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"test-4930-test.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/ccm/collect?frm=0\u0026en=page_view\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026scrsrc=www.googletagmanager.com\u0026rnd=351181641.1773550475\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026auid=1055936571.1773550475\u0026navt=n\u0026npa=1\u0026gtm=45be63b1v9234071172za200zd9234071172xec\u0026gcd=13l3l3l2l1l1\u0026dma_cps=a\u0026dma=1\u0026tag_exp=102015666~103116026~103200004~115616986~115938465~115938469~116024733~117484252\u0026apve=1\u0026apvf=f\u0026apvc=1\u0026tids=AW-17660074394\u0026tid=AW-17660074394\u0026tft=1773550474752\u0026tfd=1511","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.156.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://test-4930-test.com/","date":"2026-03-15T04:54:34.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 08:39:05 GMT","end":"Mon, 13 Apr 2026 08:39:04 GMT"},"fingerprint":{"sha1":"AC:37:C7:AF:75:CB:27:69:D4:EC:B6:A6:68:E1:51:4A:A3:99:78:B0","sha256":"63:86:A6:69:FF:ED:40:2B:88:13:6E:3E:4F:01:08:AB:8D:96:19:72:D3:22:DD:14:05:79:8E:5D:58:1F:0D:39"}}},"request":{"raw":"POST /ccm/collect?frm=0\u0026en=page_view\u0026dl=https%3A%2F%2Ftest-4930-test.com%2F\u0026scrsrc=www.googletagmanager.com\u0026rnd=351181641.1773550475\u0026dt=International%20law%20firm%20-%20legal%20international%20services%20and%20consultations%20from%20Incluence\u0026auid=1055936571.1773550475\u0026navt=n\u0026npa=1\u0026gtm=45be63b1v9234071172za200zd9234071172xec\u0026gcd=13l3l3l2l1l1\u0026dma_cps=a\u0026dma=1\u0026tag_exp=102015666~103116026~103200004~115616986~115938465~115938469~116024733~117484252\u0026apve=1\u0026apvf=f\u0026apvc=1\u0026tids=AW-17660074394\u0026tid=AW-17660074394\u0026tft=1773550474752\u0026tfd=1511 HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://test-4930-test.com/\r\nOrigin: https://test-4930-test.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-cache, no-store, must-revalidate\r\ndate: Sun, 15 Mar 2026 04:54:35 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncontent-type: text/plain\r\nvary: Origin, X-Origin, Referer\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://test-4930-test.com\r\naccess-control-expose-headers: date,vary,vary,vary,server,content-length\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":67,"dns":0,"connect":8,"send":0,"wait":17,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}