{"report_id":"d582ea0d-341f-41ae-9c6a-37629b208933","version":6,"status":"done","tags":[],"date":"2026-06-01T14:04:27Z","url":{"schema":"http","addr":"vazowin.com","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"title":"Vazowin - A Leading Online Crypto Casino Built on Blockchain","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vazowin.com","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-06T14:04:27Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"vazowin.com","ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-05-31","domain_rank":0,"first_seen":"2026-05-31T11:05:10.959593Z","last_seen":"2026-05-31T11:05:10.959593Z","alert_count":93,"request_count":93,"received_data":2560285,"sent_data":46359,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/04ju1lilzr~yq.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"be7efdd73ae6b08f606c4e507a02a490","sha1":"f87a1432bcb30ac2d13adbfe57fe549bcad93d8d","sha256":"03d5bf51e580a0801ee37a2fbf5b7f44d38f5b467905f251d50fb1cf2abf31d0","sha512":"0be32c9ba10fa282937a740447bcb7be686ca2426fb4e71dea26e78b896b004f9fd50aec7a7e77c18370da2f2daaac2b240030b3ca99fca129b97333e16051eb","ssdeep":"192:10ZAcqvhX35laDNvhahXeb+dT2ZNb89/xzGz1pC6aH+N6pGO4W:XV5X35cDB0huS2ZNCqat9pGO4W","tlshash":"39021bd7b69ef831567a41a06937c20ab63d3937344d9090bbba4ce83165c8f8462fdd","size":8891,"data":"","first_seen":"2026-05-30T10:48:25.64876Z","last_seen":"2026-06-02T20:28:59.129077Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0.c8994ibbdin.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"195c9cf17d38b49ab75468414bd618d7","sha1":"1b4489bc379bc5337669c307d29ddf19143ac790","sha256":"a8d5209f7e6e5f2fb2d3b3ac6cf661ffc2309bb78c402a395eae4c35cf5d00d8","sha512":"6990aee5eea92094ea4fa3711f43910aef1e56450ebd0861751e50670d28422d5ca93a26ee4dc73b36e00753f3a6c34459d59aa49135a0f55a6ee8e9c62513ff","ssdeep":"384:z93fT2HDJyrTzyDSSH0ZymskZvQ55LQP6RrY7T8t6YLI:l3r3yDSSUHvQ55LQP1/8tpI","tlshash":"b2923c743295fcd5525fc5c0e83f400ef7292d75a57db0a4b3fc58956aa0884b0a2fba","size":19847,"data":"","first_seen":"2026-05-30T10:48:25.558987Z","last_seen":"2026-06-02T20:28:59.102481Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-04T17:47:43.951311Z","times_seen":152494,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0t1et0tty8o9s.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9f98ed0ceae346d9771b94a6cacbf831","sha1":"9293e23647479836c9d6369352495c8bfe66dca0","sha256":"317b6e438c77d4bfd1e1d9143827405545e7753c7ea3cb8027bd01328b5da3e0","sha512":"97c4a69947e37b3f02d4fcfef1ce0e61c36cc8ead53781b2693f9914bf66ecf99ddf966eea7e45494c3a929279f975aceffb77f3e72dfb2d7cfe5ef9664a05ea","ssdeep":"96:PVQigpuv2J/HG52j45y5Iie0RES0/0QPf5v2ZA7sa6Rbxmqv2P:dQigp5lDhEB/0IMZAZox2P","tlshash":"b5d1d820f385e89b775a00985477a00ef214382a9bb8f87177dd54f21bc05f67d6abe8","size":6546,"data":"","first_seen":"2026-03-20T18:36:46.34169Z","last_seen":"2026-06-04T16:24:51.751877Z","times_seen":655,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0tergj_hqkn7i.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"381218a60caf159c474c0371dc34029e","sha1":"0b6dd364c3fee70bf5b4c75b1e58942f4fa12cea","sha256":"aac85f662f3dcf66534bbd32a2f40f78a32b865be7f430e32af80e122cef857f","sha512":"72d25afc2094afb3e9dba7413029707a1424f712cdb28340e75c2b7bdcb122f35d69035161f76f47ed7e4ffa0be2d32485944e50babced4ff34582df19d3c099","ssdeep":"96:HVK+tlwyJK7HP8SV+Fdyt6hj3AZH4CUXSNRYXQ5RnAQoKVxIl3l0ql/wGP/2o400:4HhV+FdfFs4CUXSPAIxODl4G32o4c0","tlshash":"d7e185dbfad833f0908557745323a156b23f3c7f36cfd5d5878585c4526948ce26a80a","size":7428,"data":"","first_seen":"2026-05-30T10:48:25.590114Z","last_seen":"2026-06-02T20:28:59.097232Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0pqt~8bl3ukh4.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c621d697f789f9a625e80384da50359c","sha1":"21b6e9613cc917a5fa984be427364d03e5757cbc","sha256":"5261101892e2476e4346e19e86fd5f19cbcf7c765ff76e92eb9cefcc86b6db6a","sha512":"59a0ad4d3270e18ccc1178b7a1c8902793a70e88a518f01ce894d1d3335251953289630dcaa26b4c6d9a3b6bb5563b8845d5fabfc521878c382c7d2a56957ffa","ssdeep":"384:p7/A2dkTd93jBT0diRTRIpowbIBqjac/s+rPYjDExpCkKMny1V0U5+wQhKHAlwe4:BN8pcowkpc/s+zYXExp7ly1V0UVD","tlshash":"4513e7b132d4faa3539341e0e43f2016f2780d7520ad6470a7e89c9f754d88da6befa5","size":44414,"data":"","first_seen":"2026-03-18T18:55:57.705164Z","last_seen":"2026-06-04T18:06:42.234289Z","times_seen":5839,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/turbopack-0etkxqhcli4a9.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"90e8ac2e6c449ddbc98d329128b75b73","sha1":"fa6e0a6b6cb5b17c440a7068dc75bd43b9ad2d7f","sha256":"0564e3ac01725161d19467cb9201b4c10a12c05a50597e4ede2e6c06c9dd4a7f","sha512":"42cea171ba1f64990691d35ad3dca6e8ab8cdcdb644360ff4174cfcce646377ed617c8dc01792cb1635cd269b0bc6ada1111db34aac2447e73400400ef14d3a6","ssdeep":"192:r4gMSBC8gEsg6d2hE7oGpldETND+N3sBT4fCTKcXX6hfH2:r4gMStLsplqy1sqCTTD","tlshash":"5522c7da37a6f07343afa4e7d06f4004f17984a9145e141cd3aca8eb2c354aa85e7f76","size":10613,"data":"","first_seen":"2026-05-30T10:48:25.55618Z","last_seen":"2026-06-02T20:28:59.100297Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0yctg.lbns7cx.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e6dbb6417918d8de79010d13e28fbf1","sha1":"8d926f69f47578659c3ae8ea3c589528929a4213","sha256":"aa5317a27d957e71923c4392130129f7c923e87425e5e3f21d807cb8363ed1a2","sha512":"50869f8be5514ae913b4a0ed859fa74ee053cf7c1b825e5407f9c11a5d2d98948231e2f682817b450ea04a19e9edf78e263b38f168ebe632bc3de45397bf8e0c","ssdeep":"1536:3sLL/gHFrNd1XoZaP4o7K09tFt0pfIrMv9sN0wywCu:3sLLaL","tlshash":"d5433b0893909bf8ad8cc7f49b71749972a3b8b6f970c2d8f66e0818de150d461fc5a7","size":59047,"data":"","first_seen":"2026-05-30T10:48:25.569032Z","last_seen":"2026-06-02T20:28:59.096254Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/05.~u_jm43496.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"24a8b49066beec653c96a54e3d783fb9","sha1":"2c078e5f367c6f71b1b4050c4a0826e8064b43d2","sha256":"c31c7f2462bce25e61842fe6911e73d03406b7a3a9d897fb632a3440667c84fe","sha512":"013bb7ff20b058a0f79b8172c906b664a3f5230fb17e605dec44c08e473ca68652a6dbd66f1683ec6c5a363b13b081120d11c5453b31a4f3e13efe3b94c2574f","ssdeep":"768:ZCZH2pny+wUF+Kr1VZGsa8YXd53LbMM/7:aWpniUzZGsa88M8","tlshash":"15e22b7131a5f8d1939a8284847f440df2392e75642eb064b3fd5ce967a58c8b0b2fb7","size":31247,"data":"","first_seen":"2026-05-30T10:48:25.635126Z","last_seen":"2026-06-02T20:28:59.114601Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"52e1f6e9d09b71873e5efe424451ff7f","sha1":"8df02656d2e7e7abc43cbf6b73629104287a671a","sha256":"865788291611162882d8570a3b01641f50db76bc3b61f76e8e5fbd13bd388d03","sha512":"fb00bc2011b317ffb67a05b9a66782268b09a0957cd2e7370f8e0c1a731ed0724b0604b59244071b3f0cea3f188873c2953380444a6c14ad3973288aa435b7a6","ssdeep":"48:LttePFteGV9+CcnKjr1c6v/dG77OUiVr3olqteXteQteGBtecyteGV9+CcnKjr1r:LcvotyDWmotyDC2fotyDwotyDEFR","tlshash":"d991ba1ad90efe103931ceee846f4f32a9c1dd33a436562daa1dd9dc44219ba53ed8c1","size":4344,"data":"","first_seen":"2026-06-01T14:04:32.517326Z","last_seen":"2026-06-02T20:28:59.157058Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/10s19bi1jo.gk.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d23ac5cc87d807c1ed706df398b147c7","sha1":"da31da2e6a01ffeda3278ce92d37e143bb7a1938","sha256":"4172eba18b5e5e644872f4926457cd9adf5a75a1f0bca00308ce4d41d89c942f","sha512":"5d2541f98e8aa0a01ade90896a52a769fc0571a1df30bb498bba46777c2c28f0ab0e0c98410e2c161a8cf3ff60df0e36a89ccb57695d03ddcc36eb4f49c69157","ssdeep":"1536:fx8OMBLvOv9rJEVYzcjRt9rQzsK1vE1sXFNAumTflef5GrBAUmBQ:fHfQaAOdNAuWZ","tlshash":"c6342258b3e4c2e94a88623b0dbb2509bdeb765dd0ba751862c4cd6cfa24fc45d1c7b0","size":251848,"data":"","first_seen":"2026-05-30T10:48:25.617642Z","last_seen":"2026-06-02T20:28:59.086455Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0ox_03ak_i_jh.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"088ec40a4965e44ad568004a525ccf3c","sha1":"9302d3ced48402fda69c170d88f6adc78151c57f","sha256":"2525f70ff99ff3c4f736e3f317f5b6d687c61882342856c347b63b90a6eef11a","sha512":"2be90eafcaa61440ca8e042ef3de439fb7fce4bb295460136ce4b1f6bdbf76c3bf5b1b9d9f306e39d4e50a670221d383ca4e0afe5228c7e153519f34ed26f1ca","ssdeep":"","tlshash":"ac4134c5e590a6389cc807b44b254812693966ff70dde5f987ae0ce05b43dccf29648e","size":1930,"data":"","first_seen":"2026-05-30T10:48:25.551671Z","last_seen":"2026-06-02T20:28:59.11643Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0b8e11a32fd3fb81d05346a7ae422a1b","sha1":"63f410a6a8c97ab82a5a081212fa3d1772e6305f","sha256":"cd487dbdec0ff7d2c792cd7a91c84463b2200ab548180ffdf7c352d4621615a5","sha512":"8aa5f7879afba2df357b6c466a6b878ff5ac08821f60beca1e6cac5c835e5d22ec62edfd9a5f83616736ea25829c94ea3cc3282c508a69cdba1bf442ac032ac5","ssdeep":"48:LQGV9+CcnKjr1c6v/dG77OUiVXoteGV9+CcnKjr1c6v/dG77OUiVXqyWtec9tecJ:LlotyDCotyDsrotyD+otyDPotyDE","tlshash":"1991984bc90efe103920ceee90ae4f32a9c1dd37a436562ceb5dd9dc5421a7653e98c1","size":4338,"data":"","first_seen":"2026-06-01T14:04:32.518428Z","last_seen":"2026-06-02T20:28:59.157843Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f931305948e29f864176932e39539beb","sha1":"b0d34ab01b753510e8d2209ce60b327d039a62a0","sha256":"41fe5a2df713c96e5aa0b071e116f7e7bd6c2a7b71fc3f7338ae15101b8deb29","sha512":"bf048d51019dcf7753a36fd75cd8fcf7d6710ac215079d0131e5611876470f4dd64a056ff82f7646898df441aef76e88b205da724720c68cda80f02e62962f89","ssdeep":"","tlshash":"5041111ace0efd113921ceaf542e0f36aac0cd37913a552db66cda9c522297717de8c1","size":2194,"data":"","first_seen":"2026-06-01T14:04:32.519474Z","last_seen":"2026-06-02T20:28:59.158599Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0gq5us0dathdz.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"41b9c6444110cb618b6c927b4a2e4283","sha1":"5a25259c11f58e44a76a9bf294c26ddc02f8c12b","sha256":"2aebb627a94ef516e0481423c93daefe9a99c3d3b6b2ff73c5f8cc07fef1a16b","sha512":"90c33c45c0ccbcd0d503ecdf90263d29c010d74a3227d637eec984a7b209ed7afbd9b84c38b1f306c77ff9285fa8df676d3418c89b1fa16635c6e25f9763336c","ssdeep":"96:JF6z0LATueN1153FHjLW0CpmFVshMh+VzaIzg63Xr:LoXz17201ehMYVB93Xr","tlshash":"9ea166b51b1c63ecbc43d1382726605b536fa6bfb1da94704f9e9ba084e3488f393455","size":4975,"data":"","first_seen":"2026-05-30T10:48:25.62592Z","last_seen":"2026-06-02T20:28:59.150428Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3651d8b0325b41973c2d50c53b606ef1","sha1":"424cb553fe433fa3000f1bceca1a1f25f40247b2","sha256":"fa479aaded20bc4fd4631e0dbdce3179d9aac3b03ffeab6fdee9690fe98de896","sha512":"0fb3e925ee6ae1ea70daff6e108720ecc5566ba3807430c343ffa7100300c62d2f287c6961dbd68aa247da2f64b8480feda6330fdc878ccb21410b0d81889c6c","ssdeep":"48:LZMAb/+qjSuvD2Z9K/+ujkQnW1VarjHkk6BpRuLwSD7th0O8RiDEdpDg65p9p/+w:LAUthp4UgpyjvUPh","tlshash":"bb91700fbc15df02dc3a6c7d013e8e7a14ccce778761d9b9819ecd491a166b62bd9881","size":4351,"data":"","first_seen":"2026-06-01T14:04:32.520572Z","last_seen":"2026-06-02T20:28:59.159346Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4fd8077bbf32d78e38c636d9eef2ee6c","sha1":"6646651cd509434c4ff5838737b13529ade7648c","sha256":"9d5ac965904277745abd73fa89c84238c479537cfbde5cd6d3cb9fd9bbf06d8c","sha512":"b5faa4f2e19312d85bb30d4a43a8c48f82a66a63b410be0277923d32710c426679345657e76b9c7876eb384aec1a5c4bf39714f52ed912310d663675c5c7422e","ssdeep":"","tlshash":"764126ae6409de5aec6e7c5d083e6c36008c8d7b4aa0df75c2ddce101a4247d7be68c1","size":2154,"data":"","first_seen":"2026-05-31T11:05:15.444792Z","last_seen":"2026-06-01T14:07:01.098773Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9c29bdf6e7e2467871737559f1979066","sha1":"ff6b201340c60a7309bc5d86ca2e91f608ea31e3","sha256":"7b024e5a84280f1092dad66c46f642b7a2976054b1e1e7081406d44f4cbff25e","sha512":"884d8b274599f0dcdfb8968fbeb69fa5c3007ff13ea8f4ef0ed0ad54e0974cd9b95e5ee134212520546eb9004c218de4bbdae25346b2c99a9a0abc48056c3300","ssdeep":"1536:rKI7C5+3//yU8fmuAaN1yGNkptBgGOZ8hZFQIxZ+:+2C5+3/6HmufgRtBzHFQIxZ+","tlshash":"4e73f80fa628d66bc5c35d4bb9bf6d7b756c804402d180bc6cfec11c02998bcd6bba94","size":75330,"data":"","first_seen":"2026-05-30T10:48:25.673218Z","last_seen":"2026-06-02T20:28:59.161074Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0jxg8u~p~fktx.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"75afc5935939d782a0f7de52aac4148d","sha1":"a7294862e84b97610510e09c6aaacf525a9ea366","sha256":"ede8f2f9998b003ec8186f039e3d961276792494ca4e6328fd950ba34a200ce6","sha512":"fc94a7e49443e0ed6101a72949634ffba0474fb5c8ccaabc1cb17fd8954689ef503c0b6864d3d98a38b81fe6ca1f6a81d17d583105bac5e19cc553f05ddb4d0c","ssdeep":"","tlshash":"b23145752b0c11fd988dd1a45b2bb103103db15770ff04305a9c5e88ebd35c9f0a669b","size":1703,"data":"","first_seen":"2026-05-30T10:48:25.558247Z","last_seen":"2026-06-02T20:28:59.101761Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0nh8v~7ip8our.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8b5292b96bb875cc8a420df88a5178b","sha1":"14278e64cd16cad54ede3c81acceb66defc82bd2","sha256":"186311357d3cc801cefa61cfcb3d285ab5675622d6556f5e69aad00a9a80ecec","sha512":"266fa6af18c2187121ec46d999fa91304c94be82fff0721503af81a6a73dcef5fa630dc0cf80fbd2ddcc0e1c32a1fc760c2dfb27431818860e70c2d1e4e0f909","ssdeep":"96:XKlThyvcYNmheMr4RfRlr0OhBQsNvfOOEZcDfg1DX2o+:65gvcYNmhej0OhBxfOyiLM","tlshash":"50b14368e76c62bda84206d8463344212b5f057fb3ca5476cc5dc7f4f64b928cae3c9a","size":5433,"data":"","first_seen":"2026-05-30T10:48:25.557094Z","last_seen":"2026-06-02T20:28:59.143624Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/12fdyjvvsnnr_.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8b97d72e82901d9fcab55b064667bc5d","sha1":"1b15824895a77af926ffe54ca17fb6a3006557d1","sha256":"60b15d5fc504167ae225235c6e46a412d1c7f111570cf94524311b7c40734506","sha512":"b13452359d19bdec30158e5ce5a0b6277f65d3237b568bd0e2eb8df81bfb262b53ad2deddb41311bfcd2af3b0b2f8a4ea2a8d6e2658e20098f3e5b3015e71b9e","ssdeep":"384:xCHSW+uLf8J6otgG4uaFQW9Uiet6eIup1NqBYjYvK+FjBRxz/akqleEZQKZTd96q:xCz+uZcNqBqn8j5/aZlKUd96H1/5Mt","tlshash":"52e294a971d5f4910b9354b5803f501bf23e0db6286da0a4e3e2dceab9b054dd133f9a","size":31396,"data":"","first_seen":"2026-05-30T10:48:25.666685Z","last_seen":"2026-06-02T20:28:59.090086Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/07font_ji0u27.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"844ca04584c3d6199ccaa3d3710e04b7","sha1":"bf5cd90422a77983d1d2a50435d7c0d0366b9db3","sha256":"7a9a9ff9a898c5653c9e174e4376a0de420d683f366082d804cdb33ffe608173","sha512":"b70a5ad58a34cc6bd06f110f703c63967b2c6bfe8d2c63bfc8b507b8557daa641f3c073d70d4294121c7d36c44fc8edf977af7e72dfa841e9a4f5e41b48be7ff","ssdeep":"1536:j1A+g9MEnjxzsYoyWZCYC3zWxvOcyN+PYApz0Hpsv6aYcafemr/WSeS0K6j8EknR:YTjxlofZrLvOcyN+HNYcammSSF0JjMXB","tlshash":"9bd3f6f935d2f482076b50aac03f0006f22c4d77189e6860e3e5edda756465de1b3faa","size":137449,"data":"","first_seen":"2026-05-13T14:24:18.078197Z","last_seen":"2026-06-04T16:03:14.798132Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0m_p1bxtorv5i.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1206d27e928d82532620c2c2ebfc59e4","sha1":"87d795e244967699726115c25f142297f5e77be0","sha256":"204f4020f37e64c94f21ba40ef389e0658974451943f325cd5e8ff9a4fab90bb","sha512":"1a352e837c2948d57b763bda2f5fbadd34139da35cc240eddadeb22406d9abfbbf99df503bbe604090310b7c9a8a14b45b202813db485d3a5e8203b72065ea7e","ssdeep":"3072:cFJtqqM4OGLOg/VNqfxMtmcvlBibQBTGQHyXs0Mug98n+d0+w/:cFJtZxOGLOgNMMQQy8mO8n+d0+w/","tlshash":"c324fbe83955f662aab302b710af18037338252b280d4d60a251fdddb57845fb17bf9e","size":226355,"data":"","first_seen":"2026-05-08T23:34:30.397578Z","last_seen":"2026-06-04T16:30:13.995982Z","times_seen":304,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0epz-.xtep6ek.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8a7359756f62b3abc4693f1f43bf88b","sha1":"b11c2a5fcfbda447adfaf6412a621d228132f5b0","sha256":"6ed18c99b0ea0198a2eb2c2aab1ffbe07ffd05b84fdc5e07d308abdbcea64f3b","sha512":"3315cf9d46616007c35d8153d6b8bdd0664468a6316a3adf0fd7d7387b67ef8cd9a50dcca7e758be8ac49cbf4ea67adf0f2e16326b6aea89d6222e7a8271130f","ssdeep":"384:z93fT2HDJyrTzyDSSH0ZymskZvQ55LQP6RrY7T8t6iW:l3r3yDSSUHvQ55LQP1/8ty","tlshash":"90923c743295fcd5525bc5c0e83f400ef7292d75a57db0a4b3fc54956aa0884b0a2fba","size":19856,"data":"","first_seen":"2026-05-30T10:48:25.662111Z","last_seen":"2026-06-02T20:28:59.151272Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1579bdf15f121d614ee265bc92ffe4c5","sha1":"98f298c8e9242b97d4878f311d0a32ef2913e465","sha256":"98f9473b555f3ad547d04818a2bf4faf2bcbc8059db14fde9c88fcec054e5ce1","sha512":"e814deca83548ba7904a56e9d23751d99716b9b4eb9455a5e2ef846699e10180001aecc349d17766c7752c6113af43397937ce3f1ae63b21e62e295595f35402","ssdeep":"","tlshash":"b831133d3408d54ffdad781d127e6d3650d9457b07e49a7c9bc8df0148820bd6ba6d81","size":1581,"data":"","first_seen":"2026-05-30T10:48:25.674198Z","last_seen":"2026-06-02T20:28:59.161556Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"20f6029226c5906f47a991dd1b2ccc14","sha1":"32f55f3dbd5e29aab6d8ff2f1834205824fba801","sha256":"f8688629b858b53d50bdc465e6db3686e2669619d4435b93df8115dfd1d58a3c","sha512":"6f66b9a1939a5c4671476865b51374c31e6af2a31e9f6da1cac90e41aecddb2bb1de1f6f58dc5a18bcf0fa4046d5435b68da9ba77d1b515f26cc1e07615a48f2","ssdeep":"","tlshash":"58c0c090dc42cc1cc3660f221c3b0c3921ccc56403854106ddc6ce280d81b300db1ec9","size":185,"data":"","first_seen":"2026-01-04T13:03:57.379578Z","last_seen":"2026-06-03T07:48:08.054096Z","times_seen":58,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/05eld2k6f.g~h.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a33d59ce9b2d6252018b01e2556207e4","sha1":"09a344a998fd9e2a38db056f36eeb14bf169d0aa","sha256":"ccb9dc68f2955dfd8711e64a77244581a4fcd72e3b4a7e85f78bc93a1081ca2e","sha512":"d509a2cae2ccf47251b0982abc6d48c106901d933fb551755a1bcbdcbb2863df8d1f4b980b2eff51e060da6f608f28e3394183e2c591e01d9abf4cb91618fb43","ssdeep":"","tlshash":"116174e5db6c52ec148991d80fa77306a34d7a7f74df8490aa5dcae4d2c7c49f023819","size":3382,"data":"","first_seen":"2026-05-30T10:48:25.624729Z","last_seen":"2026-06-02T20:28:59.154897Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/02qk0mar43-vc.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"298fb813395c5ba1d4b30b6300d77dd6","sha1":"6d1ea78ded9c061a8992617742e851bc67a4150c","sha256":"c51a4a2f29ee139968322f3117df0f7114f03502ab5123c48829c087461f84b7","sha512":"f0b7062c18d373b57861cad81997999a388c193d83cf06b5c7752f2c71fb3d784d9d5ba894fb0910cd336bd23333ea28693ec93d3059706577dd9dcd6b26cb9a","ssdeep":"1536:uOSyXFaRNRdXvrZFFecIJKchan/bv+IgHeCnndWhqwqjXQl37/l+VByHBBlUNGH:uOSAsRNPZFFecia/bv+IBCndWhqwqjX2","tlshash":"5953f9edd3e8a6e8a60adbf4c963545c3e6f34f9ab85895843d4a950e8740c8790dfc0","size":61859,"data":"","first_seen":"2026-05-30T10:48:25.602136Z","last_seen":"2026-06-02T20:28:59.08486Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0pcdgzyzrel.d.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a16816bb9239499d1ae4f2d6f8438e27","sha1":"7d2d73d12429465bf487cbbff128b99d7762c94c","sha256":"ad71d98407b4cbb744771bc94622f0ee0ad1b3ba8c11530ac786bf3abe3e6d30","sha512":"3cc8c46c653be2c3a59f55d0a9d63ab202086169461b9b3fe174aac5fe7e51b5de7c8c1adc980397daf5069ed88e45c58489386497a90d25f87b2d2023987558","ssdeep":"1536:Xo0PO7PZ7zbQyeicyr1C7R+G6HQeiXBBHCgEudrUu9qaAZcCBA:Xo0mbh/PZrJQLBBHuuyQ","tlshash":"5c232ae9b39070b89b47d3e5c5bb50057a3e11783945c82cd3ed2cfc68149cea1aabd6","size":49702,"data":"","first_seen":"2026-06-01T14:04:32.479451Z","last_seen":"2026-06-02T20:28:59.135788Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e4a7140487d0895c5bcf610827af1349","sha1":"2dfff52a5dcd1b09ae0ef91b07c2eae4a0ffd918","sha256":"9e4f27e098df475530c9b6bb471cb31be385b771aca9ef80a069885f4326ad55","sha512":"9394b4e42226d872b82b3c83555054d44c7b70848932297d5903b83bb1382846740fef9be7d239ac7ca5d67c8442badb3c755acaee50ac0ead18d6f7ccb0a0fd","ssdeep":"","tlshash":"d141a4a3ad25fd158f86de4d183b7cb850c98ba2c37155aff694cc08549bc346af4e81","size":1884,"data":"","first_seen":"2026-05-31T11:05:15.447922Z","last_seen":"2026-06-01T14:07:01.101552Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0_b~x.6tnok...js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e65bcef28863f0d239038919e2e6e2f7","sha1":"717493888e7524bc285a7ecf735f74663ab7af6b","sha256":"6f8a314eb5b954968fbbac836c9d912749db226e2670bce62a43011b2646d724","sha512":"4056be2ddfcda58c4bd9c924b1daab4360ef321ba1aa8bd5ee60a801c7c0928868cdb2fb1b98b54dfaa7638be758c30528faafb415fe9f87904a3c58ab9486d1","ssdeep":"","tlshash":"f47164c9b2e2f8bb83675091403f205bf27e0ce1481e9594e7a564ebb96065d81f2f68","size":3551,"data":"","first_seen":"2026-05-09T23:27:51.106594Z","last_seen":"2026-06-02T20:28:59.14861Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0hi-oz4wpwmvw.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3280f1129fab559adbbf78f8054e0cfd","sha1":"f6e8f41f2b06f74e6137c10f17029da183319358","sha256":"84694cc80070364cf0d9dcab44aa675c5e3c31a61590ff24d5ce1d80819a6bff","sha512":"f2c38a8463827b6546d5d80495617b84089d0031300979fe7184a331ce0ec41141728a9bb10c6d4d69f539cfd3eceb5ed699c8ed92e7981fbc3df55b1b5f07a5","ssdeep":"","tlshash":"7e21f045d9485274a8c85170a372e012d0ef366f70cf74a4d76693a8d3e7c4a9e634bf","size":1239,"data":"","first_seen":"2026-05-30T10:48:25.580068Z","last_seen":"2026-06-02T20:28:59.097941Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0a51q.65l43cu.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c0d856260355cfe6e19dab13b192253","sha1":"fc7c5cdd08547a8a5a0f5951bfd676c8ba2a5fc9","sha256":"9ba6c6863a08f538a8fda2430d04b9f3fda5947f14ef606946c1004b416c5073","sha512":"78aa643104ae793488b923b3c73b38fc4798eb2407bad247e7946a87ce27ff9f2c78668ce111c39161a562eb31cbadd99d1fa8d93d2efc43e41608b97850714a","ssdeep":"768:juzhHJNPkOsCH71yZ8ATNTOYlTvLmHXG3v5aCmJG5LqKaBtl5N269Bx3jpIYYsHO:juzhHJNPkOsMI9Tthp3v5aCm/v5RzHeT","tlshash":"5c03b561e28672260e4343d9542903096fbe78b4678c541fb76c5ed72d22c8a4bbdff2","size":40906,"data":"","first_seen":"2026-04-23T10:08:30.775038Z","last_seen":"2026-06-04T10:26:26.634507Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0n4z.7yu76je-.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a648f088ad544148210ae070401800cd","sha1":"283e51ae1715ff82a698d38a370dff4af2976884","sha256":"91fec54ca6bfa97c9bc4fefe9576b9a76aac47ed9f0009090ddf6a60030d55d3","sha512":"045b41574a3600911e4d65a734aa6ca8091609f954bfea447bc0a03d9ae0516d56e91c15679393ae4d732a2dbafc403ad56e6ec376c11288be04e198c9b3b653","ssdeep":"384:2sUWst5gWTnrYV3uXeqbkJdeUtdaVmzlhjuNf9zXYpDuYNb4x2pk81FZTDxJRiGV:vUWstOoS3HSqD95hdFQcCDFZ1dqF6SV","tlshash":"1933da753295faa303db91d9c0370012f2780d7130ad64b4b395d8af399dd8a92faf69","size":54646,"data":"","first_seen":"2026-03-20T07:59:15.953955Z","last_seen":"2026-06-04T16:44:43.728263Z","times_seen":535,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/14j_td4d84u8g.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c10f57f530141d7fc34c72db63f5f256","sha1":"1bfff636adf06c64efaa9f32e144788161ef5383","sha256":"4bd1bcf0431916610a5570ba8cef3702c213cc20f81dac9b355d7d0ab48ede8d","sha512":"f83d3aa9b72828755c8f8480e1b91cefa097a053ba40bd0bf3cc8f6b665ac30763a366d955aaee33dfcc4e4782b11ad10dd1c628fc719eb7ebb039dcb50c40da","ssdeep":"","tlshash":"23319d30916ce4ae320b09925d3270f8c33e5aa6356da1b0c95feee0509b0d9db17c71","size":1681,"data":"","first_seen":"2026-05-30T10:48:25.606689Z","last_seen":"2026-06-02T20:28:59.109618Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0kp-2ej7dl~sr.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d57ad55edbed6de4ca7f974653e30a81","sha1":"80c38754f0d3253d3a88a7d069dd7080b8dc0e5f","sha256":"d68882b24cfd793dab4aa91f0eeb59419b4fdb215f69042145d666e78cef4bb0","sha512":"74380831f7c0eb1372956c5275682c80bb68b5cf912bcb377e920a710a325796af59b093e1e8ae918664c6f2e52994627aa546f0635eefe5d179170165af3817","ssdeep":"384:csBf9X7g7156bFleYoB15xmrLn7ERIWvd7//+bH4p2BGKDLc:cyX7g71ULgGLnoCWF//+ED","tlshash":"7b72846dc14473fc8dd447f445267071698e12df30d9aa6caaa988e077a30dcd6eac8b","size":17521,"data":"","first_seen":"2026-05-30T10:48:25.62983Z","last_seen":"2026-06-02T20:28:59.108187Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/13yd10w-z6hnk.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8596a77ef0dbd46a164b342e5dc3aa5","sha1":"3acf9f6f6f97737bf4720d706728ef67fa353c76","sha256":"e86f8e3d3f770319e852d2d815dced1b084748c65980f1cda0d4a124ecfd7bb4","sha512":"157cb9f80d3cb7a0229d4da451223da55da9ff31ade052140d4d16c035f8a5773925c4386ffdf4efd3229bc2327865192d6370bb0669086415438d59afd3dd95","ssdeep":"1536:VTWOdo9UsUedK+jdVdH8oeYP5JatNczfkjEloNdYJGTg8TgCHzWS4ymNZBk4TO6+:V/dedVorrWAmN7H3Xu","tlshash":"f1b31954a065beecaa6705d8645fc00cb11e6e5ccf0ec878f2fc7c252d99484ba97b8d","size":116138,"data":"","first_seen":"2026-05-30T10:48:25.605662Z","last_seen":"2026-06-02T20:28:59.144613Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0hm6zy2pl-aww.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3942850788b440a40c6c42d0a1367c7f","sha1":"1ea2998a9fa91747e4f2baf9889ff7d80727aa75","sha256":"77d77e60f693904bd965d55cb6e862c7cb50d123ea929c01306ad5e5aa98336e","sha512":"0c2431fb6961fec582821303f2525f0ea48974529dbdd69bb6d181a48efbf8fea8f0dca649423a87230207c90c918dd7a465fd338e3db2892dcb4c6bce8bcb51","ssdeep":"384:wyhE/WJ72vvRHeTSdz9HQkTBV8GUYssccRSvj+jixwZsM5m:wyQWJ72xHeTSDHQKBV8PqcASvq4E5m","tlshash":"bbe20ae532817a30e7df469a517f811c773e2689640e0410f5799c983abcd85f2b3faa","size":32833,"data":"","first_seen":"2026-05-30T10:48:25.661128Z","last_seen":"2026-06-02T20:28:59.115316Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0o09unkmkj0kv.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8f1bc8b862925ea521fae658a012c213","sha1":"00d48b143790ae8c89f31457a5dc32c535c63b9b","sha256":"8215d90d08db2c51b86fde87b0ed82b4765ed2f85fb64400087a7439b706fac3","sha512":"2f0a9ba4347b112d218efbd8be14673beb883b985e9aa8963086aefc1b67f5143094836fb61b7ea4e8892d9122713847398f8c65d8cae0c28187e8205b9f0a51","ssdeep":"1536:FP481StV+Y+To58AjIXpelO25DIv6mdv8RO9/woLehwRgXRktwOm3RO9yfhXfHFZ:1O03arwYzkbV+ZdjYnsUvQ4ql6KmdV7a","tlshash":"4a83d986fa21df9cbc311ac4adab084c941f6e18db7e4874f1f8f4952b591d8361ab4c","size":82131,"data":"","first_seen":"2026-05-30T10:48:25.631244Z","last_seen":"2026-06-02T20:28:59.109083Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0n4z.7yu76je-.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0n4z.7yu76je-.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"d576-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wfcv7drCPgfoUQ1dT00K3iALOYZ2vGuNcl1UOpAyaPj%2BNmlj7kH7Qm9F2CH6VpZOTpEWeFYHioYGrRYbnFk8LuVH6p2F5WSXoNRX6D8oKnqD5wNw7zbffzuqThqe9w%3D%3D\"}]}\r\ncf-ray: a04ec3ed3aa18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":54646,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (54644), with no line terminators","md5":"a648f088ad544148210ae070401800cd","sha1":"283e51ae1715ff82a698d38a370dff4af2976884","sha256":"91fec54ca6bfa97c9bc4fefe9576b9a76aac47ed9f0009090ddf6a60030d55d3","sha512":"045b41574a3600911e4d65a734aa6ca8091609f954bfea447bc0a03d9ae0516d56e91c15679393ae4d732a2dbafc403ad56e6ec376c11288be04e198c9b3b653","ssdeep":"384:2sUWst5gWTnrYV3uXeqbkJdeUtdaVmzlhjuNf9zXYpDuYNb4x2pk81FZTDxJRiGV:vUWstOoS3HSqD95hdFQcCDFZ1dqF6SV","tlshash":"1933da753295faa303db91d9c0370012f2780d7130ad64b4b395d8af399dd8a92faf69","first_seen":"2026-03-20T07:59:15.953955Z","last_seen":"2026-06-04T16:44:43.728263Z","times_seen":535,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvip%2Femerald.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvip%2Femerald.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 994\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 5ZVPewIKJE7FTZLb68Oj2RK8GeImDJEkLlgg0mxP1s4\r\ncontent-disposition: attachment; filename=\"emerald.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GuOmKytugGNnfRZQpe9SLhk5AvkzjOH5%2Bkhpuku19sbs9OJgQo2nCfmgtVZE7MSWrjqRQfe5vx4%2Bj2wFOaofg0XhTNNTSCGNa4oDT8nub9scqMYxgYnX%2FgsuIUBlwA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23be08be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":994,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"46c919ca67c9d407772893662b51c6d7","sha1":"32dcf4b2018a44aab654fa6417c60181a5d4e82c","sha256":"e5954f7b020a244ec54d92dbebc3a3d912bc19e2260c91242e5820d26c4fd6ce","sha512":"f10714d9d6fa730eb77e8e4001a02ed09d9a4e1e3655d4218049fdca1e21c58510e011f7cac0cf97319aea4c80bf8000b64004b0c26b6bf4527f07978822102c","ssdeep":"","tlshash":"d011c8a377754181c41cc13527d5504986be73a9f1f30e27241b233050c4b678fa234f","first_seen":"2026-05-30T10:48:25.587109Z","last_seen":"2026-06-02T20:28:59.10635Z","times_seen":7,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FJokerJewels.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FJokerJewels.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:06 GMT\r\ncontent-type: image/webp\r\ncontent-length: 12316\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 9KVS1MhcgJ-MVl0y6BA2ViYxbMfVtMUo7aKtXmEcUAo\r\ncontent-disposition: attachment; filename=\"JokerJewels.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6XKsv16YFWXI8pNuZbuNFP6w%2F7ROPJy0%2FVYI8m%2B5RBqZzuKb4cyiJMvCSXj%2B2LQGyRVGwU4Hu4EbMt4cHHxSyHOjCB5dEZdhuLD0feyp9IrI%2Bhm38%2B0NU8HHyj%2Fhow%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bcb8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12316,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x256, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"dd3878e722c5b973d5509d5126e1bd63","sha1":"1e5f58b8c9a31d1832a0f9d58c5e33296f77aeaf","sha256":"f4a552d4c85c809f8c565d32e810365626316cc7d5b4c528eda2ad5e611c500a","sha512":"41de884ee2617d1777e64106404aa89e41f7207f6836ecc9527da274041ccbe6b2360670d34b06f13f9193f6078b6cc9d9ebdd06f4d7dc267534b303f606a9f6","ssdeep":"192:y7mmi9OzKqz2xQqVXa9Y2xV/12FmzrFOyCtvbLZCilzqzxSr2H4/d3fPi:vP9OzKqz2xQiaW2LMFmURDQdSrZJi","tlshash":"1142bf1bdd1c6f8adf7a4c33dcb28120682eb810e3bc332b857914e066628bbd9d6401","first_seen":"2026-05-30T10:48:25.57449Z","last_seen":"2026-06-02T20:28:59.131094Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1463,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1462,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fsapphire.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fsapphire.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1036\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: WzWbqplCNzb4nTbHSzHz6uCt1yC40dNEvYbXWJYCKrk\r\ncontent-disposition: attachment; filename=\"sapphire.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rnSHu5hzbtMVdv1xYF73aAVUvc6lKUmJINvCNLyL9K2XHCLSNekVLu30HmKYejewV8lk3gp9eWCBHwbkLGjHGl1APuO0Zmz1jGCv5DVNP%2F7L3GN0xGUrZMDQMd51vA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd28be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1036,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bf2f6be65988972efb3acc87e4c5efb7","sha1":"76994a556f64a0086360d0486dad3eb219831838","sha256":"5b359baa99423736f89d36c74b31f3eae0add720b8d1d344bd86d75896022ab9","sha512":"af7b9478a64c3578eb332052e1cfbdb168ebb7587ee61e48a543c05e80e10d44c49ee032f85781c668365ba6d1b6e4d74933570f62ff1d5ca9d039fb32eb7958","ssdeep":"","tlshash":"4c110cc45ac0d801f46a567ed934157f802688e1bbcb68c575570df0d43e04939333dc","first_seen":"2026-05-30T10:48:25.633443Z","last_seen":"2026-06-02T20:28:59.143155Z","times_seen":8,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fsilver.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fsilver.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 836\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: s_2e_6DUTILxwBmAYMKwZHYLp8TtK9RvMB8Gl3ebNMk\r\ncontent-disposition: attachment; filename=\"silver.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0ZZQuzwr%2B2hcaDuRu5HIceF8Gqz%2Fx97kGHBlqCu1AR%2BmB7JKjaOSnkJ%2BN4Lynof%2Fh%2Fdn3kj%2FcrRfksTPdzcDJ7fPVX6yi67oCc3fqN2zYS0%2BQAgfqIIMsfGenxoxkA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd68be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":836,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4243c7157ac77819b78f03a9496a590e","sha1":"5a008046ad65aa0f49a0ae7567167674f9b1153f","sha256":"b3fd9effa0d44c82f1c0198060c2b064760ba7c4ed2bd46f301f0697779b34c9","sha512":"96071d091feb6a3ae81f1136302b545a787acc2f2188e6dfde4f5668b8451c98ff6251500a572b830be37f53d960ee8652014a1a3ed390f1b82cca90e645d49c","ssdeep":"","tlshash":"7e018a460373688091653c1be83bc2812c190847b4d827a5ff236bd59ec229cdcf9bd1","first_seen":"2026-05-30T10:48:25.596694Z","last_seen":"2026-06-02T20:28:59.119915Z","times_seen":8,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/12fdyjvvsnnr_.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/12fdyjvvsnnr_.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"7aa4-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8HREBMkJS3rHxI46osNRZRVhSe6N5l5mRyLzps%2BgzCqMsopw9Wvlm9dOHHKfcdNT75Lh%2FHMBaAEz7igPBnz66RkSKO%2BIjIhDrjpuhJgZKtl%2BYY5c2VS7%2BncNET2Dvw%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a978be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31396,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31396), with no line terminators","md5":"8b97d72e82901d9fcab55b064667bc5d","sha1":"1b15824895a77af926ffe54ca17fb6a3006557d1","sha256":"60b15d5fc504167ae225235c6e46a412d1c7f111570cf94524311b7c40734506","sha512":"b13452359d19bdec30158e5ce5a0b6277f65d3237b568bd0e2eb8df81bfb262b53ad2deddb41311bfcd2af3b0b2f8a4ea2a8d6e2658e20098f3e5b3015e71b9e","ssdeep":"384:xCHSW+uLf8J6otgG4uaFQW9Uiet6eIup1NqBYjYvK+FjBRxz/akqleEZQKZTd96q:xCz+uZcNqBqn8j5/aZlKUd96H1/5Mt","tlshash":"52e294a971d5f4910b9354b5803f501bf23e0db6286da0a4e3e2dceab9b054dd133f9a","first_seen":"2026-05-30T10:48:25.666685Z","last_seen":"2026-06-02T20:28:59.090086Z","times_seen":8,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0m_p1bxtorv5i.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0m_p1bxtorv5i.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"37433-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4o2UpwPodpdzFA1YmPZkuFHsFczph6yZCW5XSYOJzkZTLIQdq0M6NRNH%2FiHJTScfv7K1qMh2D%2F7B8AjaHbaXSfXuJwhsaeiQnftEALAJgSjpD8Ksmi6tK9BJmZFAVQ%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a9b8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":226355,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1206d27e928d82532620c2c2ebfc59e4","sha1":"87d795e244967699726115c25f142297f5e77be0","sha256":"204f4020f37e64c94f21ba40ef389e0658974451943f325cd5e8ff9a4fab90bb","sha512":"1a352e837c2948d57b763bda2f5fbadd34139da35cc240eddadeb22406d9abfbbf99df503bbe604090310b7c9a8a14b45b202813db485d3a5e8203b72065ea7e","ssdeep":"3072:cFJtqqM4OGLOg/VNqfxMtmcvlBibQBTGQHyXs0Mug98n+d0+w/:cFJtZxOGLOgNMMQQy8mO8n+d0+w/","tlshash":"c324fbe83955f662aab302b710af18037338252b280d4d60a251fdddb57845fb17bf9e","first_seen":"2026-05-08T23:34:30.397578Z","last_seen":"2026-06-04T16:30:13.995982Z","times_seen":304,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0_b~x.6tnok...js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0_b~x.6tnok...js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"ddf-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rC1%2FBjrpU6iS74ALluD8abqPqyXy%2FqkmPmNLAlxJi4Xdj1%2FMgGzjItLgD8XdpMX4KT%2F8V4UnzgkBiV4rmidLKwewL0Px%2B8svQAzJsCB328Lecn00KW32nxGNGYry5Q%3D%3D\"}]}\r\ncf-ray: a04ec3ed3aa08be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3551,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (3551), with no line terminators","md5":"e65bcef28863f0d239038919e2e6e2f7","sha1":"717493888e7524bc285a7ecf735f74663ab7af6b","sha256":"6f8a314eb5b954968fbbac836c9d912749db226e2670bce62a43011b2646d724","sha512":"4056be2ddfcda58c4bd9c924b1daab4360ef321ba1aa8bd5ee60a801c7c0928868cdb2fb1b98b54dfaa7638be758c30528faafb415fe9f87904a3c58ab9486d1","ssdeep":"","tlshash":"f47164c9b2e2f8bb83675091403f205bf27e0ce1481e9594e7a564ebb96065d81f2f68","first_seen":"2026-05-09T23:27:51.106594Z","last_seen":"2026-06-02T20:28:59.14861Z","times_seen":10,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/05.~u_jm43496.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/05.~u_jm43496.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"7a0f-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=57Ffsm8hRvLW1pMaNu3rTMcIl0NNGau8QdgfiKtGaG7x2fqFUklNxnTT3XX9jER%2F6pl6%2F9teoWbFDzy4e3XznN4CubekHIkGBKcwmxXlIctb8vMS9%2BWBaOnFu18SLg%3D%3D\"}]}\r\ncf-ray: a04ec3ed3aa68be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31247,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11630)","md5":"24a8b49066beec653c96a54e3d783fb9","sha1":"2c078e5f367c6f71b1b4050c4a0826e8064b43d2","sha256":"c31c7f2462bce25e61842fe6911e73d03406b7a3a9d897fb632a3440667c84fe","sha512":"013bb7ff20b058a0f79b8172c906b664a3f5230fb17e605dec44c08e473ca68652a6dbd66f1683ec6c5a363b13b081120d11c5453b31a4f3e13efe3b94c2574f","ssdeep":"768:ZCZH2pny+wUF+Kr1VZGsa8YXd53LbMM/7:aWpniUzZGsa88M8","tlshash":"15e22b7131a5f8d1939a8284847f440df2392e75642eb064b3fd5ce967a58c8b0b2fb7","first_seen":"2026-05-30T10:48:25.635126Z","last_seen":"2026-06-02T20:28:59.114601Z","times_seen":8,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/static/img/icon.svg","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /static/img/icon.svg HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/svg+xml\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Mon, 01 Jun 2026 13:05:48 GMT\r\netag: W/\"52d-19e834a57e0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 0\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mp5%2FZIaONuy3tSICmJV19IbOuzvIGZ0pmAguuLukCisbH3L74h81qFKz61p%2BAws95zI2jf3HxtDIUqOOEPkXCGz8qN7bpkW2vPdW%2BJ6poyfH%2BpclHQRnifz1GiP6Lg%3D%3D\"}]}\r\ncf-ray: a04ec3ee8b048be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1325,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cafdabcb3c805f37ee3a83471fdebff8","sha1":"5a729d1501683ca0738ea28ef1a17c681a9241c1","sha256":"1dc23bb256d761a2d21420698bb7e9d9db28803bc63e79a3a2a4df599b158f18","sha512":"95d1b61cc2fc3a4acd3f405e19b0b877337f64ed5fa9db9f34beb32b19e6b6df0c389fc7cdf3579b6b5e0b54b09d9b6d1478a33cd022e621b62e475760e1e697","ssdeep":"","tlshash":"602142d272f8e39cba5ccba921382576303f20f46560c4159fc22866b1d362e1df6d92","first_seen":"2026-05-30T10:48:25.559983Z","last_seen":"2026-06-02T20:28:59.09215Z","times_seen":8,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0gq5us0dathdz.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0gq5us0dathdz.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"136f-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9WuBYZHw5813%2BVr2LqeYK31Y49e2776ZYT2R8H5gV03m1MF7ctLvJ5FCueHuh5jb%2BFqY2hdmf0TCB%2BlSwZMehM%2BHKpZ%2Bt3YS3Kfx0CW0NrsJ0uyBkEacIuZPjXYfSw%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4975,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (4975), with no line terminators","md5":"41b9c6444110cb618b6c927b4a2e4283","sha1":"5a25259c11f58e44a76a9bf294c26ddc02f8c12b","sha256":"2aebb627a94ef516e0481423c93daefe9a99c3d3b6b2ff73c5f8cc07fef1a16b","sha512":"90c33c45c0ccbcd0d503ecdf90263d29c010d74a3227d637eec984a7b209ed7afbd9b84c38b1f306c77ff9285fa8df676d3418c89b1fa16635c6e25f9763336c","ssdeep":"96:JF6z0LATueN1153FHjLW0CpmFVshMh+VzaIzg63Xr:LoXz17201ehMYVB93Xr","tlshash":"9ea166b51b1c63ecbc43d1382726605b536fa6bfb1da94704f9e9ba084e3488f393455","first_seen":"2026-05-30T10:48:25.62592Z","last_seen":"2026-06-02T20:28:59.150428Z","times_seen":8,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0o09unkmkj0kv.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0o09unkmkj0kv.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"140d3-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m3D0zlm%2FUE9wf1GJDSL5DgAaaiNtS38aOTNQwHu%2FQUwGuZGjINNaUiggqa7LlfeMfTBXqFYLgXpynFBivNIg5iKQ03xOzgkiufb4ydYH72CT8C%2BAzFHVWAi1cfMmvg%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82131,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8f1bc8b862925ea521fae658a012c213","sha1":"00d48b143790ae8c89f31457a5dc32c535c63b9b","sha256":"8215d90d08db2c51b86fde87b0ed82b4765ed2f85fb64400087a7439b706fac3","sha512":"2f0a9ba4347b112d218efbd8be14673beb883b985e9aa8963086aefc1b67f5143094836fb61b7ea4e8892d9122713847398f8c65d8cae0c28187e8205b9f0a51","ssdeep":"1536:FP481StV+Y+To58AjIXpelO25DIv6mdv8RO9/woLehwRgXRktwOm3RO9yfhXfHFZ:1O03arwYzkbV+ZdjYnsUvQ4ql6KmdV7a","tlshash":"4a83d986fa21df9cbc311ac4adab084c941f6e18db7e4874f1f8f4952b591d8361ab4c","first_seen":"2026-05-30T10:48:25.631244Z","last_seen":"2026-06-02T20:28:59.109083Z","times_seen":8,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fbanners%2Fhome-banner-bb-mobile.png\u0026w=1920\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fbanners%2Fhome-banner-bb-mobile.png\u0026w=1920\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:06 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25740\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: aiejfHeVg7NuPFijKNSbGlPlFrbRvKZBzD_tom6sMXM\r\ncontent-disposition: attachment; filename=\"home-banner-bb-mobile.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kT1vmZKLuJGVaJaU6OKN9YBYWHxgVXbVAupkfsY6pdZxvJj%2Bx%2BPCYc3f5FEcII3jXI0g3F5HFobtBgd7oSVjY%2BWFE4%2BxwKg%2FEq4d0bAZOqrD4gwb1A53u7qcHunrRg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f1fbbf8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25740,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x800, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"34dbebced283f52e44d1779fa89f0512","sha1":"0bf6f14b6e556ef8cc59ddd4b07ae1d0ad0cd1d8","sha256":"6a27a37c779583b36e3c58a328d49b1a53e516b6d1bca641cc3feda26eac3173","sha512":"fcd7e82d85d093632a3dc1f3cb06564d03351a1b9092cbbaa91a5920d249efec5b61d895882a9748a796c224758b5276d748090cb55fd9fb9573da33c2190bca","ssdeep":"768:LSNJXscXmTW8Uyn0IsE7Sy7XeySx7GLZu:Le1sJT3U2rsE7SsXLP8","tlshash":"58c2e258b892e4c3db89153629d38f3ce7bd2be74298cc6d38014f59714ab1477718b6","first_seen":"2026-05-30T10:48:25.56475Z","last_seen":"2026-06-02T20:28:59.125567Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1479,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1478,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fbg-telka.png\u0026w=1920\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fbg-telka.png\u0026w=1920\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24240\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: D_yPF2-ZIrHkRc0w7X85GdAHb-suhmA5Qpt017Gcunw\r\ncontent-disposition: attachment; filename=\"bg-telka.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nw3ZSPTMoFeJtob4Dp8uJTWK1Nliy6xoReemseUVqJlxHazM%2F0kJvkwlTuaAu3EdbYqDN35JTM1SJ2KcMslaXRZGEPk86%2F0ohyyCeFZpp%2Fe1vUnRVz7FV7hu00%2BRQg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f20bc58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24240,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a6939fbbaf3a39fe69c404b3d70a87c1","sha1":"06903e86a1c66b162e4983ee17e16ad27ddf0632","sha256":"0ffc8f176f9922b1e445cd30ed7f3919d0076feb2e866039429b74d7b19cba7c","sha512":"a6b3fa79da6bbbea7494502f3226a6100250cb0e3b1421a5233143d71f3221a410338d35e0e68091c6f4789da19b49ea8006f5f490240bb26e588f8468b69fec","ssdeep":"384:CcvWFyhz8jsJOs1f4XPrAecIKMJqNgHqs4N7thrQ+q2qUCRGPuqffoqozCeJFzbE:Cc+FtYIs1fGcItJqqHWdrrtCRcno/zHo","tlshash":"ffb2e0cb64f2181eebe77a94eee38e11e404954b99949cc0a3d87105c7e33a0be5674a","first_seen":"2026-05-30T10:48:25.608754Z","last_seen":"2026-06-02T20:28:59.092676Z","times_seen":8,"resource_available":false,"data":null}},"time_used":143,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2512\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 8FgdcutvhUxuAEAinhAFoCutAXlWx61sHGLYXIYGChM\r\ncontent-disposition: attachment; filename=\"GatesOfOlympus.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=whMngrQOpqYEhoPZEvpEA0Hdupx7iIgl0X4Bjs%2F3FHsjTU9gnKbfNin7ShCUli5ujqiD4vfBfg1MKLh9oRN6HcYUm7D4FleOwOWJf6nQCCwrwMmdNgfuzEQjQDw7PA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bdc8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2512,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"287ecc7e7068c31f395f873571046031","sha1":"8d58d893ffba7e2ecf7b0450f4a473fb801aa457","sha256":"f0581d72eb6f854c6e0040229e1005a02bad017956c7ad6c1c62d85c86060a13","sha512":"4bf9cc27df8f344216cb72aaa1cea05761a14e2abce5cd9afca85b611c80cc2036b1826e4f515795538511fc5332346c497771b9b6d33e7ae6d06f87a2a69f66","ssdeep":"","tlshash":"f2514d34954d6ce5f1e3d33d885f1e3442f01ad037ce820afcea3e344c485911a46691","first_seen":"2026-05-30T10:48:25.577329Z","last_seen":"2026-06-02T20:28:59.094751Z","times_seen":7,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FHandOfAnubis.jpeg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FHandOfAnubis.jpeg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2164\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 6dqEifX1n-aAHzdk7xJPJq8BDm6qCM9ofycTjM36nzc\r\ncontent-disposition: attachment; filename=\"HandOfAnubis.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mv%2BwErxRjkVbjPp0yION8xna9S1ZLjlCe0t6s3TkDzfYft59yZYO%2B%2FQ%2BplbbfLrwzDschWMHlByIWiQrw9fd93bWnhoe7GQBwNcE%2FQKgYETj%2Fu6AaXulo8pQ84uhmw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23bdf8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2164,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"153e9ab94af86995b95c436b415b4e08","sha1":"c5e385e40621adb5062461b8436549f46b9810bc","sha256":"e9da8489f5f59fe6801f3764ef124f26af010e6eaa08cf687f27138ccdfa9f37","sha512":"3558b164c177701a72ac4870b2539bddd8484f5d3f56375f7ace2acdf462da6b2930fc52444578899a54e6537d352bd49f8a11966334b7dcb05eb62eb9e7f2cc","ssdeep":"","tlshash":"25411a21933364d58541852cfe6d7423da3f56d20e49b27884fc7a9818729b95cfd17c","first_seen":"2026-05-31T11:05:15.38689Z","last_seen":"2026-06-02T20:28:59.137968Z","times_seen":4,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSweetBonanza1000.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSweetBonanza1000.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2400\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: Ldq1zEz2167JbOElaXcTy7sMRB3pNa1u5B99FOgm5gw\r\ncontent-disposition: attachment; filename=\"SweetBonanza1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5FK20HuiUw5UuH9YunUJ1BP%2FtDaJJRkhlrPjruxfoRMNIj7VW8iUyoAAHdnFsuLXAjcMNJvjOt0fd90CvBeE3N7tSD%2F4nWY9cvcPH3pfFB54mjgoFouU7Vn6wFYCfA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c078be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2400,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"913fb8bd2cccb1d0470c91ec68b91190","sha1":"1149784e961dfbb88ded88574a5e299651aaa233","sha256":"2ddab5cc4cf6d7aec96ce125697713cbbb0c441de935ad6ee41f7d14e826e60c","sha512":"ea38988cac3930bcd25a7d4c210f0427110a55213ada631e35b0978f6ab251e6a428f29807c97f13c740172f30b5c5836e6cad3c448a4fc15b84f3644e2e7a81","ssdeep":"","tlshash":"e4413a09b9e990c4bd36bc52738fb49702c360f6cf7a1b9b53790bc0b26b2a1911112d","first_seen":"2026-05-30T10:48:25.64993Z","last_seen":"2026-06-02T20:28:59.120661Z","times_seen":7,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FTheDogHouse.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FTheDogHouse.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2614\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: tOWa907KrZUAwCyr05l37jzP5_EmagDq-CZJX30De5E\r\ncontent-disposition: attachment; filename=\"TheDogHouse.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2qAqagQ7MokSvmCf1V7DP0J97PAfOpae84SMCR71JwCyi11HVrEpmrA1R9RX2vDvA%2FZyYGXDb8UlJ%2F4F3VdpgSk2qDupdOYwn56BXYXV1q8xs7hsTkZ0VrwUR0Ehbg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c138be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2614,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1f734141f8b73f8502ba7c16959a823d","sha1":"e6ce176a10a6a2d90898000c8b4c30dcf0609e1d","sha256":"b4e59af74ecaad9500c02cabd39977ee3ccfe7f1266a00eaf826495f7d037b91","sha512":"c62677d4e0b79f015c0da730bdc940c2bc7f228600bfae0b580ac3d04b1415708e63b73e5d3e5876700f7a0522861ecc0b18aad5047476ae0e33a47c4a3a71f0","ssdeep":"","tlshash":"da512be7dc2b978cdef3c607de843656074378abe061a9d39fc54e82631c1599d8888c","first_seen":"2026-05-30T10:49:00.956347Z","last_seen":"2026-06-01T14:04:32.445163Z","times_seen":3,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0hm6zy2pl-aww.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0hm6zy2pl-aww.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"8041-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FjDVOdZPLGyLfqvf0AEyaPLC4qAVwd4bJiQI4bgUt3e8BM8fwqRyUX9CyPW47%2FBRAq0aOLyllJT126SGhaH1OoEdBIKcUKM9A2Y9aioE0xee5JcG1l1CkG4MCX49dQ%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aa88be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32833,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (30613)","md5":"3942850788b440a40c6c42d0a1367c7f","sha1":"1ea2998a9fa91747e4f2baf9889ff7d80727aa75","sha256":"77d77e60f693904bd965d55cb6e862c7cb50d123ea929c01306ad5e5aa98336e","sha512":"0c2431fb6961fec582821303f2525f0ea48974529dbdd69bb6d181a48efbf8fea8f0dca649423a87230207c90c918dd7a465fd338e3db2892dcb4c6bce8bcb51","ssdeep":"384:wyhE/WJ72vvRHeTSdz9HQkTBV8GUYssccRSvj+jixwZsM5m:wyQWJ72xHeTSDHQKBV8PqcASvq4E5m","tlshash":"bbe20ae532817a30e7df469a517f811c773e2689640e0410f5799c983abcd85f2b3faa","first_seen":"2026-05-30T10:48:25.661128Z","last_seen":"2026-06-02T20:28:59.115316Z","times_seen":8,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0epz-.xtep6ek.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0epz-.xtep6ek.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"4d90-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HRryuKUOKCtl2tKMVn8craYc6enjQwy3vKTJnp7gIACYUbd1p%2FuYO4mUvgt4PeeAXGIHp1kbEJ8TIYOIDbst6lEhBQ4nvMAio6qHvkjkv1MoiUu1xemuv%2FPjvR1zFw%3D%3D\"}]}\r\ncf-ray: a04ec3ed5aba8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19856,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (8374)","md5":"a8a7359756f62b3abc4693f1f43bf88b","sha1":"b11c2a5fcfbda447adfaf6412a621d228132f5b0","sha256":"6ed18c99b0ea0198a2eb2c2aab1ffbe07ffd05b84fdc5e07d308abdbcea64f3b","sha512":"3315cf9d46616007c35d8153d6b8bdd0664468a6316a3adf0fd7d7387b67ef8cd9a50dcca7e758be8ac49cbf4ea67adf0f2e16326b6aea89d6222e7a8271130f","ssdeep":"384:z93fT2HDJyrTzyDSSH0ZymskZvQ55LQP6RrY7T8t6iW:l3r3yDSSUHvQ55LQP1/8ty","tlshash":"90923c743295fcd5525bc5c0e83f400ef7292d75a57db0a4b3fc54956aa0884b0a2fba","first_seen":"2026-05-30T10:48:25.662111Z","last_seen":"2026-06-02T20:28:59.151272Z","times_seen":8,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FJokerJewels.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FJokerJewels.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3370\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: wJ2ObpPlkniwVeeFIVoW20qG-TVxinVzXZXZOcOLewM\r\ncontent-disposition: attachment; filename=\"JokerJewels.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=05K6inDyAGWSp3Y3FrKnG22bI4xxeui6IEFtQrVW8s2UCRoua%2FRrw5jIKdozxcfYTyJoH7gVjWTbf%2BWHqd7TjCyK3AVenn00otFoyPIWGx%2FIuW3SteHl4KzTCjHSsA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd38be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3370,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"f8c634999a50ba58133fd2d575c35b79","sha1":"ef171148dfd8c8c692b93b9a5d75f05e0cb39ad3","sha256":"c09d8e6e93e59278b055e785215a16db4a86f935718a75735d95d939c38b7b03","sha512":"3f9672f2c05a0759ce9a91ef97e16cee8099ce3d4764f438111ad6b5cc1c5b042858506d5146fddd70197a821a9fc3a2e10fd2259a1328c4215e4cb79037d647","ssdeep":"","tlshash":"43614b04b87b95cab19c12401cf904774094fdafa9aa9613951c2cdcfd127f269ea2af","first_seen":"2026-05-30T10:48:25.615553Z","last_seen":"2026-06-01T14:07:01.037685Z","times_seen":6,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FChaosCrew2.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FChaosCrew2.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2746\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: sYYXpS6MB7--4G4ODevvveeW4bC9Ky6ONmy2En9x8KA\r\ncontent-disposition: attachment; filename=\"ChaosCrew2.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=317Cnvlo7%2BV%2BzNE3bBXXoljvQKUNDYVvEBxQYMampknukkDvhb5MSuXVsJj8j8jLWzhETlyPyoxkue0%2BNXfq%2Fbi%2F%2BYUghtraSCn55zNFAppEjVKRQjYQxbcbp7LCqA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23be38be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2746,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b3bf86ba333651154cbae6ba7021873b","sha1":"d5a0d7b78c32be42ba67acba7ff43c72635c093c","sha256":"b18617a52e8c07bfbee06e0e0debefbde796e1b0bd2b2e8e366cb6127f71f0a0","sha512":"a075b82d562bec958c94c554ea693da5eeae3d398130c28b3586662e3bafd138e6f3c310c291c8e98c310c757b043b72e4f4ff0cfa4c83997fa83355d9576003","ssdeep":"","tlshash":"bd514af537cca105d89a6dd4eca1309d18187785054e250e27b3ce770ef3748b7a9a49","first_seen":"2026-05-30T10:48:25.609807Z","last_seen":"2026-06-01T14:04:32.448468Z","times_seen":3,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FBigBassBonanza.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FBigBassBonanza.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2542\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: u8JQ5DGRTwlOyCWM7LjBUB10cxGmg6T0Rdm4L7FYPHk\r\ncontent-disposition: attachment; filename=\"BigBassBonanza.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=liDKNp5Sez1o%2Bwa1QLVlwSF9RQE6%2FJ3itKTN%2BhelE5VJC4DFLq3Hx4TojFp%2F57%2FlaWeKHeeCOhTb8%2FUT%2FsgOyBPt9jBLDWDhXXDnlkIZEl8KB2OD2jblDVdWAKMIrg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c048be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2542,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e879476252b7be0cb2cefecf10699841","sha1":"727a86c22305c69a8de73dc9d6ca4c0671e472e4","sha256":"bbc250e431914f094ec8258cecb8c1501d747311a683a4f445d9b82fb1583c79","sha512":"e61f869229905751c94cdc488a50bed0d7c73f3a1ff5f48955af219110a36895f08bff09a28affd66375f5cdc6fbe01cabb4ab9386829b53d4f4f68335d9c416","ssdeep":"","tlshash":"ad513ce14b391e7ed1c739c294cd30da4945f5279394ca63e0ad1ee07bcd9551f80886","first_seen":"2026-05-30T10:48:25.658321Z","last_seen":"2026-06-02T20:28:59.152659Z","times_seen":5,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Folivia.png\u0026w=48\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Folivia.png\u0026w=48\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1076\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 6emVpm6qQH-d-pB4MTokx3D5ph2UI0DAV9TwZwMopII\r\ncontent-disposition: attachment; filename=\"olivia.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gNYxiJRzikzfvXQPwAmDfy7jxlJ39PwuSRuPgF%2FLCGqM6eMPJxkTZvj%2FdJ%2FTWGPY8j3B5306AuJpH%2FOHQH0ogUDcpQfgAkutsu40XZJV63s3jblctKltwjBGeTQKBg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f38c308be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1076,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"456403d254334742c3dd557f254facd2","sha1":"35249be3371299cdffa61f134955ad7eaf84b49e","sha256":"e9e995a66eaa407f9dfa9078313a24c770f9a61d942340c057d4f0670328a482","sha512":"b9e0ffbcf0addfccc23d675676d8783064dedd21a85c4a3305ac9eb309a109bd997affcdacc81742440504e0bae660c842ab5a1b09924083e2295dcf3d658c12","ssdeep":"","tlshash":"3911e5e10b2002c3ee0d97f88e1f29a88177cbc0765d4025a7becc0002cd906ea3fa06","first_seen":"2026-05-30T10:48:25.57835Z","last_seen":"2026-06-02T20:28:59.133965Z","times_seen":8,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FTheDogHouse.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FTheDogHouse.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10270\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 72L12mZA64v4jFdrqBlAh65fXsFUNBDbciGHIX1iSIA\r\ncontent-disposition: attachment; filename=\"TheDogHouse.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ohvsprtCrOhk3rs1xQ5YZzCELbEzAlKyjPSMJCoIbbwnNJEdOYAgJSSRwKxYgXOchjz1hKyEiQKuMb%2Fh67g2m%2FeRCQwW9fHtc3gaqFiU%2FqXCny7RUlg4A5jNXMutFA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bce8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10270,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x256, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"4fcc6085fe2352443cb446306d1179fc","sha1":"164777801c5202a3957339edcc8245d3a82b0b41","sha256":"ef62f5da6640eb8bf88c576ba8194087ae5f5ec1543410db722187217d624880","sha512":"8d77e9f38367dc8b9f268b699d86b4532318427a60838a119dd361f66738639ff02d1931935983b75fe26596423cb1425e6c0be25dd03d2176562b7af874dfe6","ssdeep":"192:snMnCnSfGrQNGRMeAP2va1zN1VHrqh/JSf8Qmvs2CdtpxHnhcJ5+3kN:BKrAg6v1wMf8QX2CdHxq8m","tlshash":"f622afa2e9a3c8cb695629f8c6b1da03d79f295ac017b7cff8017a70dfc064cc054262","first_seen":"2026-05-30T10:48:25.562056Z","last_seen":"2026-06-02T20:28:59.090737Z","times_seen":8,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/05eld2k6f.g~h.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/05eld2k6f.g~h.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"d36-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vni7fBFTt1HQjceFJPJEV0H6tioLE%2FwAOvRzTNr%2FvyA8TJiVnN6QSlaY5ijKIwTJRxKXb66RMfl1UCz%2FmqK2Wc6cMquPJAt0tF3yxMHj2G0ojTwOYUnPwYpg5JLgaw%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aae8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3382,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (3382), with no line terminators","md5":"a33d59ce9b2d6252018b01e2556207e4","sha1":"09a344a998fd9e2a38db056f36eeb14bf169d0aa","sha256":"ccb9dc68f2955dfd8711e64a77244581a4fcd72e3b4a7e85f78bc93a1081ca2e","sha512":"d509a2cae2ccf47251b0982abc6d48c106901d933fb551755a1bcbdcbb2863df8d1f4b980b2eff51e060da6f608f28e3394183e2c591e01d9abf4cb91618fb43","ssdeep":"","tlshash":"116174e5db6c52ec148991d80fa77306a34d7a7f74df8490aa5dcae4d2c7c49f023819","first_seen":"2026-05-30T10:48:25.624729Z","last_seen":"2026-06-02T20:28:59.154897Z","times_seen":8,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/api/auth/logout","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /api/auth/logout HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-length: 0\r\npriority: u=4,i=?0\r\nset-cookie: token=; Path=/; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly\nJSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941; Path=/; HttpOnly\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\nlocation: http://vazowin.com/\r\ncontent-language: en-US\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LTWxK7wL9FnrTnIJsqyxiILDwO84cbKpDQ%2F8fdkUIfhCIOUOGlUdaw18YqtVHO4wBl0nNz8OA39NPS1y6jDxWv75rhj2SoAwNHO%2BY%2Fcq28kXdaN4XBu64DfyCMGnuw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3ef3b1d8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":103361,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-04T17:49:05.69935Z","times_seen":16118648,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":79,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSugarRush1000.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSugarRush1000.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 7184\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 0JcU3LxAhITDCTRVvX1rsGvGskNATsdJ6u0Eyzr-oUg\r\ncontent-disposition: attachment; filename=\"SugarRush1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9BKacgoEGDHGfxMUujIgYqnTFNMUuQHItb9uP6SwMxUYVH7LTKDEJOE%2BN4F1ny5GymjlpuzaW%2BKUCjsRW5lDqrcnmNEcP3KvcRcKxDJrK9N%2BA1g65k%2BktP7FSJFtFQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f20bc98be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7184,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x256, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"77de913134498845d31f9d58b925c9c1","sha1":"5a60eaebe4b2cae9228c8565b76da25e588b10a4","sha256":"d09714dcbc408484c3093455bd7d6bb06bc6b243404ec749eaed04cb3afea148","sha512":"0d0a5dc0f3112677205020c8af3cdd7f604da992aeac1693481e98ce40a816fc4b9f70fdad3fb78119f60127465a720059dcfa787bee52fb204bce06b1b1ae9d","ssdeep":"96:Q7aUOCF7vQegw7Q2ENmTg+wzu8beZr4IO6TNvwVjQA0Y5cXXyD0qTWYZuI7MFzlO:coavQegwUzmAKG0Y5hTWcJuQN","tlshash":"3fe1af6e67dfbc481bd8bfc5617423484582ac403932d48acafe09e661d431fe4169ed","first_seen":"2026-05-30T10:48:25.603199Z","last_seen":"2026-06-02T20:28:59.105256Z","times_seen":8,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fcategories%2Ftrending.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fcategories%2Ftrending.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 920\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: yiVMNvGq34IuwEr3kz84qgXJIMw-G2YLjQ2iSyBwwek\r\ncontent-disposition: attachment; filename=\"trending.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=86C9vWaU0C2bLTil5s09Nf66HoGlTtlW4WoYpXNM3UgEoUD4Edh4kMh2eX4XjL28OBXPP%2BeS4a%2B4Kfg%2B0B2O7t4%2FsBlOCKMP8Nk8Npu5PUMy2RhmCSGqe7QWpJXvsQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c288be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":920,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"5781c48fa29647c98efbf370ee56ead6","sha1":"b0fea0de5fd71fe1afd8346821302cf6f9445377","sha256":"ca254c36f1aadf822ec04af7933f38aa05c920cc3e1b660b8d0da24b2070c1e9","sha512":"918b50fd14895a611c7e57b6600d35e9fac109a8b533f331538076bdc6dcceaa3e7a04caf0d1746e5f620f864db7ed91a7ae5d95b7f805f361e1ac0f74006bd4","ssdeep":"","tlshash":"3c11bb7bf8d7a4a5c31da26d74074d707e201d5d42771630511ed3eed2615ac5f04d74","first_seen":"2026-05-30T10:48:25.570884Z","last_seen":"2026-06-02T20:28:59.153151Z","times_seen":8,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-basketball-mini.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-basketball-mini.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4064\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: RDluiiS81rlbF4NycjLsKAH_6JM2_5GpJOWNl2yCvIs\r\ncontent-disposition: attachment; filename=\"banner-basketball-mini.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gK93nejkvXEDmJEmAY4kAojvMrTPKW8%2Bj13xArg%2Fe3zpyK8moz%2FKSxDEL5W%2FJR6QebOuI3kiUtppEzNESyRkle3tMlfR9SBKf2fjGv5L8v68oU67nGTdx%2FJebmkCrA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c2c8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4064,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 590x160, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3bc04787ce47f86ac0a036a05a329335","sha1":"710b1580684f8dbf6011e4e623338c76870ae2df","sha256":"44396e8a24bcd6b95b1783727232ec2801ffe89336ff91a924e58d976c82bc8b","sha512":"76d4d4f2a6259e6f54ffc5e53a631890eaaeeec4707db57dca7733343a5470c337b889692298c648f19215022d79f4994ea550bbaa911b6b0ab416df9ffa69b1","ssdeep":"","tlshash":"ad818ecfe0b53d20d8db275e0275e285754251de34a7c126bd11c670cfe22ab360c359","first_seen":"2026-05-30T10:48:25.628183Z","last_seen":"2026-06-02T20:28:59.112742Z","times_seen":8,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Falex.png\u0026w=48\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Falex.png\u0026w=48\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1204\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 4wDPufQKjxeth5GSOeMaTd5lq-qMFg4NR_UN3m516NY\r\ncontent-disposition: attachment; filename=\"alex.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xmbvViVSVJ7YcY6seFTJrtezObMC7DVVSeN1%2F4tV77OD43HlnOgun5y%2Fj0%2FN1JBVg2DcLDoSXS8BXrTVwedmP0pXI%2BgEfrJQY6cmAzKV5vCvxASbHDBmsnM1tHX%2FVw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f38c2d8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1204,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6a1c75b59ee36bf50f6aca7c5738c36c","sha1":"ee30d7199f401ca21a483d41ff3a581168ffa95c","sha256":"e300cfb9f40a8f17ad87919239e31a4dde65abea8c160e0d47f50dde6e75e8d6","sha512":"358891dfb46a3f35dcc5bd1ac6308a4d714f8151534b27f53e8f06470146eb29a3493f5626b52d950dd11af74946d31e508c6811ee8db36818ed25adc5ae6e32","ssdeep":"","tlshash":"0e21b78cf0578535e268aefc0b671bb395ac524a3813110aeb409d39278ac183b30184","first_seen":"2026-05-30T10:48:25.593997Z","last_seen":"2026-06-02T20:28:59.122275Z","times_seen":8,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0jxg8u~p~fktx.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0jxg8u~p~fktx.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"6a7-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7DRmmKvFhkFpS0HSMw%2F5MjNiQRnT%2BxUXOxb3nY7Cvn8%2Fpx41dKVAcpZb8jZEkRhQKdU1taRZp7ZXixVvRa5FfFIMp6pcByq7H4Ijb%2FPb9fFDk3SAGZLJhIey3IelEA%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab68be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1703,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1703), with no line terminators","md5":"75afc5935939d782a0f7de52aac4148d","sha1":"a7294862e84b97610510e09c6aaacf525a9ea366","sha256":"ede8f2f9998b003ec8186f039e3d961276792494ca4e6328fd950ba34a200ce6","sha512":"fc94a7e49443e0ed6101a72949634ffba0474fb5c8ccaabc1cb17fd8954689ef503c0b6864d3d98a38b81fe6ca1f6a81d17d583105bac5e19cc553f05ddb4d0c","ssdeep":"","tlshash":"b23145752b0c11fd988dd1a45b2bb103103db15770ff04305a9c5e88ebd35c9f0a669b","first_seen":"2026-05-30T10:48:25.558247Z","last_seen":"2026-06-02T20:28:59.101761Z","times_seen":8,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/13yd10w-z6hnk.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/13yd10w-z6hnk.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"1c5aa-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P3QZZMMqls1zuZkTwQ9OlZcDBgp9qlDlDp%2BGV9XqlHyf%2BsxU4THNSGe3O5SkRZb7Lo6fAo8WkB56A0HXXP28BlNozwYcF87NU0YqXJXT6U2UsCgFbsHg9YeDG6zCnQ%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aad8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":116138,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (47595)","md5":"a8596a77ef0dbd46a164b342e5dc3aa5","sha1":"3acf9f6f6f97737bf4720d706728ef67fa353c76","sha256":"e86f8e3d3f770319e852d2d815dced1b084748c65980f1cda0d4a124ecfd7bb4","sha512":"157cb9f80d3cb7a0229d4da451223da55da9ff31ade052140d4d16c035f8a5773925c4386ffdf4efd3229bc2327865192d6370bb0669086415438d59afd3dd95","ssdeep":"1536:VTWOdo9UsUedK+jdVdH8oeYP5JatNczfkjEloNdYJGTg8TgCHzWS4ymNZBk4TO6+:V/dedVorrWAmN7H3Xu","tlshash":"f1b31954a065beecaa6705d8645fc00cb11e6e5ccf0ec878f2fc7c252d99484ba97b8d","first_seen":"2026-05-30T10:48:25.605662Z","last_seen":"2026-06-02T20:28:59.144613Z","times_seen":8,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0kp-2ej7dl~sr.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0kp-2ej7dl~sr.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"4471-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5jcLCzqD8Vhx5UjYahbThNL3jGMwB7wZdISIUo6BN%2FecH7LLckhn1V9TysJsfJTb%2BqKqgdQUfY4gcK%2Bsw8CW5y04x9u5%2FqV6hua5HclB5pwUzdvXzAgbywoJyxexDA%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aaf8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17521,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (17521), with no line terminators","md5":"d57ad55edbed6de4ca7f974653e30a81","sha1":"80c38754f0d3253d3a88a7d069dd7080b8dc0e5f","sha256":"d68882b24cfd793dab4aa91f0eeb59419b4fdb215f69042145d666e78cef4bb0","sha512":"74380831f7c0eb1372956c5275682c80bb68b5cf912bcb377e920a710a325796af59b093e1e8ae918664c6f2e52994627aa546f0635eefe5d179170165af3817","ssdeep":"384:csBf9X7g7156bFleYoB15xmrLn7ERIWvd7//+bH4p2BGKDLc:cyX7g71ULgGLnoCWF//+ED","tlshash":"7b72846dc14473fc8dd447f445267071698e12df30d9aa6caaa988e077a30dcd6eac8b","first_seen":"2026-05-30T10:48:25.62983Z","last_seen":"2026-06-02T20:28:59.108187Z","times_seen":8,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fgold.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fgold.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 944\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 8AvjfvleEudCVARB6_R-GJiy6pvUiOVPIvyKXb7lg7I\r\ncontent-disposition: attachment; filename=\"gold.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yBk%2Fi1SG8eysaTJxD6PMQM5plJ1Gz2oSH028EzNFIbXA5zoABLvG%2FOGd4d9ADiBAGdbW6NngTSamqibTSISmcfRH3llnsfIwvIuDzxq3OrQ4pQO6dCkrEe44XPFcqw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd48be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":944,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"886e67b0b7a2fae65339d621174e3410","sha1":"4b48d58abe08757327ff2cdf4a5c76396bd2cb40","sha256":"f00be37ef95e12e742540441ebf47e1898b2ea9bd488e54f22fc8a5dbee583b2","sha512":"264d588cfe2c3e46ad0041f1480078b43781ee019b91c37fe4d22928eeca424579c3f9f15007e1c9d12f02e0ebc126b4f830c5675debd2dc301ed6c79037cdd6","ssdeep":"","tlshash":"dd11b7ceced18a11c0b65c1c7a62c2724f2e3bcca62eb794f2052080a48a862e903713","first_seen":"2026-05-30T10:48:25.562955Z","last_seen":"2026-06-02T20:28:59.117348Z","times_seen":8,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus1000.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus1000.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2472\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: ZYmdqlvezhBAHGB5tx16CCmQQ0P5WHPiP5Bv_uWoRHw\r\ncontent-disposition: attachment; filename=\"GatesOfOlympus1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yLm8csvKk4C3x%2BDFkiKEVrojcSNgTsPzcd8mlIn%2FNfUMtiswxSEb2bWAspl3iEJ5n5FPakb4bwo21PGPgurBYZe5Cnu%2FEXmJUnxfctQd15ncb3ybUuMP9fsDd6opqQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23be58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2472,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"ecc03064abb103ce8a2f0db09cae19a8","sha1":"68a821331eb073d187cb93dedf985ed9426c7b20","sha256":"65899daa5bdece10401c6079b71d7a0829904343f95873e23f906ffee5a8447c","sha512":"29c73129faf58399664eb7ff9fd564e655e0d618d3640c8e3ffc8f972573beb6735cd1ead6ffbe3727c12860ee78ae215f82fe5059e18457303427e058d33b84","ssdeep":"","tlshash":"45515d0d9b4d69074dfee4c7ce693bd836f2a50d20c4561174288573cbd92207787c79","first_seen":"2026-05-30T10:48:25.604489Z","last_seen":"2026-06-02T20:28:59.088397Z","times_seen":8,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fcards-bg.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fcards-bg.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 53278\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: i5pGDLSNyQNklUiF1bphmudGC-ohs8m3PTeAw-daZFw\r\ncontent-disposition: attachment; filename=\"cards-bg.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a6wvKkzjm4EkMBgQH8zTO%2BEBim0o7FickdTZmugC65AFk%2BLw9M8vNkNfzuMkFvgQr8SB6k0VkMPZ8L1arJ3iqEPU%2FY5Oet4YYfiEbnww1fm9OsUOWXsG8i8FfevAsA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c258be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":53278,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"10b40418ecb8c0165e2220e35f016c70","sha1":"bfb85e4fde06fcbf6d1dc7017e9be2084864f41f","sha256":"8b9a460cb48dc90364954885d5ba619ae7460bea21b3c9b73d3780c3e75a645c","sha512":"b3d93e3626a20203575f44c73b573d5f5814662827ac27a4c487cfd5d9e65946ee77ec18b48e53f53f4a24e66d364f36b2868062cfe4f6dcc55eba180a58d741","ssdeep":"1536:Guv2oU256o8z5BWtDt1YXVS7sYgHbybW9:52ol56o8XUVxkbp9","tlshash":"3d330202efb94dfccaf7b68eedd059ec3de70440374d1665e632146a5c21ac89b05d68","first_seen":"2026-05-30T10:48:25.566615Z","last_seen":"2026-06-02T20:28:59.133079Z","times_seen":8,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":69,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Fmichael.png\u0026w=48\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsupport%2Fmichael.png\u0026w=48\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1156\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: zcrvczUMpoZRwmQBfEKt0zaEslAQiiv7HK0fAEYgd2Q\r\ncontent-disposition: attachment; filename=\"michael.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Fu3MIndiEDeMXPpixHd3xfrOJQdXwbRtJ%2FkkYhpmsn4nWfzxa71ty5i4No2YEQXw2Imwal5mp3vhBB65TKbfpcJXhtfIhp2lzXW2V51nsv6R8ni6IwyUhWd3jwAQVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f38c2e8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1156,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"408028d2b4eb95bff3f2350df72a1946","sha1":"269a9743c17bd36c654d0b1398991a9a81b02433","sha256":"cdcaef73350ca68651c264017c42add33684b250108a2bfb1cad1f0046207764","sha512":"dd0c2ddd9003936e0131cff3634f22f83573bee7865bf0872380d7f4bce3f616542e4027d883869c173f0f37b65cd3f185ba0ba0c5cfacaadd9f97bc9e1af8ac","ssdeep":"","tlshash":"a0210ade9f088787dcf55d6c346b2a214c4f09f033e50064117bf5741b564944a0939f","first_seen":"2026-05-30T10:48:25.568267Z","last_seen":"2026-06-02T20:28:59.146417Z","times_seen":8,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0-f6o-8_g5r.e.css","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0-f6o-8_g5r.e.css HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"1143-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZDIbyD2OOeM4q3orGCObA4MQQL3iffGyWiXq9vt9hvLTaaK3CWClwHyCqQzQjmi7Mwuay63cxdXmTnkm0WOvDal9FTzB6rnbHlXQC8ss9EQQitWnd5er4zTanJrkxQ%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a948be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4419,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (4418)","md5":"da55ac97607be214ac16dcab5a3d47d1","sha1":"7bc2cc5f7d6b2da86a1dc05f049c2282bea6cae2","sha256":"2b0088564d9b85dde2b12020ebe7ad8d75eca8cec2607989fe73c5ac73af6514","sha512":"88d12bfe13850c178efc2e512bdd805df5a6f9d8f962ea1c80e006c2068c148a671c37bc18aebcb6e0d73bbff49d20cb306a2142a97a1237fc1384f5037b0c42","ssdeep":"48:sX4WK4TX4gEDX4ORTX4OMqwX4j8DODXmWK4TXmgEDXmORTXmOMqwXmj8DODX/WKf:cK4lY+q9eOLK4r6kqTeOyK4c7HqYeOv5","tlshash":"0691bb34c01b991dd6e3cc2334ce3f0b6818443653a59526d92e2db5cdeb83753d9768","first_seen":"2026-05-30T10:48:25.58922Z","last_seen":"2026-06-02T20:28:59.10707Z","times_seen":8,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0a51q.65l43cu.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0a51q.65l43cu.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"9fca-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X2wzqG%2Bf7hTFaGbOXW1OEbZ%2FYldKDG5ytIeXNPCZXHqoJMCLS5Tv7YbaltrU76t7yiMzvHE1C0KzTZ1tjn8N5qnqKcWI%2BvWG6peAF2tj%2BsHZIlkxal1mi78llYShUw%3D%3D\"}]}\r\ncf-ray: a04ec3ed3aa28be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40906,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (31928)","md5":"2c0d856260355cfe6e19dab13b192253","sha1":"fc7c5cdd08547a8a5a0f5951bfd676c8ba2a5fc9","sha256":"9ba6c6863a08f538a8fda2430d04b9f3fda5947f14ef606946c1004b416c5073","sha512":"78aa643104ae793488b923b3c73b38fc4798eb2407bad247e7946a87ce27ff9f2c78668ce111c39161a562eb31cbadd99d1fa8d93d2efc43e41608b97850714a","ssdeep":"768:juzhHJNPkOsCH71yZ8ATNTOYlTvLmHXG3v5aCmJG5LqKaBtl5N269Bx3jpIYYsHO:juzhHJNPkOsMI9Tthp3v5aCm/v5RzHeT","tlshash":"5c03b561e28672260e4343d9542903096fbe78b4678c541fb76c5ed72d22c8a4bbdff2","first_seen":"2026-04-23T10:08:30.775038Z","last_seen":"2026-06-04T10:26:26.634507Z","times_seen":28,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/10s19bi1jo.gk.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/10s19bi1jo.gk.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"3d7c8-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HN%2B11qGp%2FFVbS8rGsRGT%2F9IBK5gJKc0bM7ZBSoc8nJv4OmciQQOG%2B4HE9O8ywBXjCT3I%2F6y%2FMXlhUiIpBEygnvLywdl8Kc491WqjW0PXqTF%2Fc7t09LTunZTo%2B%2BzRgw%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aab8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":251848,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d23ac5cc87d807c1ed706df398b147c7","sha1":"da31da2e6a01ffeda3278ce92d37e143bb7a1938","sha256":"4172eba18b5e5e644872f4926457cd9adf5a75a1f0bca00308ce4d41d89c942f","sha512":"5d2541f98e8aa0a01ade90896a52a769fc0571a1df30bb498bba46777c2c28f0ab0e0c98410e2c161a8cf3ff60df0e36a89ccb57695d03ddcc36eb4f49c69157","ssdeep":"1536:fx8OMBLvOv9rJEVYzcjRt9rQzsK1vE1sXFNAumTflef5GrBAUmBQ:fHfQaAOdNAuWZ","tlshash":"c6342258b3e4c2e94a88623b0dbb2509bdeb765dd0ba751862c4cd6cfa24fc45d1c7b0","first_seen":"2026-05-30T10:48:25.617642Z","last_seen":"2026-06-02T20:28:59.086455Z","times_seen":8,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fbg-zeus.png\u0026w=1920\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fbg-zeus.png\u0026w=1920\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 84074\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: pny7P9ClbMfEocLhNcDy2Xb889ti4_WV4FArEXvVHaY\r\ncontent-disposition: attachment; filename=\"bg-zeus.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m9yRYgImrEWdaTgCD97V7lw1khx%2BogphKu102Pd9ZBV135SRqeAJr%2FCTNgZhMQCL7sV2Bojv1p6Hz95dyg8a%2FZHYO%2FJoFmY8a3yLqbKnoRuMN2IRvZO4DsVXGBZApA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f1fbc28be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84074,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2006a1ba70fe64d961890282de947c3d","sha1":"3d3e1f80e3bd1636664356e71d766a533df5cd2c","sha256":"a67cbb3fd0a56cc7c4a1c2e135c0f2d976fcf3db62e3f595e0502b117bd51da6","sha512":"25f4860991f162ddb8ddd20e224037dacbefd96127f3a6d735535b9ec8a05581a24e06a3cc492a0a2b7b9c82cca47e913a801ac70c53a675ca4987e813bef2b8","ssdeep":"1536:Nbzoi8f6NkCm0BTGnUlXLwiOT+OTN+U9uGiEBQUSWVESg5k:dkDf6NkkT0iOau+nkbWk","tlshash":"bf831279c01e615142a432e8beacd23c716a2f5796ff73c705da69880bc27db9944cd2","first_seen":"2026-05-30T10:48:25.607665Z","last_seen":"2026-06-02T20:28:59.126523Z","times_seen":7,"resource_available":false,"data":null}},"time_used":698,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":620,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvipclub-home-bg.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvipclub-home-bg.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 96086\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: kPs78UQj1XH_hyYAcH42oBQZtKQjxsqmV5zmCdHMUUs\r\ncontent-disposition: attachment; filename=\"vipclub-home-bg.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FhzLDNrM%2Fbug4duhNknxwd9PLaFVVpTuDqgxpg9qyzJljM0p5Qvh0sLIPkBPGCk5HwQe%2BKlywJdnUX5NpmPrDlBqE9A3B%2FX8NUOW0mgUOMfmrQhXLL%2BYmJBca1kVLg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c278be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96086,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"83b0f66a1493f39ab63e06405ebc21d2","sha1":"8e5ac43dfbae3d16022a850d3f1f5a33ec3201c4","sha256":"90fb3bf14423d571ff872600707e36a01419b4a423c6caa6579ce609d1cc514b","sha512":"7421c93723c97a6e84580c11e61b5a968d24d247dfe1dd5bc23c57153fa81bbbc7e4023636987c4be52003bd1ccd34702c8e53b4ccf25e4ab4078baec0f65953","ssdeep":"1536:7yImfakJRsqI5c4B10QeyREiaw/QTmAiuOOfj3itiAS6ArmDoyCslkzGsI9fywKK:7ytSWsqIqSeQeyRECAdiu4vvDlk7/x9e","tlshash":"f59312f1b6b8f7617e51803f789385336564f50435a028d22992d9d404ae3abbd3fdca","first_seen":"2026-05-30T10:48:25.567464Z","last_seen":"2026-06-02T20:28:59.11167Z","times_seen":8,"resource_available":false,"data":null}},"time_used":505,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":460,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-blockchain-mini.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-blockchain-mini.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2964\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: cQSRaVWX-yWrNXxuA5rm3dfeMDTyJ4Vm8gpkDzQwdfc\r\ncontent-disposition: attachment; filename=\"banner-blockchain-mini.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6oDxn%2FlUkBGXuDjUv4TiGS2wrrEEXhclMWBoo4RsW64nlC%2Fp1gkE8aPS8WcqOXz3QqkzWoQ4T%2FsbSWG7Rnj095HqzDSWZ4zKtroLhfl68hObWFmwBe4XYrUYfUS72Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c298be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2964,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 590x160, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e8d3e93ee315fe6beb4ba5c7b61a9873","sha1":"b029ce256f87889d57db9eabbc859a8f0d54eaa3","sha256":"710491695597fb25ab357c6e039ae6ddd7de3034f2278566f20a640f343075f7","sha512":"9bce438fd0f981654a3db0a1c2e0db6a0fb12034ba4f9b44938b42293dc13148840dae47fb8a8e0d5be5ef7ca8a706e8bc015de14a8dfdb03ed1d3e7f516f9d3","ssdeep":"","tlshash":"30514da26063eddcc7743a793885834212fa3546b33accae8a97e001fa1c8511fd2861","first_seen":"2026-05-30T10:48:25.652342Z","last_seen":"2026-06-02T20:28:59.14145Z","times_seen":8,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0ox_03ak_i_jh.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0ox_03ak_i_jh.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"78a-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R864FaK8jMH58aJxY09SSa2dJbgndErsxA8TtWS%2BZzOyJUQi9Yr1uir5SmScAl3QDueuzPFTj9a4Ouui0zL2f5QgIIXhj06bviPiW5BmKyRvUh1q0avPlhTi90LOjw%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab38be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1930,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1930), with no line terminators","md5":"088ec40a4965e44ad568004a525ccf3c","sha1":"9302d3ced48402fda69c170d88f6adc78151c57f","sha256":"2525f70ff99ff3c4f736e3f317f5b6d687c61882342856c347b63b90a6eef11a","sha512":"2be90eafcaa61440ca8e042ef3de439fb7fce4bb295460136ce4b1f6bdbf76c3bf5b1b9d9f306e39d4e50a670221d383ca4e0afe5228c7e153519f34ed26f1ca","ssdeep":"","tlshash":"ac4134c5e590a6389cc807b44b254812693966ff70dde5f987ae0ce05b43dccf29648e","first_seen":"2026-05-30T10:48:25.551671Z","last_seen":"2026-06-02T20:28:59.11643Z","times_seen":8,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fdrop-the-boss.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fdrop-the-boss.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4372\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: w0k2rD3jWi_L3-T_2IUdB_g4dvOiATwsZZhIiI3qJ0g\r\ncontent-disposition: attachment; filename=\"drop-the-boss.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wprOKWYL5GTJLygmlYj2loyuY2REJPLPMqhu7UStdx18BndJH3Lihg1oOg1WJFp6csYxptl18jpQKNxY956BgjRVnWhScUEZjJc%2BboQoTy6HbLCvHAj7GDJ2iy37Vw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd98be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4372,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x129, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e3e6013a7411b4978daf6347a432e7e5","sha1":"af365abe239c74fa6839dbc21f0e2d1d92cf4fc0","sha256":"c34936ac3de35a2fcbdfe4ffd8851d07f83876f3a2013c2c659848888dea2748","sha512":"31ac4fa31d13fa55bc758538ff7c7613c10f01d7acf2f68bceffe75bd1551a7bdf67f893a6d7f71d2cc10d5220e0e96c65d3d3d9bb9408bdbbc10d9632321c6c","ssdeep":"96:ujcw8z4LuTVHRLkadzNzJQQfCUV68pG/weizsZ7L35WZsAoictSRxNmn/jTVE8p:u8jTFZhNzdCUVnWACpWvoBSRxs/jZl","tlshash":"31919f205c07f6145114264c2674d4f248f86beec0b9c56c9d5f95aa1cbc9f20959cfe","first_seen":"2026-05-30T10:48:25.663042Z","last_seen":"2026-06-02T20:28:59.145965Z","times_seen":5,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fbanners%2Fhome-banner-bb.png\u0026w=1920\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fbanners%2Fhome-banner-bb.png\u0026w=1920\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24858\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: ikxaEaADyVJPcPjzt7cnlpFNmBlz3f5UeH7SZZh_XCI\r\ncontent-disposition: attachment; filename=\"home-banner-bb.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PF%2B53kPOOBCVCjIYAxIsi0oLcv89qcWJ4D3ngVrqhyHX3aZMd1eOcXJoRlfFf6%2FWDos6EFs0%2B1uVvWxr7Dr%2BiVdSW6pYEr5FYLk7J%2BnWE694vjnno7mp3itJBMTzEg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f1fbbe8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24858,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"3f3e57bde79b54533789177cf7100ee4","sha1":"3861fde22049438a6c834ad4171a2c44f6cea9b8","sha256":"8a4c5a11a003c9524f70f8f3b7b72796914d981973ddfe54787ed265987f5c22","sha512":"14701e2bcd3dedaad5a335bacb34306f5f782e53012ffff926454f06af4c981c4dd20113d5c8a84063a0271ab2afb75608a362ff33cab48447f6df45ca5562c8","ssdeep":"384:VxrNEaRiAyp6d8zQ5/oRWkiPQd3P5/geesLVUUixsKRwYghkeHm4u:LrNIX8avB1ge7GU4sK3ghkepu","tlshash":"38b2d0ae4f69d418bb5ac33a3fcd494c00631296224c4d4d1d2ed5d9f3fa3a8892a3e4","first_seen":"2026-05-30T10:48:25.560744Z","last_seen":"2026-06-02T20:28:59.130046Z","times_seen":8,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fchickencross.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fchickencross.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2010\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: gIQ0lKn1YgooVuahDMvz8ZsVz95Lb9NhTWt_GuBL96Y\r\ncontent-disposition: attachment; filename=\"chickencross.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6D0crPZcvqgwJrWccfAnRFZmIa1xZTaLD2AjHEVPoI1cAo7H%2Bs63%2BcK1QSqE1EOA4IoFrmN1ofxbbd112XIkartarkrEyoqxnlF%2Fwlw8dPf21ec0%2BVJVdanHmAGN2g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c0a8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2010,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f718642db86643535e0308afb192110a","sha1":"72c4406b7db2317b040659fdb00bb415bb826227","sha256":"80843494a9f5620a2856e6a10ccbf3f19b15cfde4b6fd3614d6b7f1ae04bf7a6","sha512":"de241c4f7ad05dcbca7a464678afae1431392f95e27c008c32e3a04d62ed1e6e60d07b555b1f04ac91702be9f61d6af04d19384d31a9e3440676262fc7dd08b9","ssdeep":"","tlshash":"97412a37d971803dd5614d9a0c7d64032eb02a33b4c4224ec06caedfe48871a1677a19","first_seen":"2026-05-30T10:48:25.657369Z","last_seen":"2026-06-02T20:28:59.137451Z","times_seen":5,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FZeusVsHades.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FZeusVsHades.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3410\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: H_b1lTOnVrokU1amgwzqWRMjvIdPzxAHqeQvEDY_2ko\r\ncontent-disposition: attachment; filename=\"ZeusVsHades.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LBGYFBUehRlQ4pZlESzb1N%2FdTtxI%2F14rSE204y6i7yxOz1nqVYoN4K31zGwDnVhIEtKO%2F4tHAbfDTMf1DW4NqOyEQFrJcBZyiU%2BV%2Bsq9BQVb98%2FBoMiI2IjESZYn3g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c118be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3410,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1369977cd852a4260bccda7e4777aae7","sha1":"b68c008c873e6b3e46f1cc8c339d8df5c44bad02","sha256":"1ff6f59533a756ba245356a6830cea591323bc874fcf1007a9e42f10363fda4a","sha512":"397b0a8bd43feef43f253c263b696678b698a2fd3c97bf2bd93205682db4a61b9b74f64762fc5fbd115999f3cdae8122fe058e9ce8cfda9ef9c269989023c36e","ssdeep":"","tlshash":"23613e74724e896a382061d1f51bb0d8b1c67f0b7a07c4b5c7b79867125e24764571b2","first_seen":"2026-05-31T11:05:15.3701Z","last_seen":"2026-06-01T14:04:32.475122Z","times_seen":3,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fdice.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.997Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fdice.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1692\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: vNRx6PMn5CHH0zBqT1PNIisWoSd7TxRsJMhLoU6v-14\r\ncontent-disposition: attachment; filename=\"dice.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eyJPIzhr8G1uC5bgt5hbDAcbG5oPCnVC%2BQ4ELyEgmLs1A5II5Uqo2i%2FgUZoHJ12PSeL6pbhQp3H%2FlMzxm3DERcWcc302CkNPZZaUfQ8LfHw%2BJX1Nioy8CIw24lyVTQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c128be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1692,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"17c474cd5fb27cb35195a6108b932edd","sha1":"11fbda8b8397626c053b25c16d5833d86d74dbd1","sha256":"bcd471e8f327e421c7d3306a4f53cd222b16a1277b4f146c24c84ba14eaffb5e","sha512":"f99c6be7e2c51a85c812933ad2bf2d8aaa0bed8afbb4cf9d48a50549ce002fd5d222be7a512c2c213d3b35ce2bc746fafe0cddf7b37c55162482643e2d500891","ssdeep":"","tlshash":"ee31f8839006d7aa0bb838756fe4e18680063347296b2251bb7b1aa71c93e339007f33","first_seen":"2026-05-31T11:05:15.38849Z","last_seen":"2026-06-02T20:28:59.138942Z","times_seen":4,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSugarRush1000.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FSugarRush1000.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1924\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: r6rh3051_3OvAUQfCmzTjO2zmK9Dy_u0gtYY7czQOuc\r\ncontent-disposition: attachment; filename=\"SugarRush1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=j1j7aRSDUXXBagkJB9beHGxEXJRQIxPh9nwlTSSvllnYIDgTcLG7ztTUvl86Dr9cTj%2BQRa5pZMk4o76D0l%2FCU7W2sJRatUHROFiN%2FFr%2B1yIRaWVKnJheHFxaAARZQQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd78be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1924,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1fbf0376e0b480062ca185c4aa55eb81","sha1":"d45685fa09fe7e337cf566f2b8fa9a0a1232fd31","sha256":"afaae1df4e75ff73af01441f0a6cd38cedb398af43cbfbb482d618edccd03ae7","sha512":"0bc0da9d57e3e6ba036b2e10c626fc69df67bd42527c5e8d36ef7be2a8c3ab325e937162eb82c689ad40ac3907996d972caf00ca8eb731cc60115e6fd5438b7b","ssdeep":"","tlshash":"eb412a9d46a94008a5069aefaa7fdf0bd1328e6f2d7f16771850322db0fc95839c4e47","first_seen":"2026-05-30T10:48:25.650868Z","last_seen":"2026-06-02T20:28:59.131772Z","times_seen":7,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":84,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T14:04:03.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 14:04:03 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BFtfUuNAc7dBeXHdxssJ6O3NccAIj96958B4Gc9jhNGccM6RDCGPb8xgIPtBlQL2jZbuIR%2BBvR%2FbrLlKtMx0Pk6k79HM9mSHqCBMyL3sRolGczMqRkkj%2BPg9WM7SOA%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: a04ec3eb7ac9b505-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":103361,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (60507)","md5":"5ac1e07f56e1b9454dbd3f0fc73f3b47","sha1":"87d45031547a3348a77cda6a50becadd8084cbff","sha256":"df8fd22e70c3bef08308e4d980ddd00ae7459855696f0f8907f72c9d25c8ddda","sha512":"85c9e29a912be0ee370eacb00d1163aa1add90e10f57f0e0d1120695d8c4992379de40372958317a1086046850b2e095ae9a482b68fcbc14705a947cfa6561ae","ssdeep":"1536:JC8iKI7C5+3//yU8fmuAaN1yGNkptBgGOZ8hZFQIxZJ:J72C5+3/6HmufgRtBzHFQIxZJ","tlshash":"bca3e70fed18ea16d8939d9e647f6f3b6498c43642b184bcadadc40c02518b997fedc0","first_seen":"2026-06-01T14:04:32.477697Z","last_seen":"2026-06-01T14:07:01.017042Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":62,"dns":34,"connect":1,"send":0,"wait":116,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/07font_ji0u27.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/07font_ji0u27.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"218e9-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EMXHMr2UuyehT%2FNTtnk7UFsfiXrT6g5Wcu6qpk6pP3h0uhS3lD9H8YMgJiWEOShs9N7iwNymbGlOYoD0hSGFAdgnZvA0dV6T5xo0E8UknEobIs%2FHksLpOPdF40USbA%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a9a8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":137449,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"844ca04584c3d6199ccaa3d3710e04b7","sha1":"bf5cd90422a77983d1d2a50435d7c0d0366b9db3","sha256":"7a9a9ff9a898c5653c9e174e4376a0de420d683f366082d804cdb33ffe608173","sha512":"b70a5ad58a34cc6bd06f110f703c63967b2c6bfe8d2c63bfc8b507b8557daa641f3c073d70d4294121c7d36c44fc8edf977af7e72dfa841e9a4f5e41b48be7ff","ssdeep":"1536:j1A+g9MEnjxzsYoyWZCYC3zWxvOcyN+PYApz0Hpsv6aYcafemr/WSeS0K6j8EknR:YTjxlofZrLvOcyN+HNYcammSSF0JjMXB","tlshash":"9bd3f6f935d2f482076b50aac03f0006f22c4d77189e6860e3e5edda756465de1b3faa","first_seen":"2026-05-13T14:24:18.078197Z","last_seen":"2026-06-04T16:03:14.798132Z","times_seen":44,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0pcdgzyzrel.d.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0pcdgzyzrel.d.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Mon, 01 Jun 2026 13:05:50 GMT\r\netag: W/\"c226-19e834a5fb0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 7895\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cBVnLiVbEDHOzBobOF4%2F52FuU%2FHBO8TUeRONe1BRiIZ7i933v6U5f8tRh7zISxLzZiKRvQBO%2BXXh2ZMYmUgBmFQ4CuM6X7jTUxuVOb2JfpxpOYtzNFpA8oVibu1ZUg%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aa98be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49702,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (38905)","md5":"a16816bb9239499d1ae4f2d6f8438e27","sha1":"7d2d73d12429465bf487cbbff128b99d7762c94c","sha256":"ad71d98407b4cbb744771bc94622f0ee0ad1b3ba8c11530ac786bf3abe3e6d30","sha512":"3cc8c46c653be2c3a59f55d0a9d63ab202086169461b9b3fe174aac5fe7e51b5de7c8c1adc980397daf5069ed88e45c58489386497a90d25f87b2d2023987558","ssdeep":"1536:Xo0PO7PZ7zbQyeicyr1C7R+G6HQeiXBBHCgEudrUu9qaAZcCBA:Xo0mbh/PZrJQLBBHuuyQ","tlshash":"5c232ae9b39070b89b47d3e5c5bb50057a3e11783945c82cd3ed2cfc68149cea1aabd6","first_seen":"2026-06-01T14:04:32.479451Z","last_seen":"2026-06-02T20:28:59.135788Z","times_seen":3,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0tergj_hqkn7i.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0tergj_hqkn7i.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"1d04-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 67848\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4PJxXraWWqVmcDXJjP7cK8Mcs5it4dosXoVDDvk5Jcdq%2F6ef5aQ78wzsewo10T58SobjkTHo8qjz3JYQ14%2B10oAxCAb%2B4UGUyzKRbfRFAlMf367ObwuDgYHF1pMbkg%3D%3D\"}]}\r\ncf-ray: a04ec3ed4ab08be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7428,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7428), with no line terminators","md5":"381218a60caf159c474c0371dc34029e","sha1":"0b6dd364c3fee70bf5b4c75b1e58942f4fa12cea","sha256":"aac85f662f3dcf66534bbd32a2f40f78a32b865be7f430e32af80e122cef857f","sha512":"72d25afc2094afb3e9dba7413029707a1424f712cdb28340e75c2b7bdcb122f35d69035161f76f47ed7e4ffa0be2d32485944e50babced4ff34582df19d3c099","ssdeep":"96:HVK+tlwyJK7HP8SV+Fdyt6hj3AZH4CUXSNRYXQ5RnAQoKVxIl3l0ql/wGP/2o400:4HhV+FdfFs4CUXSPAIxODl4G32o4c0","tlshash":"d7e185dbfad833f0908557745323a156b23f3c7f36cfd5d5878585c4526948ce26a80a","first_seen":"2026-05-30T10:48:25.590114Z","last_seen":"2026-06-02T20:28:59.097232Z","times_seen":8,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Ftowers.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Ftowers.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1856\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: CiRqB7PZTf_-8W_oua4H-kTZfpFlPtfVrTqN_WL-a78\r\ncontent-disposition: attachment; filename=\"towers.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FjAJah3snlD44Fx2dAReoTjYJdRoprUMFF9DJYtxwKYuRArItGbxCflH3gZMOtjG5Ht7LC%2FPvtHfTzi0ZM1vkePr4ZnKiCyY4J4ZTQH5xR6HgY8E%2BWvYepYqz5DxNg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bda8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1856,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"31197b21bc9c5ea7a8d91fcf5bda849b","sha1":"88424b30ea8dc5b81d0f525a71e39be3d670c052","sha256":"0a246a07b3d94dfffef16fe8b9ae07fa44d97e91653ed7d5ad3a8dfd62fe6bbf","sha512":"f88da1092f310591f06773719160fc88c9fb7c20d133f5945d7583edefb330462f386cabfe79e7f38a7132aba16c4b34c99ecba33dc47160079f677127271af4","ssdeep":"","tlshash":"9c310b6e05dd7a88b896b7d8051a1818470cd5c50139a3a2df0edf48b3eef2e31db509","first_seen":"2026-05-30T10:48:25.659237Z","last_seen":"2026-06-01T14:04:32.481611Z","times_seen":4,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/static/img/icon.svg","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /static/img/icon.svg HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/svg+xml\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Mon, 01 Jun 2026 13:05:48 GMT\r\netag: W/\"52d-19e834a57e0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RzVV0uJlJdM0Zb6FeojNl%2F2lEEmByIFSQjU%2BkzCtREthHoUFUGHIquPcpuuw8y2GzoB4DdgMxRIbguFZY79vnbusCZGXh%2BZ9eVK1xQCoa4wH4E6dfcMazU7sfa3lWA%3D%3D\"}]}\r\ncf-ray: a04ec3f37c248be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1325,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cafdabcb3c805f37ee3a83471fdebff8","sha1":"5a729d1501683ca0738ea28ef1a17c681a9241c1","sha256":"1dc23bb256d761a2d21420698bb7e9d9db28803bc63e79a3a2a4df599b158f18","sha512":"95d1b61cc2fc3a4acd3f405e19b0b877337f64ed5fa9db9f34beb32b19e6b6df0c389fc7cdf3579b6b5e0b54b09d9b6d1478a33cd022e621b62e475760e1e697","ssdeep":"","tlshash":"602142d272f8e39cba5ccba921382576303f20f46560c4159fc22866b1d362e1df6d92","first_seen":"2026-05-30T10:48:25.559983Z","last_seen":"2026-06-02T20:28:59.09215Z","times_seen":8,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-ufc-mini.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fsponsorships%2Fbanner-ufc-mini.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4146\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: UPidy2wtnT8nU4OvcFes5844s8isy8GEOVHzqbKdi2o\r\ncontent-disposition: attachment; filename=\"banner-ufc-mini.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7wIQXoruhrCpqnWjjKWVrb0tE06754%2BDmdMNmVF86is%2B4i8mqlw0VFAEL%2F1DoVQ%2B8hY4yUoFhqc%2Bz1z8hyIWTJ%2Fkh1GgT4eUz34n8vh3PtId%2BRlL9Mm8CH%2BXvX7y3A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c2b8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4146,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 590x160, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1ca690fa975c574c8eac780660326195","sha1":"e9368eb07c7398f30ab1e09e6afe0dd30475c759","sha256":"50f89dcb6c2d9d3f275383af7057ace7ce38b3c8accbc1843951f3a9b29d8b6a","sha512":"ee950879e8345105492b1cee5e98a74a55993217e1732adc74671511962beb4393a569a7223d95d2e8975ca0c3d914100a6e911018ecd0ac2362b4afc8e5a19e","ssdeep":"96:cySi7+5st7v6DpY2gzX5t77SCF35gdEvXy:cyn7+5k6Dptgzb7S+5gdb","tlshash":"43816da08d77bfb00d7ad70496896dd73b8f5a3799dd2c0070305dca3022e699b61134","first_seen":"2026-05-30T10:48:25.665022Z","last_seen":"2026-06-02T20:28:59.154055Z","times_seen":8,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/02qk0mar43-vc.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/02qk0mar43-vc.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"f1a3-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tmFRbHmD9VUDHV7ciusZpfmHAVEMPygDkrlFrP%2FcbXucu%2F%2BF%2FHGaw7fR1%2B3vnya7FcdfJePw2WFZLjTvMR1Hc5ZPXEmktawps97UAAjMidZM4kohB750t1iFYuQpAg%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab48be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61859,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (61859), with no line terminators","md5":"298fb813395c5ba1d4b30b6300d77dd6","sha1":"6d1ea78ded9c061a8992617742e851bc67a4150c","sha256":"c51a4a2f29ee139968322f3117df0f7114f03502ab5123c48829c087461f84b7","sha512":"f0b7062c18d373b57861cad81997999a388c193d83cf06b5c7752f2c71fb3d784d9d5ba894fb0910cd336bd23333ea28693ec93d3059706577dd9dcd6b26cb9a","ssdeep":"1536:uOSyXFaRNRdXvrZFFecIJKchan/bv+IgHeCnndWhqwqjXQl37/l+VByHBBlUNGH:uOSAsRNPZFFecia/bv+IBCndWhqwqjX2","tlshash":"5953f9edd3e8a6e8a60adbf4c963545c3e6f34f9ab85895843d4a950e8740c8790dfc0","first_seen":"2026-05-30T10:48:25.602136Z","last_seen":"2026-06-02T20:28:59.08486Z","times_seen":8,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0-6~wn0b5r~-n.css","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0-6~wn0b5r~-n.css HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"314bb-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Fw%2B%2BEW3qu%2B1jVobbh582LAcRqJy1jsa8xyFQ8NjG1idVjCQ5Q9%2BwovcNJDvFj8v249L2cDqEhHEzBild2DlSPetoZw86w9xynJhCO%2BzS0tQM9I3vdiy%2BPzuGjmGt4A%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a958be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":201915,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"fa059956ef7eec98e7e33ef3c78d951d","sha1":"ea2b7cf9c5d0a77bc5f39e392261c7443e9f4f51","sha256":"dd27e6a49030fcdaa2e80bdacf2dae3be46dbcd9582fb8a5572763de29f7352f","sha512":"d9cc88dbedff1b83c178f9095d4e2210f395debadda3c34c4718ef52083ff93aa81bf56ef2ce3ac9f4998ed1c1748e67fbd842224f373f078a7a837b7f4b652f","ssdeep":"6144:e7+ssS6h/LghBGG6oeCgafD0jXtfKhay4aZmfoFGC10GAw5gAYHygqcbu4xHZWD0:BxHZWGlv","tlshash":"c41482a0b225d53bbd2374f993acf8cc790ab092de264bf8be51211527d37f21c56a14","first_seen":"2026-05-31T11:05:15.407846Z","last_seen":"2026-06-02T20:28:59.123194Z","times_seen":6,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/static/img/icon.svg","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /static/img/icon.svg HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/svg+xml\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\nlast-modified: Mon, 01 Jun 2026 13:05:48 GMT\r\netag: W/\"52d-19e834a57e0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zpO6qME6mdojbUN0FnkUynpfFmZ%2BsvrSS9palC8N3jq8ZA2RoLmXl4PIQAJpbfLnDnEgQHgvM7UnKuKRDsW9YOU9gWHSqquNnGD4cO%2FjGhLnzUvsNp12i1HuIfTK5w%3D%3D\"}]}\r\ncf-ray: a04ec3ee8b038be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1325,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cafdabcb3c805f37ee3a83471fdebff8","sha1":"5a729d1501683ca0738ea28ef1a17c681a9241c1","sha256":"1dc23bb256d761a2d21420698bb7e9d9db28803bc63e79a3a2a4df599b158f18","sha512":"95d1b61cc2fc3a4acd3f405e19b0b877337f64ed5fa9db9f34beb32b19e6b6df0c389fc7cdf3579b6b5e0b54b09d9b6d1478a33cd022e621b62e475760e1e697","ssdeep":"","tlshash":"602142d272f8e39cba5ccba921382576303f20f46560c4159fc22866b1d362e1df6d92","first_seen":"2026-05-30T10:48:25.559983Z","last_seen":"2026-06-02T20:28:59.09215Z","times_seen":8,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus1000.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FGatesOfOlympus1000.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11086\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: oZV7vrtwJlhOa4X-lVu0GFe5f31qZbpXnMRI_n0WLBw\r\ncontent-disposition: attachment; filename=\"GatesOfOlympus1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nEfwqeqxGVGVX6a6yDM6yrZFjQNnx4KG%2FmlG%2BKo98dOGrv8FDXUkOVLaClf%2FZmFOlMELq2yhbRuZZkc7r314hA0oZzNVzYZpIzQhPNdKs2AzUSQCVrsfVj1Y04VtJA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bd08be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11086,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x256, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"87da7aa0d9f34e9848ad236b2ddf56e8","sha1":"e761bd4728165cf4908b980df3daadb5d3624682","sha256":"a1957bbebb7026584e6b85fe955bb41857b97f7d6a65ba579cc448fe7d162c1c","sha512":"4af270fef710b3c6b6d3224c1cd3e08a52a043978a82e81ba5c81fe739dcf0d7e8483807de11f696f975900c4fdfe099e26439f57dd4dd643e0d0c18f470c678","ssdeep":"192:ZR5hTLhvzqgTXE2WeL/reSMyY/7xDvCdqcMHe7+JsSvEmEteghS3:ZXdLhvzqgAhMreBdUdqchwsSvEzhY","tlshash":"2632c0480b3076c9e2cc09fd4e7138c1b37adf9c2e638aeec9559c95b08f5614a86b08","first_seen":"2026-05-30T10:48:25.656369Z","last_seen":"2026-06-02T20:28:59.151812Z","times_seen":8,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fplinko.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fplinko.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1720\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: Am3NLcdcux5QcjTU30lLDvQxMjMURjDNoqb5bYvQOL4\r\ncontent-disposition: attachment; filename=\"plinko.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Oy3EyjDUXhr38yUF6vbMTKG25RL46C2Gv%2F5GpiTnajK3akbE2PZkQ00Ph5NYGBn6JuYbcs6Ey6l%2BlzCIg6pdi6uk0TaQb41z2j2QWJHPO6Aayc6pIBLaDuzpqg%2FmXg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bd18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1720,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"0abef76c8495aa1fbff99bc658206ad9","sha1":"dca11cd50d8c2c5bf4705140561c89b9fbe60a48","sha256":"026dcd2dc75cbb1e507234d4df494b0ef4313233144630cda2a6f96d8bd038be","sha512":"c36a2771cb47d02c3b46d66eeff037dcad9b3332d4c83b1069f6f7601a7e52778504916d7425eef397b6bbf6334fc50f6abc1935ea0238244e3228ad6419720c","ssdeep":"","tlshash":"15311ac5e0abad0c3ab90a9586db0ad7dc535e42ce039d9852d5e25db4cac04da71380","first_seen":"2026-05-30T10:49:00.951137Z","last_seen":"2026-06-01T14:04:32.488539Z","times_seen":4,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Flimbo.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Flimbo.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2966\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: KwdbWVWVXRwFYRli8LkV2fcPDBGf9FIZXBZkQHEsdy0\r\ncontent-disposition: attachment; filename=\"limbo.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4HZIARUjbLAPUceWbTFuvPo8wAPM%2BnkZfXAhtJQQH%2F9nWqvCQ6BzQwwzkkBK6SuUQqwHT6pmS%2FUgZbfQuPrGXPzSnjvBfLcYAHIl4JrShUJGHzlisnYSOlOtZahDjQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bdb8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2966,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"8da473b6f7f932297223bc8f1f7920dd","sha1":"986ddb071405acdcbb8ed2d2160261657b9953c2","sha256":"2b075b5955955d1c05611962f0b915d9f70f0c119ff452195c166440712c772d","sha512":"fe126f00989a003b57193829a7c4217df634e59312c0c79c72c50557ad68f22ae4e3e48515eda2d81085d0e94673e9a8f55d3ac7c6d87d8a164c9f74a9a0777d","ssdeep":"","tlshash":"65514c6edd0cfb16d5644ee7cea12edb202dd1ea3aac9c9d38a14343175a6d00f42c46","first_seen":"2026-05-31T11:05:15.366713Z","last_seen":"2026-06-02T20:28:59.149073Z","times_seen":5,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcrash.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcrash.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2380\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: Gz2Z3S_1Wvdw3bRFpkGDlqyTs8q3V2gy-xqMPx7G1Xw\r\ncontent-disposition: attachment; filename=\"crash.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YQc7Ve0%2FBmqEm%2FQXMgIEzWKPnk3YjhEz6BhUenr4hwhdr%2FXpbYd9izReVkrH3LcF%2FF4oabScsGvxi3pdDjIlh430m4jm7ijSNiR61%2BamMoxXAJilRUb2iqd2s0IGcA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23bde8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2380,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"97d0ac03d4c968b1ae027cabdff55e3d","sha1":"730708821295d2da00d8e0030ead49ede99a114d","sha256":"1b3d99dd2ff55af770ddb445a6418396ac93b3cab7576832fb1a8c3f1ec6d57c","sha512":"61bdc1df6a5567020dc8e0a3f2094d95b4df3d95a70902f42abf6920ced220d207c12b2aef82362970e0e24652c7932bd64bc940b69311f839ef443873abc959","ssdeep":"","tlshash":"c6414da41c55072ce00ad40373445edd26ae2471a7bb26db5592f8b540f9a0da013e7b","first_seen":"2026-05-30T10:48:25.576383Z","last_seen":"2026-06-01T14:07:01.085287Z","times_seen":4,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/04ju1lilzr~yq.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/04ju1lilzr~yq.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"22bb-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=byXL8EZwizVJvkva0AJ6X%2Bk5oYzME4YJkL9P7upEeYew%2BtipxpmkhIX8VDJ%2FDv34SWRd%2FHfW9JIclhwLv%2B7WthJCWQiyDyvNH8UdGJqWdzWREpZeP36iYbaQcCQZew%3D%3D\"}]}\r\ncf-ray: a04ec3ed3aa58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8891,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6801)","md5":"be7efdd73ae6b08f606c4e507a02a490","sha1":"f87a1432bcb30ac2d13adbfe57fe549bcad93d8d","sha256":"03d5bf51e580a0801ee37a2fbf5b7f44d38f5b467905f251d50fb1cf2abf31d0","sha512":"0be32c9ba10fa282937a740447bcb7be686ca2426fb4e71dea26e78b896b004f9fd50aec7a7e77c18370da2f2daaac2b240030b3ca99fca129b97333e16051eb","ssdeep":"192:10ZAcqvhX35laDNvhahXeb+dT2ZNb89/xzGz1pC6aH+N6pGO4W:XV5X35cDB0huS2ZNCqat9pGO4W","tlshash":"39021bd7b69ef831567a41a06937c20ab63d3937344d9090bbba4ce83165c8f8462fdd","first_seen":"2026-05-30T10:48:25.64876Z","last_seen":"2026-06-02T20:28:59.129077Z","times_seen":8,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/api/user/profile","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /api/user/profile HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 401 Unauthorized\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 64\r\npriority: u=4,i=?0\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F3M8yTKNTPhBuO6U6%2B5T0GWt2bf%2FG%2BEyUAgmla690d33Corln3XAC66AS7GDmb%2BekhjrRdefJGajDKvtTHeaIExfEFD8cGgP6CgMGyWUq33faDw2psicfQO5ar7COA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3eeab088be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"811ba1fb7eb444b66db5c1ca129cc5af","sha1":"b6673affd670772b80fdac09a64fa51d2f6e7738","sha256":"4f2cf78369ff30d42979b058fa0a1af11bf63b1cb9c8aa35bc6eeaa76ac4df66","sha512":"05ac11e0a60c7b488a516038d0b34fc0d9f5a569fe367d2e9109ccddbafbd7b5e043aa15d303f2d39e59dcba6c04c01d3a773d3d08748efc8bc347b5a88be870","ssdeep":"","tlshash":"d5a0025a07081d6b7702212ab51c151565a44568a7902423cd89832d6a439e49453509","first_seen":"2026-05-31T11:05:15.380687Z","last_seen":"2026-06-02T20:28:59.110176Z","times_seen":6,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fminedrop.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fminedrop.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 6336\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: lyk6g7NYo6DeahtR8zsPKTlfV2PAOZrbDYPEimcPXXE\r\ncontent-disposition: attachment; filename=\"minedrop.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QHK7JwgGDDEBZ3slYdyNk6dDMeOXXHpvn5HD7sAk4RtaVbD0AGVB5%2FSwtmSkOHwnn7UyWzvnKyRbHe4UgQCS4S3LpJoXOxjWHSZAoJTXNBcV%2F6sbNX8kEr7Vb%2FbrKg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bcf8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6336,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x344, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b0448dd6c391eb6b592612014d684936","sha1":"ed1672cd54f2336de5a0dd711ab22ae457175c00","sha256":"97293a83b358a3a0de6a1b51f33b0f29395f5763c0399adb0d83c48a670f5d71","sha512":"a2ca76936927309a1e78be79e4ccaf8ca6a0e56d5569f74af6e2e4588e74ee7689e235853f2609e28cb583c6c7af6bd1479642b42335cf935444d85b42706a5e","ssdeep":"96:GBLWrP25rcV+mbYsZ6OZHnrT87dO7tE+tRSSI42lPRRCuIjsMC+GWKgMN+I:Xr6BMYssQTKk7/BF2NRRCuIs3NvAI","tlshash":"13d17e25fe06e4588062afe8d01840629439fa839bcf5780d55d0e2d7aef437353fa5c","first_seen":"2026-05-30T10:48:25.59585Z","last_seen":"2026-06-02T20:28:59.099162Z","times_seen":8,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":79,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FSixSixSix.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FSixSixSix.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2402\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: 9AxsOgcxzIPSAUlndcfXNw5GK9jgq1wKHuSbec4T6ek\r\ncontent-disposition: attachment; filename=\"SixSixSix.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=egYDeQaV5nlfAKEUXN8zQg0UluqZ73eNhTEtGgn8WjDTiNynouEGKHqa4B%2Br0wkZUICzIpEa6%2BMc7XG0wMVvpvL1fFlTlD%2BkhsnR0aUToJyK6nPcUbZnWYMBosz2qw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2402,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"02996a3118b3382f106ffe3de9ec0a41","sha1":"cfab68073e74c2a2f26e56e82308dac9d303bd6c","sha256":"f40c6c3a0731cc83d201496775c7d7370e462bd8e0ab5c0a1ee49b79ce13e9e9","sha512":"eb01e84f812b9201d36fea0ec675c1220951fb63dafb45320d9a580d426e5a99e86acab07235bb8ac84a943569e3b0fe7274cae28278810cbaa7892ed6a97482","ssdeep":"","tlshash":"94413d43217cb3b7e0bc92dfb7b859d661f14acd0810d291b9a89337c1cc16449b899d","first_seen":"2026-05-30T10:48:25.591024Z","last_seen":"2026-06-02T20:28:59.136893Z","times_seen":6,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fkeno.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fkeno.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1208\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: Bgvqa2ewFZ6PdzQb9c3ZpBtGKD_sJgxiixkD2QX_dXo\r\ncontent-disposition: attachment; filename=\"keno.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oyU9WA6lks2pv%2FFbE9kuMW6X7Q0xqgNRZPflV8ya%2BOcgetiQ896%2BOhRyUG1HFDZyJXjqneIJ3ZsHvQYNpYC8mJp2URbBL2qrMIfZk9qbknTMfd3uGhb77la7n%2BxxKg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c068be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1208,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"d75ebca3ecbaab24e30082a267e30606","sha1":"e799af5ca6df084e26f893d52bb36c158811c031","sha256":"060bea6b67b0159e8f77341bf5cdd9a41b46283fec260c628b1903d905ff757a","sha512":"1a2c3a1d6e80837bb8fa6a2d61598b28462d89246d5293537c82e383e350a832c411858f38058be962b401ca46abdb2878fdb61e92a44e86144f15c2d4a40a0b","ssdeep":"","tlshash":"7621da1bfa317f7a50d76405b7f50bda0c6b60a08c35bd9c463c19e848e7b375874446","first_seen":"2026-05-30T10:48:25.565671Z","last_seen":"2026-06-02T20:28:59.132348Z","times_seen":6,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FLeFisherman.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fhacksaw%2FLeFisherman.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2746\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: vcyh66CRG-1xPg5WPF-0aoqa7gsNZsT2qYf2mQf6hco\r\ncontent-disposition: attachment; filename=\"LeFisherman.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zvud8Lsgl94lKEeWQch%2BvIHFgu3DARhWCjRKqXrZXFujHZWl8PcbO5lbhyU8Bz7B8YWy%2BJ4Y1pKu8xLWqfKLZ7GutszsZ9x5%2FoorJEVgM7AJbvO7VFi%2BX36e7NTfTQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c0b8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2746,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"ff81cbe98ac7e7f3e5f26669f7eaddfb","sha1":"2fbab6f5f39f9c51976a1800b789df7d153d1a06","sha256":"bdcca1eba0911bed713e0e563c5fb46a8a9aee0b0d66c4f6a987f69907fa85ca","sha512":"e83b5ba6f9c6eed6f93c09cbfc50b9b68135c84164262f5a7c2e3e3641b93105e1c9e5ff42126469b9e12090191a5b507badea4089933ef8136d2cf17ae41c73","ssdeep":"","tlshash":"0d512b673a7871ef8f1894064764d52212141a9f63471dc9888903c91f647b7aa90ffc","first_seen":"2026-05-30T10:48:25.63432Z","last_seen":"2026-06-02T20:28:59.139789Z","times_seen":7,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcapymania.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcapymania.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3096\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: eQw4ImdPYBLeFNxmMqtgLPiK3ARpeSS4IlZjAwGgQmc\r\ncontent-disposition: attachment; filename=\"capymania.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dMIqY9OFAOKyVjrrrITjZMrnt5l7au7xLavxvh5O%2B7hCOrPWTR7xLUR41lX6328cYAJVhohprA9folZ7H7OnLpyyDxkMPVhfuwe2wtgJVzLm%2FXDbJ3C2Xql3m4rJ1Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c0d8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3096,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x129, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7bedf26c25fe63dc0a423df5bdab2530","sha1":"b3dfe5ddc7de60a37898bfede54a26f2d2bda042","sha256":"790c3822674f6012de14dc6632ab602cf88adc04697924b82256630301a04267","sha512":"a862fb2b7fa95a173d3eb28f1ff891f0ad8d906c744b7f95bd18740a80b9ff74030f75ca6a16cdbee91454ffa0c971afa22e0887bf7d6f9ec9f7345b7596a226","ssdeep":"","tlshash":"40513bb76ed638e4c6697af008d4b9ae3ac092ba24495d441017587ccd74b4e72f7a23","first_seen":"2026-05-30T10:49:00.963677Z","last_seen":"2026-06-01T14:04:32.497221Z","times_seen":3,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FStarlightPrincess1000.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FStarlightPrincess1000.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3160\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: Iomu-R8cb1qReHFPvAn34PNJXO8MAvSykY8sTpp3hIg\r\ncontent-disposition: attachment; filename=\"StarlightPrincess1000.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LzxVVondsLm4Oj5bVcE7FdLeZMjZuFsUd1RO8W4G%2BEqRM64lN1LuG8WfjjlQzNlss1DunbW%2Fxsawu30JTrcd7k1QJFFEUqXxM8TmgeoSitBY0eSdospLJXFcv0j5Mw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c108be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3160,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"dca4a6972a627e9baadaac87d7751f21","sha1":"c1d80641a53171a986023f4cc908b9b45f5a1021","sha256":"2289aef91f1c6f5a9178714fbc09f7e0f3495cef0c02f4b2918f2c4e9a778488","sha512":"ca01b84a7e9a8ddb7ba6c655fae643209ee30a0062df0b7a685f39c9ea0b46f993dd37e8061f0420e5b19c410b5479e037807c6fbbfb4c2a4118bdde8487acb1","ssdeep":"","tlshash":"f6516c57e26b3e66cb48a9a7010a0db90acc05d020edcb38855290e737ca37d3fdc889","first_seen":"2026-06-01T14:04:32.497808Z","last_seen":"2026-06-02T20:28:59.140627Z","times_seen":3,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0pqt~8bl3ukh4.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0pqt~8bl3ukh4.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"ad7e-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7LgpRGaC0TclsP2jVJxRKTVUvvo0fYDAUQ5SNJ4I6qTTSHDLxC82jjAFsGtK%2BVRULD512ZTygTSQ1UCKJVUyxMOmbvM2%2Fu32bg4GmyH%2BtJUaakGEP1p3CBX6fGa5hA%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a9c8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44414,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (24405)","md5":"c621d697f789f9a625e80384da50359c","sha1":"21b6e9613cc917a5fa984be427364d03e5757cbc","sha256":"5261101892e2476e4346e19e86fd5f19cbcf7c765ff76e92eb9cefcc86b6db6a","sha512":"59a0ad4d3270e18ccc1178b7a1c8902793a70e88a518f01ce894d1d3335251953289630dcaa26b4c6d9a3b6bb5563b8845d5fabfc521878c382c7d2a56957ffa","ssdeep":"384:p7/A2dkTd93jBT0diRTRIpowbIBqjac/s+rPYjDExpCkKMny1V0U5+wQhKHAlwe4:BN8pcowkpc/s+zYXExp7ly1V0UVD","tlshash":"4513e7b132d4faa3539341e0e43f2016f2780d7520ad6470a7e89c9f754d88da6befa5","first_seen":"2026-03-18T18:55:57.705164Z","last_seen":"2026-06-04T18:06:42.234289Z","times_seen":5839,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0nh8v~7ip8our.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0nh8v~7ip8our.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"1539-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E1v8zXzlUkaGxRMaQDIAlWBLEBupeEsoU2tAUsVs98AEhd0Jb0QpOLkXkLfem38dQ7ukHs%2B%2Ffi3v46S1U7eedELXk5zFREykxmxQrO6RKRDhaS%2BbTmdZFeXnCviFEQ%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aaa8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5433,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5433), with no line terminators","md5":"b8b5292b96bb875cc8a420df88a5178b","sha1":"14278e64cd16cad54ede3c81acceb66defc82bd2","sha256":"186311357d3cc801cefa61cfcb3d285ab5675622d6556f5e69aad00a9a80ecec","sha512":"266fa6af18c2187121ec46d999fa91304c94be82fff0721503af81a6a73dcef5fa630dc0cf80fbd2ddcc0e1c32a1fc760c2dfb27431818860e70c2d1e4e0f909","ssdeep":"96:XKlThyvcYNmheMr4RfRlr0OhBQsNvfOOEZcDfg1DX2o+:65gvcYNmhej0OhBxfOyiLM","tlshash":"50b14368e76c62bda84206d8463344212b5f057fb3ca5476cc5dc7f4f64b928cae3c9a","first_seen":"2026-05-30T10:48:25.557094Z","last_seen":"2026-06-02T20:28:59.143624Z","times_seen":8,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0yctg.lbns7cx.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0yctg.lbns7cx.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"e6a7-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pV6CSveS7A6FilsQH%2FD6XONndGzJRqmWT6B7AcQ7zaVT6Lg0YkLiYdMP6oYccb86atyDIOSDzScaMKeKtkR9%2FzfHU4N8PM%2FX5xWCEB9ZEFAKeTq4l%2Bekv%2FMiYzkHLA%3D%3D\"}]}\r\ncf-ray: a04ec3ed4aac8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59047,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (50117)","md5":"5e6dbb6417918d8de79010d13e28fbf1","sha1":"8d926f69f47578659c3ae8ea3c589528929a4213","sha256":"aa5317a27d957e71923c4392130129f7c923e87425e5e3f21d807cb8363ed1a2","sha512":"50869f8be5514ae913b4a0ed859fa74ee053cf7c1b825e5407f9c11a5d2d98948231e2f682817b450ea04a19e9edf78e263b38f168ebe632bc3de45397bf8e0c","ssdeep":"1536:3sLL/gHFrNd1XoZaP4o7K09tFt0pfIrMv9sN0wywCu:3sLLaL","tlshash":"d5433b0893909bf8ad8cc7f49b71749972a3b8b6f970c2d8f66e0818de150d461fc5a7","first_seen":"2026-05-30T10:48:25.569032Z","last_seen":"2026-06-02T20:28:59.096254Z","times_seen":8,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/14j_td4d84u8g.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/14j_td4d84u8g.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"691-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EoVDhP9gN7Zu6xlBRfFCroYQkeHnHzN%2BMDHfTZ4bUjSYc3kma3LdzToNLdgt2zxs%2BoL0v3HwiMBMGmPQk5ARLRmQMA8%2BkgQTlL6lq6LDVcy%2FdeecSs4NnFR4z9dBQA%3D%3D\"}]}\r\ncf-ray: a04ec3ed5abc8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1681,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1681), with no line terminators","md5":"c10f57f530141d7fc34c72db63f5f256","sha1":"1bfff636adf06c64efaa9f32e144788161ef5383","sha256":"4bd1bcf0431916610a5570ba8cef3702c213cc20f81dac9b355d7d0ab48ede8d","sha512":"f83d3aa9b72828755c8f8480e1b91cefa097a053ba40bd0bf3cc8f6b665ac30763a366d955aaee33dfcc4e4782b11ad10dd1c628fc719eb7ebb039dcb50c40da","ssdeep":"","tlshash":"23319d30916ce4ae320b09925d3270f8c33e5aa6356da1b0c95feee0509b0d9db17c71","first_seen":"2026-05-30T10:48:25.606689Z","last_seen":"2026-06-02T20:28:59.109618Z","times_seen":8,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/api/extra/postback","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /api/extra/postback HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cQlg9ZZ8hVQQGCgnLGUgoVv%2BeI%2B9Gk%2FcFCfQXK6RIxxRDFdI6LI1kCY%2B%2FfE1hjpFoFNzxdFNhFtVRjv3k8SbiyKWLFn0H0jeIQ3ZhLMIhTJ4JDoTeODyIev7%2ByKrOw%3D%3D\"}]}\r\ncf-ray: a04ec3f0fb858be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":115,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"55898151d692513b4224c05d7f8ad618","sha1":"268433e419f1eb0a9608a3875d884322d55ab239","sha256":"f918f27d1ca4f6452e449578908edf2b3083612468b61e559c192fd634928925","sha512":"18a2770af533b9bd3763e0823e493a53ae85a017dad1175f275af38ec0a3ab9c3ab7181bf9489ed208d72ef62b152cbb8e0f014b84edbf2fb91f77dafdfac704","ssdeep":"","tlshash":"92b09207152caa770033b2e23c72ae00013c0e4390205e3081180b1a8aea87101e8bc0","first_seen":"2026-05-30T10:48:25.552666Z","last_seen":"2026-06-02T20:28:59.104144Z","times_seen":8,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgift-no-bg.png\u0026w=640\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgift-no-bg.png\u0026w=640\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 48920\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: RTf9Zw51SOkXl5C7sn6W8FNHW3ahm-6FzGB_5J3rqo8\r\ncontent-disposition: attachment; filename=\"gift-no-bg.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bdepi6LYd%2BfGl4BBx1oyyxWRN73x%2BYZo8a5JJ%2B4a0xmrtMR7luGF70gtAUxzoJ7Wg3vwhf77H1Y%2FRX%2Fap2HOy9fF5xpd7fFxDLaeIApig37mCvsbVvrtZqa322YhMg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c268be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48920,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"db9af4f4f7dc931390ed4589e5482b0b","sha1":"5cb744cdd1ed7ae2383770045bb47d54dd45b915","sha256":"4537fd670e7548e9179790bbb27e96f053475b76a19bee85cc607fe49debaa8f","sha512":"c1f9a20bae76f67dd1948d9da361a367ef44baf43b8f9a19038320a0d1d58314794bc0625b95f5437d85dedee699621a7827307c511c8d72e2212fe0e5e367b3","ssdeep":"768:c6ltMDlCdJ3mZLAgtz4Qtc2CLEuhsjS263P9MUjanjvlkzvb1ObzlIlEuOFVfCqG:tggPmZcg6+Km3uP9MNjvlWObxgEuOFVS","tlshash":"812302dadb20f5b710e4a4fda36e1fd034505fd730449b9a51e92ea2380aa804db7f5b","first_seen":"2026-05-30T10:48:25.664013Z","last_seen":"2026-06-02T20:28:59.095554Z","times_seen":8,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":93,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0hi-oz4wpwmvw.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0hi-oz4wpwmvw.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"4d7-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nqb2GP1GTVZnrfimFRfz%2BM9xDifzypFzFYqKIm9vBi3NHmZrXEG4oTPdQJh4PB8YuMYwgToGVjjqmvjg%2BiOVjMwjjlBhGKnfqegy6I5cZIxjOPvnnMjnmzoQQsnASg%3D%3D\"}]}\r\ncf-ray: a04ec3ed5ab28be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1239), with no line terminators","md5":"3280f1129fab559adbbf78f8054e0cfd","sha1":"f6e8f41f2b06f74e6137c10f17029da183319358","sha256":"84694cc80070364cf0d9dcab44aa675c5e3c31a61590ff24d5ce1d80819a6bff","sha512":"f2c38a8463827b6546d5d80495617b84089d0031300979fe7184a331ce0ec41141728a9bb10c6d4d69f539cfd3eceb5ed699c8ed92e7981fbc3df55b1b5f07a5","ssdeep":"","tlshash":"7e21f045d9485274a8c85170a372e012d0ef366f70cf74a4d76693a8d3e7c4a9e634bf","first_seen":"2026-05-30T10:48:25.580068Z","last_seen":"2026-06-02T20:28:59.097941Z","times_seen":8,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0t1et0tty8o9s.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0t1et0tty8o9s.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"1992-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zoBoVkHOJijj8LYZ0WNdF24YzWax48RdaOJ8JDUAh7F%2Fb%2Fis%2BTa3%2B5RokYQ7ct9QXy4SLJqUOTdqIFYT1yMUyRI1e5nANQYT8u2xUxY4OWgkiSN6EX7KCqT%2BTk8d8Q%3D%3D\"}]}\r\ncf-ray: a04ec3ed2a968be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6546,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3112)","md5":"9f98ed0ceae346d9771b94a6cacbf831","sha1":"9293e23647479836c9d6369352495c8bfe66dca0","sha256":"317b6e438c77d4bfd1e1d9143827405545e7753c7ea3cb8027bd01328b5da3e0","sha512":"97c4a69947e37b3f02d4fcfef1ce0e61c36cc8ead53781b2693f9914bf66ecf99ddf966eea7e45494c3a929279f975aceffb77f3e72dfb2d7cfe5ef9664a05ea","ssdeep":"96:PVQigpuv2J/HG52j45y5Iie0RES0/0QPf5v2ZA7sa6Rbxmqv2P:dQigp5lDhEB/0IMZAZox2P","tlshash":"b5d1d820f385e89b775a00985477a00ef214382a9bb8f87177dd54f21bc05f67d6abe8","first_seen":"2026-03-20T18:36:46.34169Z","last_seen":"2026-06-04T16:24:51.751877Z","times_seen":655,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/turbopack-0etkxqhcli4a9.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/turbopack-0etkxqhcli4a9.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"2975-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BdpT9Fybve3zHS8nhuuH6F8ucI0vzDxlxGuTEcEPCBFInjkl4lt7G8VsOxvbIYFtmiXa7jfF4X9sKgtiSERh6y6J7l7QQoRVmobMzGMu6wyituBxwo8jldy3dJ7Zrw%3D%3D\"}]}\r\ncf-ray: a04ec3ed3a9e8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10613,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (10613), with no line terminators","md5":"90e8ac2e6c449ddbc98d329128b75b73","sha1":"fa6e0a6b6cb5b17c440a7068dc75bd43b9ad2d7f","sha256":"0564e3ac01725161d19467cb9201b4c10a12c05a50597e4ede2e6c06c9dd4a7f","sha512":"42cea171ba1f64990691d35ad3dca6e8ab8cdcdb644360ff4174cfcce646377ed617c8dc01792cb1635cd269b0bc6ada1111db34aac2447e73400400ef14d3a6","ssdeep":"192:r4gMSBC8gEsg6d2hE7oGpldETND+N3sBT4fCTKcXX6hfH2:r4gMStLsplqy1sqCTTD","tlshash":"5522c7da37a6f07343afa4e7d06f4004f17984a9145e141cd3aca8eb2c354aa85e7f76","first_seen":"2026-05-30T10:48:25.55618Z","last_seen":"2026-06-02T20:28:59.100297Z","times_seen":8,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vazowin.com\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: text/html; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jYujz1Yd0tkwV0Nc2Ke6PZEbpFPjGzeuCEbtQwQ7wXJ05bjo0zK%2B0%2BbkaSQzEB2%2Bf09Q1EEnHpj%2F9iuII3fsyteVZGehmN5fcWphrvIz6yqaguBOrtpM2Eea%2BD6eug%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3efbb338be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":103361,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (60507)","md5":"5ac1e07f56e1b9454dbd3f0fc73f3b47","sha1":"87d45031547a3348a77cda6a50becadd8084cbff","sha256":"df8fd22e70c3bef08308e4d980ddd00ae7459855696f0f8907f72c9d25c8ddda","sha512":"85c9e29a912be0ee370eacb00d1163aa1add90e10f57f0e0d1120695d8c4992379de40372958317a1086046850b2e095ae9a482b68fcbc14705a947cfa6561ae","ssdeep":"1536:JC8iKI7C5+3//yU8fmuAaN1yGNkptBgGOZ8hZFQIxZJ:J72C5+3/6HmufgRtBzHFQIxZJ","tlshash":"bca3e70fed18ea16d8939d9e647f6f3b6498c43642b184bcadadc40c02518b997fedc0","first_seen":"2026-06-01T14:04:32.477697Z","last_seen":"2026-06-01T14:07:01.017042Z","times_seen":2,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":69,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Ftowerrush.png\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Ftowerrush.png\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10122\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: PAGHIA4PtfSGAK0djO83mtSJIEfB5mUPqSpR5S-5gtk\r\ncontent-disposition: attachment; filename=\"towerrush.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DSKL4rJc28XcfF2vi8yvpUKjxu%2FH3ex0AdkWiJW2msWCtz96PiwYopCNrT8n%2FsOqJVKCfkQbRgfRg1Wd0Xku4kF0Su%2BhoMyZszgce2Q1lhV5xsYUkcLnJDDnkXpCQw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f20bc78be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10122,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"98b2cfd8dec207eeb921639978473f1c","sha1":"94195da3c0fe087ef8c33b54f670a348c2b6558a","sha256":"3c0187200e0fb5f48600ad1d8cef379ad4892047c1e6650fa92a51e52fb982d9","sha512":"b52b9459189ab48b0b075a0bf2cfde6a71026b696ed31344eafafaf28f24e007a9ae903d8ba1f86a70958dc81717ceff6e25ac8c287b5bf6637daf7aa3417dd6","ssdeep":"192:DB8JNT8o3tYaHw+0F6AeLU2dt5C6Rm+Jc3RInEmVTVycE2w7v9rjQ:D4WoOaHw+0F697RRD+IhV+dQ","tlshash":"d622d1d994cdf2d38d6af1ff4e4ae4157c747a93010723067ca19a6e30bc96287460fa","first_seen":"2026-05-30T10:48:25.655538Z","last_seen":"2026-06-02T20:28:59.14227Z","times_seen":8,"resource_available":false,"data":null}},"time_used":142,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fopenit.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fopenit.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2376\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: mAEpvb-2i_J-feSnTuLIkmcLYjqyR2hiXU6WmNzi9Pc\r\ncontent-disposition: attachment; filename=\"openit.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=da50WM4CWkewoeB0%2BZ07KqaF%2ByvI10k2JfHl3yG7FE3GCcY488gIF%2BiZypG41YrPy%2BcVQqOWgVTXpe4DbhmBSzD25u1YmZHGNpplclUtlXi3StMdfDPaSWcXibCyFw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c058be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2376,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x129, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"957ef53e0d47ede7432a844b79cdc616","sha1":"11e7f4432d95e338cfaf907922304dbef3550ad6","sha256":"980129bdbfb68bf27e7de4a74ee2c892670b623ab24768625d4e9698dce2f4f7","sha512":"f3417b1838046cdbb0cb7321bd7563da7ce08978e7bc92868ca0ee453156ac6a9be09c4b2d7ad85943555e62de473f827a8bb5753d46f8b6aca8bdfa43eb96a3","ssdeep":"","tlshash":"6e415b8540dafce339a62060c03b1ab76f8926cefe4299d01d53b08487f885b9fc8c25","first_seen":"2026-05-30T10:48:25.632602Z","last_seen":"2026-06-02T20:28:59.155911Z","times_seen":4,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/static/chunks/0.c8994ibbdin.js","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/static/chunks/0.c8994ibbdin.js HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nlast-modified: Sun, 31 May 2026 01:59:10 GMT\r\netag: W/\"4d87-19e7bc1a9b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 101598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G3j9JlemyUKgKonoqEl6Ezmuw3bLY8l%2FgY%2FnrJrEy0DFyQNkfomBUxc2i4O6riZyjmi4yXetZxPe%2BlJnrueLk%2FxZ%2FeGR%2FQeDCkNCWboORPzIDH8vcIYHwiXoAgGJFA%3D%3D\"}]}\r\ncf-ray: a04ec3ed5abe8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19847,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (8365)","md5":"195c9cf17d38b49ab75468414bd618d7","sha1":"1b4489bc379bc5337669c307d29ddf19143ac790","sha256":"a8d5209f7e6e5f2fb2d3b3ac6cf661ffc2309bb78c402a395eae4c35cf5d00d8","sha512":"6990aee5eea92094ea4fa3711f43910aef1e56450ebd0861751e50670d28422d5ca93a26ee4dc73b36e00753f3a6c34459d59aa49135a0f55a6ee8e9c62513ff","ssdeep":"384:z93fT2HDJyrTzyDSSH0ZymskZvQ55LQP6RrY7T8t6YLI:l3r3yDSSUHvQ55LQP1/8tpI","tlshash":"b2923c743295fcd5525fc5c0e83f400ef7292d75a57db0a4b3fc58956aa0884b0a2fba","first_seen":"2026-05-30T10:48:25.558987Z","last_seen":"2026-06-02T20:28:59.102481Z","times_seen":8,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Faviamastersxmas.jpg\u0026w=256\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Faviamastersxmas.jpg\u0026w=256\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11818\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: K4VXJ7DYIBhqtEbpI38RHTa3K43iBP2SKds1qUkcBmQ\r\ncontent-disposition: attachment; filename=\"aviamastersxmas.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mXVdbGxvjgSr4pJn6Q9DOAz9Yo5qKwndbzSFx8JK%2Bn9Z2Kef0XTvNV18zp6FlUNBxmIb4dtwc2sHNNtPTTX2yWDdvEa48Cz%2FSWJVJUiPOREq%2FQu5LHlOsNL2CYYqgQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f21bcd8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11818,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 256x344, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"f772aa088c22f20cfeae7dfb30682fee","sha1":"2c9c42918d165706d393ba830a1d1d2b58a017a8","sha256":"2b855727b0d820186ab446e9237f111d36b72b8de204fd9229db35a9491c0664","sha512":"016e55676fbcba9315c4492cd20c55a23c9c0b0f902a24dff46ea39a83594fc2e3395a49d45ddcfcbd680bc171798b377303fac92608e7e792a9a92e31c72a8a","ssdeep":"192:cfBvnUkuFA2HfTk8e3OFX0oFQ18ifT2sd9JK5wiT1fLLxEDsMBUwyk/sACzx:GBvnU/FA2HfTk8e+l0BTfT2spg5xKsMA","tlshash":"f732e0bb3dcb928543a5f4cc69111763006b1039b78b6bd037b38dd871d112db6b0668","first_seen":"2026-05-30T10:48:25.553525Z","last_seen":"2026-06-02T20:28:59.093681Z","times_seen":8,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FFruitParty.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fslots%2Fpragmatic%2FFruitParty.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1970\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: cTcRRou0FxlfbOdZyt9kT3BKOKYu-a-Z44GnjwV52vA\r\ncontent-disposition: attachment; filename=\"FruitParty.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wqOzL74U2rvEJiEJgxSVGsA6VM%2F6N9h2cZHU7rvCvDRLTQunrA2ZzDgTb%2Bi1TxCeny5cu45HhpmJDQ0y4tv2yF5f%2FKLFunhqG%2BhhGUNwaJaGuDSLn4A02xTYDvYeTQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f23be48be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1970,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"18a194f5282c4b1336e27719005b1e2f","sha1":"2aabb42aa6b70b387da4b0e477c869487c16824e","sha256":"713711468bb417195f6ce759cadf644f704a38a62ef9af99e381a78f0579daf0","sha512":"aa28c7b5b0c01bc5db69e2b76c87aad372d757a7247b014268c4259c88483854dad11ad2e73bfa4908e032ba1323d83a85c2e96cfbc5e45968da33b5236e2a7f","ssdeep":"","tlshash":"ba412ac70e9254a25d04b3c0de4fe5128b9d4f609d2bbf9685b5d33792ea341a24e1c0","first_seen":"2026-06-01T14:04:32.511355Z","last_seen":"2026-06-02T20:28:59.127428Z","times_seen":2,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fhockey.jpg\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fhockey.jpg\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3300\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: jAtJ_dP3I2UV46n5M8rw8BHjsiMHSYiS8JVpy3Hz7DM\r\ncontent-disposition: attachment; filename=\"hockey.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VmOkLrU2zYI2XenY0prxSzZy%2FKaY4tWMkCEeoUCadfImdXTpBs8dQcxLXDjrQEZla3q4bSuoll3wUo6Ad66dR9nhhLenKkoEA0I%2F9R0VFhKTrciwtRqzsp3vBpkEcw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c088be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3300,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x129, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b2f9e97fa89856f882e1f5ba443d0118","sha1":"91de894a9dcd162a4d832b5133a762a587eeebf4","sha256":"8c0b49fdd3f7236515e3a9f933caf0f011e3b22307498892f09569cb71f3ec33","sha512":"b76ccf51b901cdeceff946744d2d6f115029611f8d08b6202ee7eb428a655686cd4ef4bc99aabcb2d8c2df34d9ec30f7144f2176ea58900cb46f0ed6a4ad0e48","ssdeep":"","tlshash":"23615c23ef40c838d5a9ca5e9a043342a641822ccfc1e853162cd602dc1eaa5fb7e695","first_seen":"2026-05-30T10:49:00.954962Z","last_seen":"2026-06-01T14:07:01.067243Z","times_seen":6,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/static/sounds/message.mp3","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /static/sounds/message.mp3 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nReferer: https://vazowin.com/\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: audio/mpeg\r\ncontent-length: 29091\r\npriority: u=4,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\netag: W/\"71a3-19e834a57e0\"\r\ncache-control: public, max-age=14400\r\nlast-modified: Mon, 01 Jun 2026 13:05:48 GMT\r\ncontent-range: bytes 0-29090/29091\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jLxNlvzkYU2qPt0mM%2Fqn1pBs1pw7Jf5aPncfIGAXVjHSY5A%2BaRzyb7dsAUIuJzZyMGA4q9fqZkCFd3omYfM3t%2BHcT7e1I8lYycF7K5xhqfOojMli5RDNX2u3dn3Tig%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f37c238be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29091,"size_decoded":0,"mime_type":"audio/mpeg","magic":"Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo","md5":"a74d3b2a2dee5892841f7e37ae8343a9","sha1":"90b69421807b860b265c34a5e2f249e3fdf05ae8","sha256":"7bc02c22f6a0a75446187dbe0547a7eca86c05e3d3d369e0831dc084bb974ea3","sha512":"7186807bb91804317231d48b985557d4259820c45cc6ef48fae69cc7f50b7195b1fa9c271aac9c2104b7cd0a48a772a9223db8f0e4f53cb2302bc401246c0f9f","ssdeep":"768:OBdZJRccW5UzJDDNx5kbu61m29Ij3Va3ZH0jycOFFLQU:0JRJW8DDNOu/j3VaJwyXv","tlshash":"92d2e13b2d840d8cf1868574226fd588e0b97c9a129e5f52ed9feb494637031bb08fd6","first_seen":"2025-10-06T22:40:31.572152Z","last_seen":"2026-06-04T16:57:24.879551Z","times_seen":14016,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":91,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/?_rsc=tXyZJ52UQVBCVsD3","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:05.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /?_rsc=tXyZJ52UQVBCVsD3 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nrsc: 1\r\nnext-router-state-tree: %5B%22%22%2C%7B%7D%2Cnull%2C%22metadata-only%22%5D\r\nnext-url: /\r\nnext-router-prefetch: 1\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: text/x-component\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncontent-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; img-src 'self' data: blob: https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://pbs.twimg.com https://analytics.twitter.com https://t.co https: ; font-src 'self' data: https://fonts.gstatic.com https://gstatic.com https: ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https: ; script-src 'self' 'unsafe-inline' https://connect.facebook.net https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://apis.google.com https://www.gstatic.com https://ssl.gstatic.com https://storage.googleapis.com https://*.googleapis.com https: ; connect-src 'self' wss: https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://ads-twitter.com https://analytics.twitter.com https://api.twitter.com https://*.googleapis.com https://translate.googleapis.com https://*.gstatic.com https://storage.googleapis.com https: ; frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://www.gstatic.com ; media-src 'self' blob: data: https://storage.googleapis.com https: ; worker-src 'self' blob: ; upgrade-insecure-requests;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0DHCeR0nFllnHE55Yo%2FP5zeDC5uyguaCXoz8D6F9pK0aFxIccDYxNIjyfO%2FpOjhh7n6Gh8VX8LS2tPoJui%2FE00qw1zBhttKsNR2cqLE8c%2Bpz8D7IBkaxUj56uxWLGQ%3D%3D\"}]}\r\ncf-ray: a04ec3f39c348be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2709,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text, with very long lines (1643)","md5":"b30ed10bb84435428a60c85333156b9a","sha1":"3a737d771607d35612eabb408932ee145309fb91","sha256":"d9f8bd34ece55b8b017bc129ccbeed3114a063510d817f963f50dadb9a08e790","sha512":"ae54118045796ca9b801d85cfd3d1826293502712a5114979d82a4cfe172b63b8fb7891cc66f2e45d7f4cd578b5747678ef41fa707e23a07d6bfbc0c2727380c","ssdeep":"","tlshash":"cc51eb3bde15fc7a1fa78e8d046ba21d624d4b37db305cbed64d8d0c06c91292ea52d1","first_seen":"2026-06-01T14:04:32.514002Z","last_seen":"2026-06-01T14:04:32.514002Z","times_seen":1,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fbronze.png\u0026w=32\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fvip%2Fbronze.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:04 GMT\r\ncontent-type: image/webp\r\ncontent-length: 916\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: E4uNUIHjdnUdsK-pwxX8QEznMeskgsTG8r5EiDgxq08\r\ncontent-disposition: attachment; filename=\"bronze.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tVQtJy0wX0rcIUynmD9CvhlIKoaM8WpTUdvf31dSolW0eVjuoWsXC%2FD6cpczKrDHOG7FMiG83Rvb1cqOdNL9MwjvuwBTQftV%2Fkss7W62FDLOMhxZaFFWnPV%2FnzwtYg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f22bd88be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":916,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e3fc993762c10f66881ebf3d69734d51","sha1":"2527a3907b5a783cd13e63e66b5a01648915cdf0","sha256":"138b8d5081e376751db0afa9c315fc404ce731eb2482c4c6f2be44883831ab4f","sha512":"dfff7709d5f4d6aca703e2857b8a4d533bee1684ba7242c93a453e4dda583af2e699a3a859381eb88ea54f5538113aa1c3f423bb6bab37d011007faeb4f4ccab","ssdeep":"","tlshash":"ab11b7e7e5537554cb18d3273cacb08de64e4760431b354f0e914dacd01d261da95432","first_seen":"2026-05-30T10:48:25.57001Z","last_seen":"2026-06-02T20:28:59.147364Z","times_seen":8,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vazowin.com/_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcoinflip.png\u0026w=96\u0026q=75","fqdn":"vazowin.com","domain":"vazowin.com","tld":"com"},"ip":{"addr":"104.21.2.130","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://vazowin.com/","date":"2026-06-01T14:04:04.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vazowin.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 04:22:28 GMT","end":"Sat, 29 Aug 2026 05:20:22 GMT"},"fingerprint":{"sha1":"68:CB:7A:79:79:A8:1C:01:67:40:E3:53:D2:89:A3:76:68:CB:A1:BF","sha256":"F0:A3:41:7B:95:37:9F:3B:CA:33:CD:A5:FF:95:88:7D:ED:22:DC:73:0A:9D:49:76:84:97:13:F9:3B:31:FB:50"}}},"request":{"raw":"GET /_next/image?url=%2Fstatic%2Fimg%2Fgames%2Fcoinflip.png\u0026w=96\u0026q=75 HTTP/1.1\r\nHost: vazowin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vazowin.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: JSESSIONID=4FECC8E5FE62BDD6F6AA1010DC385941\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 01 Jun 2026 14:04:05 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2644\r\npriority: u=4,i=?0\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept\r\ncache-control: public, max-age=86400, must-revalidate\r\netag: _nTSQKYokLucp8CMqq0BcnlXSs2M5Sz1tW6GiPlVic0\r\ncontent-disposition: attachment; filename=\"coinflip.webp\"\r\nx-nextjs-cache: HIT\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=t0VL8U9aWCedoQ%2FKJXcBxvys5tNCHN5BxMZYOFrrejwbunvOY908y5P%2BIldBjPMqKQrFqhO5tfL3CLRhdQQlzfq%2FkueNfd%2FWZpq64opoCZeAtnuGqQd4BudUH6eCWQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a04ec3f32c0c8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2644,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2ddf47e800407b3a06787af6f2fdd0db","sha1":"0b5bd3d284f5360ff3622c7520677e6bb3945a4b","sha256":"fe74d240a62890bb9ca7c08caaad017279574acd8ce52cf5b56e8688f95589cd","sha512":"a18e01d48c6c55b683b32d232f1923d2d25f1a08491de89c898789118e6cc98be2c542da11979677cfb5200e3ef7dc8412d666c386ff306c743727a462e855e1","ssdeep":"","tlshash":"dc516c0983a8ca2f4cf3274230500a6b72366f556cbb497ffcd216e1445f2acec809e4","first_seen":"2026-05-30T10:49:00.945077Z","last_seen":"2026-06-01T14:04:32.516163Z","times_seen":3,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"vazowin.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}